Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivní kontrola

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Lancre
Návštěvník
Návštěvník
Příspěvky: 152
Registrován: 24 úno 2012 15:28

Preventivní kontrola

#1 Příspěvek od Lancre »

Dobrý večer, prosím o preventivní kontrolu. Děkuji.

FRST.txt:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-04-2023
Ran by Vali (administrator) on VALIPC (HP HP Pavilion Gaming Desktop 690-00xx) (18-04-2023 21:26:03)
Running from C:\Users\Vali\Desktop\FRST64.exe
Loaded Profiles: Vali
Platform: Microsoft Windows 11 Home Version 22H2 22621.1555 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.133\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.133\BraveCrashHandler64.exe
(C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(cmd.exe ->) (Agilebits -> AgileBits, Inc.) C:\Users\Vali\AppData\Local\1Password\app\8\1Password-BrowserSupport.exe
(explorer.exe ->) (Agilebits -> 1Password) C:\Users\Vali\AppData\Local\1Password\app\8\1Password.exe <4>
(explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <23>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.202\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.202\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Vali\AppData\Local\Microsoft\OneDrive\23.066.0326.0005\Microsoft.SharePoint.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (@ByELDI -> @ByELDI) [File not signed] C:\Program Files\KMSpico\Service_KMS.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\11.0.0.4854\AdskLicensingService\AdskLicensingService.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Evoluent (Jack Lo) -> Evoluent) [File not signed] C:\Program Files (x86)\Evoluent\Evoluent Mouse Manager\EvoDriverUpdateService.exe
(services.exe ->) (Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(services.exe ->) (Chaos Software Ltd. -> ) C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe
(services.exe ->) (ChaosGroup) [File not signed] C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdcsi.inf_amd64_7a26eb38513648ab\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Siemens AG -> SIEMENS AG) C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.8900.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [194704 2023-01-17] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2095672 2020-11-01] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11327200 2023-04-04] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [668376 2021-05-11] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-11-01] (Adobe Inc. -> )
HKLM-x32\...\Run: [Evoluent Mouse Listener] => C:\Program Files (x86)\Evoluent\Evoluent Mouse Manager\EvoMouseListener.exe [144800 2021-07-21] (Evoluent (Jack Lo) -> Evoluent) [File not signed]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5237416 2021-02-02] (Adobe Inc. -> Adobe Systems Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-21-4123483902-689985857-2153118612-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [677512 2020-11-01] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [39159608 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91016584 2021-01-15] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [458608 2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\Run: [1Password] => C:\Users\Vali\AppData\Local\1Password\app\8\1Password.exe [162193776 2023-04-12] (Agilebits -> 1Password)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\Run: [MicrosoftEdgeAutoLaunch_47E7A3D832D99C24E8E65EF6A7C4529C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4139936 2023-04-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\Run: [Opera Browser Assistant] => C:\Users\Vali\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4140448 2023-03-08] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Vali\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Vali\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\RunOnce: [Uninstall 23.061.0319.0003] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Vali\AppData\Local\Microsoft\OneDrive\23.061.0319.0003" (No File)
HKU\S-1-5-21-4123483902-689985857-2153118612-1003\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [39159608 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKLM\...\Providers\Internet Print Provider: inetpp.dll
HKLM\...\Providers\LanMan Print Services: win32spl.dll
HKLM\...\Windows x64\Print Processors\HP1006PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1006PP.dll [65024 2013-04-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: AdobePDF.dll (No File)
HKLM\...\Print\Monitors\Appmon: AppMon.dll (No File)
HKLM\...\Print\Monitors\HP1006LM: HP1006LM.DLL (No File)
HKLM\...\Print\Monitors\Local Port: localspl.dll (No File)
HKLM\...\Print\Monitors\Microsoft Shared Fax Monitor: FXSMON.DLL (No File)
HKLM\...\Print\Monitors\pdfcmon: pdfcmon.dll (No File)
HKLM\...\Print\Monitors\Standard TCP/IP Port: tcpmon.dll (No File)
HKLM\...\Print\Monitors\USB Monitor: usbmon.dll (No File)
HKLM\...\Print\Monitors\WSD Port: APMon.dll (No File)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{28B89EEF-3007-0000-7102-CF3F3A09B77D}] -> msiexec /fus {28B89EEF-3007-0000-7102-CF3F3A09B77D}
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\111.0.5563.149\Installer\chrmstp.exe [2023-04-14] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\112.1.50.119\Installer\chrmstp.exe [2023-04-15] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\Software\...\Winlogon\GPExtensions: [{0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}] -> C:\Windows\SysWOW64\wlgpclnt.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{16be69fa-4209-4250-88cb-716cf41954e0}] -> auditcse.dll
HKLM\Software\...\Winlogon\GPExtensions: [{25537BA6-77A8-11D2-9B6C-0000F8080861}] -> C:\Windows\SysWOW64\fdeploy.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{426031c0-0b47-4852-b0ca-ac3d37bfcb39}] -> C:\Windows\SysWOW64\gptext.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4d968b55-cac2-4ff5-983f-0a54603781a3}] -> WorkFoldersGPExt.dll
HKLM\Software\...\Winlogon\GPExtensions: [{7909AD9E-09EE-4247-BAB9-7029D5F0A278}] -> C:\Windows\SysWOW64\dmenrollengine.dll [2023-04-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{827D319E-6EAC-11D2-A4EA-00C04F79F83A}] -> C:\Windows\SysWOW64\scecli.dll [2023-03-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{B587E2B1-4D59-4e7e-AED9-22B9DF11D053}] -> C:\Windows\SysWOW64\dot3gpclnt.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{BA649533-0AAC-4E04-B9BC-4DBAE0325B12}] -> pwlauncher.dll
HKLM\Software\...\Winlogon\GPExtensions: [{C34B2751-1CF4-44F5-9262-C3FC39666591}] -> pwlauncher.dll
HKLM\Software\...\Winlogon\GPExtensions: [{cdeafc3d-948d-49dd-ab12-e578ba4af7aa}] -> C:\Windows\SysWOW64\gptext.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{f3ccc681-b74c-4060-9f26-cd84525dca2a}] -> auditcse.dll
HKLM\Software\...\Winlogon\GPExtensions: [{FB2CA36D-0B40-4307-821B-A13B252DE56C}] -> C:\Windows\SysWOW64\gptext.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{fbf687e6-f063-4d9f-9f4f-fd9a26acdd5f}] -> C:\Windows\SysWOW64\gptext.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2020-04-29]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Evoluent Mouse Manager.lnk [2021-10-21]
ShortcutTarget: Evoluent Mouse Manager.lnk -> C:\Program Files (x86)\Evoluent\Evoluent Mouse Manager\EvoMouseExec.exe (Evoluent (Jack Lo) -> Evoluent) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Image Transfer Utility.lnk [2022-01-03]
ShortcutTarget: Image Transfer Utility.lnk -> C:\Program Files (x86)\Canon\ImageTransferUtility\ImageTransferUtility.exe (Canon Inc. -> CANON INC.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Network Server.lnk [2021-03-24]
ShortcutTarget: Network Server.lnk -> C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\Users\Vali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2022-10-06]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {040D3F70-C727-4270-9868-9D15F318F46E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-08] (Google Inc -> Google LLC)
Task: {082CF432-5DC7-44DB-9042-0A31D108824F} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\WINDOWS\system32\MusNotification.exe /RunOnAC RebootDialog (No File)
Task: {0C7FE380-97EA-43D9-BF8D-3A28F096782D} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [1145 2021-03-24] () [File not signed]
Task: {131690E8-FD7A-4B71-B336-B26D5841983A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\WINDOWS\system32\MusNotification.exe /RunOnBattery RebootDialog (No File)
Task: {1E09107D-8F44-4338-B329-82986C84F663} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2006202D-B4F4-4C3E-B64D-8F156AF011FE} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {22149EAF-22C7-46A9-8A6F-1B440BFC8B4F} - System32\Tasks\Red Giant Link => C:\Program [Argument = Files (x86)\Red Giant Link\Red Giant Link.exe]
Task: {243E2771-B540-4C0F-A24B-3320FF81D579} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {29F8F79B-88C6-4F19-8ED8-9EC1516CE808} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-08] (Google Inc -> Google LLC)
Task: {469FC1FC-450B-40E2-97B5-1F2434527FAB} - System32\Tasks\CCleanerSkipUAC - Vali => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {48FFC210-3964-454A-9B6C-F5580C2EA73E} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {4CF5CEE9-185D-42AE-8BB0-D0953E29AE2B} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-14] (Dropbox, Inc -> Dropbox, Inc.)
Task: {51A40CB3-DD6E-4472-BD90-452ECDAA1F2B} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "1d1c4fe2-63fd-4778-ac1c-14a0ce70a008" --version "6.10.10347" --silent
Task: {530E48A3-7CFC-47B1-9A02-5D1C3B6768F1} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {54DE8D02-85C8-45DF-A408-1C7078B52CA2} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {5C84E12A-9B24-4966-A006-A608EC9AFCFD} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6617D44F-1931-4C8B-9495-F9D0EB43EA44} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-14] (Dropbox, Inc -> Dropbox, Inc.)
Task: {69641306-B29A-4366-9930-286164B93F44} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {7149F3C6-4D3F-4151-86D5-9E455EDF9706} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7ABEE287-9ACE-4EFB-AB4D-73B829C6C62D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {8EA11AEC-44B9-4726-B65C-6A3BA6A059A7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {8F102B42-8827-4EE8-BE87-6ADA006DE548} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {92AAA967-CD49-4933-9DE4-E87E1BA9F2BD} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {96D98186-5BE4-4D21-9F8F-546CF4AA8073} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [737984 2015-08-30] (@ByELDI -> @ByELDI) [File not signed]
Task: {96E184D8-8452-4557-BD25-0428EEE93283} - System32\Tasks\Opera scheduled Autoupdate 1562600925 => C:\Users\Vali\AppData\Local\Programs\Opera\launcher.exe [2686872 2023-04-05] (Opera Norway AS -> Opera Software)
Task: {A886B470-2A53-41AD-BC7D-647CA2DDCA7E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {ACA040FB-CF65-4080-9FBF-32FA5BEED809} - System32\Tasks\UserSwitch_Enable => PowerShell.exe Set-ItemProperty -Path HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI\UserSwitch -Name Enabled -Value 1
Task: {BC0A6097-F752-4DF9-A567-0D788B2215D2} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows\SysWOW64\BthUdTask.exe [38400 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {CDB7AD21-5392-43C8-B908-BD515720602F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D8FD6584-1BEB-416C-A204-51BCC9E88707} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (No File)
Task: {E39FFAC5-C765-4C83-8D78-A61ABEF8C861} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-04-18] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {EB2BEE17-52AF-4DC3-8AC8-5B45CEF874E0} - System32\Tasks\CCleanerSkipUAC - Tami => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {EB5C348D-B449-44AB-BAA3-EA0590CCAF19} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {F5FEB689-73BC-4CC5-BDEE-51DF26E12F31} - System32\Tasks\Opera scheduled assistant Autoupdate 1582729239 => C:\Users\Vali\AppData\Local\Programs\Opera\launcher.exe [2686872 2023-04-05] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Vali\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {F715457F-3DCF-4D1D-85EC-CD483977559A} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718752 2023-04-18] (Mozilla Corporation -> Mozilla Foundation)
Task: {FFCD3D9C-7C31-45E0-AD44-04FE1A5DD65C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{13d8dad0-a2ff-4a71-969d-56315a709532}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{257bd8ad-0260-427e-9cff-d25d98d40cda}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Notifications: HKU\S-1-5-21-4123483902-689985857-2153118612-1002 -> hxxps://teams.microsoft.com
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default [2023-04-12]
Edge Notifications: Default -> hxxps://teams.microsoft.com
Edge Extension: (Edge relevant text changes) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-12]
Edge Extension: (Microsoft Edge DevTools Enhancements) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kfbdpdaobnofkbopebjglnaadopfikhh [2023-04-10]

FireFox:
========
FF DefaultProfile: gkd7snae.default
FF ProfilePath: C:\Users\Vali\AppData\Roaming\Mozilla\Firefox\Profiles\gkd7snae.default [2021-11-11]
FF ProfilePath: C:\Users\Vali\AppData\Roaming\Mozilla\Firefox\Profiles\ty746rql.default-release [2023-01-07]
FF Extension: (Tampermonkey) - C:\Users\Vali\AppData\Roaming\Mozilla\Firefox\Profiles\ty746rql.default-release\Extensions\firefox@tampermonkey.net.xpi [2022-01-19]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-02-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-04-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-4123483902-689985857-2153118612-1002: SkypeForBusinessPlugin-16.2 -> C:\Users\Vali\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-4123483902-689985857-2153118612-1002: SkypeForBusinessPlugin64-16.2 -> C:\Users\Vali\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi-x64.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2023-04-18]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default [2023-04-18]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://teams.microsoft.com; hxxps://webchat.freenode.net; hxxps://www.facebook.com
CHR HomePage: Default -> hxxps://mail.google.com/mail/u/0/#inbox
CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/#inbox"
CHR Extension: (lock) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\aeblfdkhhhdcdjpifhhbdiojplfjncoa [2023-04-18]
CHR Extension: (Injector) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfdonckegflhbiamlmidciapolfccmmb [2022-10-21]
CHR Extension: (GCVote) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\boingbkmoapffongfpcancmephhnmehp [2019-07-08]
CHR Extension: (Markdown Viewer) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckkdlimhmcjmikdlpkmbgfkaikojcbjk [2023-04-18]
CHR Extension: (Adblock na Youtube™) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2023-02-13]
CHR Extension: (Tampermonkey) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2022-12-23]
CHR Extension: (Postman) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhbjgbiflinjbdggehcddcbncdddomop [2022-11-03]
CHR Extension: (Page load time) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\fploionmjgeclbkemipmkogoaohcdbig [2022-12-13]
CHR Extension: (Vzdálená plocha Chrome) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-07-18]
CHR Extension: (HTTPS Everywhere) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2022-06-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-02-10]
CHR Extension: (Page Ruler Redux) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\giejhjebcalaheckengmchjekofhhmal [2022-03-24]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-02-10]
CHR Extension: (Reklamy blokátor pro YouTube ™) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2019-07-08]
CHR Extension: (FormApps Extension) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2022-10-11]
CHR Extension: (Boční lišta zálloh) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdbnofccmhefkmjbkkdkfiicjkgofkdh [2022-08-13]
CHR Extension: (Disconnect) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2020-11-11]
CHR Extension: (ChroPath) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljngjbnaijcbncmcnjfhigebomdlkcjo [2021-11-06]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-02-10]
CHR Extension: (Mapy Google) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2019-07-08]
CHR Extension: (MD Reader) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\medapdbncneneejhbgcjceippjlfkmkg [2023-04-18]
CHR Extension: (MindMup 2.0 - Free Mind Map web site) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkgkheknpfngchmoaognoilfanomldfl [2019-07-08]
CHR Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2023-04-18]
CHR Extension: (SingleFile) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpiodijhokgodhhofbcjdecpffjipkle [2023-04-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Privacy Badger) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkehgijcmpdhfbdbbnkijodmdjhbjlgp [2023-02-10]
CHR HKU\S-1-5-21-4123483902-689985857-2153118612-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-4123483902-689985857-2153118612-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

Opera:
=======
OPR Profile: C:\Users\Vali\AppData\Roaming\Opera Software\Opera Stable [2023-04-18]
OPR DefaultSearchURL: Opera Stable -> hxxps://www.google.com/search?client=opera&q={s ... utEncoding}
OPR DefaultSearchKeyword: Opera Stable -> g
OPR Extension: (AdBlocker for YouTube™) - C:\Users\Vali\AppData\Roaming\Opera Software\Opera Stable\Extensions\cgdogbijachehheddakopmfjahhgmmma [2023-02-09]
OPR Extension: (Rich Hints Agent) - C:\Users\Vali\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-03-25]
OPR Extension: (Opera Wallet) - C:\Users\Vali\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-03-25]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Vali\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-01-11]
OPR Extension: (Tampermonkey) - C:\Users\Vali\AppData\Roaming\Opera Software\Opera Stable\Extensions\mfdhdgbonjidekjkjmjaneanmdmpmidf [2023-02-09]

Brave:
=======
BRA Profile: C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-04-18]
BRA Notifications: Default -> hxxps://calendar.google.com; hxxps://www.facebook.com
BRA HomePage: Default -> hxxps://mail.google.com/mail/u/0/#inbox
BRA Extension: (Překladač Google) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-23]
BRA Extension: (lock) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aeblfdkhhhdcdjpifhhbdiojplfjncoa [2023-04-04]
BRA Extension: (GCVote) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\boingbkmoapffongfpcancmephhnmehp [2021-05-14]
BRA Extension: (Markdown Viewer) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ckkdlimhmcjmikdlpkmbgfkaikojcbjk [2023-03-15]
BRA Extension: (Adblock na Youtube™) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2023-02-13]
BRA Extension: (Tampermonkey) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2022-11-25]
BRA Extension: (Adobe Acrobat: nástroje pro úpravu, převod a podpis souborů PDF) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-03-23]
BRA Extension: (HTTPS Everywhere) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2022-06-14]
BRA Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-02-21]
BRA Extension: (QR Scanner) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gmloihcgbhbonllenincdakeijmikcne [2022-06-26]
BRA Extension: (Najít na mapy.cz) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gmogjpphjifpompcibhiafmlkhdmbbkb [2022-01-24]
BRA Extension: (FormApps Extension) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2022-10-11]
BRA Extension: (Boční lišta záložek) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\jdbnofccmhefkmjbkkdkfiicjkgofkdh [2023-04-13]
BRA Extension: (Disconnect) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2021-05-14]
BRA Extension: (Protractor) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\kpjldaeddnfokhmgdlmpdlecmobaonnj [2022-01-24]
BRA Extension: (ChroPath) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ljngjbnaijcbncmcnjfhigebomdlkcjo [2021-08-03]
BRA Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-02-08]
BRA Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2023-04-10]
BRA Extension: (Material Theme Dark [blue-grey]) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\paoafodbgcjnmijjepmpgnlhnogaahme [2021-11-17]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-04-18]
BRA Extension: (Brave NTP background images) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-08-11]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications List (plaintext))) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-04-18]
BRA Extension: (Wallet Data Files Updater) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-04-18]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-12-04]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2023-04-18]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-04-17]
BRA Extension: (Brave Ad Block Updater (Default (plaintext))) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-04-18]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-03-10]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-03-19]
BRA Extension: (Brave Ad Block Updater (CZE, SVK: EasyList Czech and Slovak (plaintext))) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2023-03-25]
BRA Extension: (Brave Ad Block Updater (CZE, SVK: EasyList Czech and Slovak)) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\omkkefoeihpbpebhhbhmjekpnegokpbj [2022-12-04]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-04-18]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1050920 2021-05-11] (Autodesk, Inc. -> Autodesk Inc.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [852024 2020-11-01] (Adobe Inc. -> Adobe Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [18673448 2020-11-17] (Autodesk, Inc. -> Autodesk)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3896288 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3729888 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 almservice; C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe [2209144 2018-01-17] (Siemens AG -> SIEMENS AG)
S2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc -> Autodesk, Inc.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\112.1.50.119\brave_vpn_helper.exe [3018032 2023-04-15] (Brave Software, Inc. -> Brave Software, Inc.)
R2 CCBService; C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe [41120623 2021-08-05] (ChaosGroup) [File not signed]
R2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [9550744 2018-07-19] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-14] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2023-04-04] (Dropbox, Inc -> Dropbox, Inc.)
S3 Disc Soft Ultra Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusServiceUltra.exe [7208816 2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3549872 2023-01-17] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3549872 2023-01-17] (ESET, spol. s r.o. -> ESET)
R2 EvoDriverUpdateService; C:\Program Files (x86)\Evoluent\Evoluent Mouse Manager\EvoDriverUpdateService.exe [40864 2021-07-21] (Evoluent (Jack Lo) -> Evoluent) [File not signed]
R2 MSSQL$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [366512 2023-01-04] (Microsoft Corporation -> Microsoft Corporation)
R2 PSI_SVC_2_x64; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [737984 2015-08-30] (@ByELDI -> @ByELDI) [File not signed]
S4 SQLAgent$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [607152 2023-01-04] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [15212856 2023-01-18] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [744968 2020-02-18] (Oracle Corporation -> Oracle Corporation)
R2 VRLService; C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe [20309016 2021-05-31] (Chaos Software Ltd. -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\112.1.50.119\elevation_service.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdcsi.inf_amd64_7a26eb38513648ab\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhdcsi.inf_amd64_7a26eb38513648ab\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S2 SolidWorks Flexnet Server; C:\SolidWorks_Flexnet_Server\lmgrd.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [69024 2019-05-29] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R1 dokan1; C:\WINDOWS\System32\DRIVERS\dokan1.sys [131080 2019-07-24] (D3L -> Dokan Project)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [198416 2023-01-17] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [119904 2023-01-17] (ESET, spol. s r.o. -> ESET)
R1 edevmonm; C:\WINDOWS\System32\DRIVERS\edevmonm.sys [120928 2023-01-17] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-08-23] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [237208 2023-01-17] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [122504 2023-01-17] (ESET, spol. s r.o. -> ESET)
S3 EvoMouseDriverFilterHidUsb; C:\WINDOWS\System32\drivers\EvoMouseDriverFilterHidUsb.sys [29616 2020-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Evoluent)
R3 EvoMouseDriverMini; C:\WINDOWS\system32\drivers\EvoMouseDriverMini.sys [25952 2018-09-20] (Microsoft Windows Hardware Compatibility Publisher -> Evoluent)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [71736 2021-08-30] (Insecure.Com LLC -> Insecure.Com LLC.)
S4 npcap_wifi; C:\WINDOWS\system32\DRIVERS\npcap.sys [71736 2021-08-30] (Insecure.Com LLC -> Insecure.Com LLC.)
R2 NPF; C:\Windows\SysWow64\drivers\npf.sys [35344 2014-06-06] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2019-11-08] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> )
S4 RsFx0321; C:\WINDOWS\System32\DRIVERS\RsFx0321.sys [258720 2018-07-25] (Microsoft Corporation -> Microsoft Corporation)
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [247224 2020-02-19] (Oracle Corporation -> Oracle Corporation)
R1 VD_FileDisk; C:\Windows\System32\Drivers\VD_FileDisk.sys [30312 2011-01-26] (Ghisler Software GmbH -> CaptainFlint Software)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R2 WIBUKEY; C:\WINDOWS\System32\DRIVERS\WibuKey64.sys [97792 2011-09-22] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-04-18 21:26 - 2023-04-18 21:26 - 000052050 _____ C:\Users\Vali\Desktop\FRST.txt
2023-04-18 21:25 - 2023-04-18 21:25 - 002381312 _____ (Farbar) C:\Users\Vali\Desktop\FRST64.exe
2023-04-18 21:14 - 2023-04-18 21:14 - 008288432 _____ (hxxps://winmerge.org ) C:\Users\Vali\Downloads\WinMerge-2.16.28-x64-Setup.exe
2023-04-18 21:14 - 2023-04-18 21:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinMerge
2023-04-18 21:14 - 2023-04-18 21:14 - 000000000 ____D C:\Program Files\WinMerge
2023-04-18 21:05 - 2023-04-18 21:05 - 000000004 ____H C:\ProgramData\cm-lock
2023-04-18 21:04 - 2023-04-18 21:04 - 000821100 _____ C:\Users\Vali\Desktop\záložky_18.04.23.html
2023-04-18 14:27 - 2023-04-18 14:27 - 000090242 _____ C:\Users\Tami\Downloads\Podprsenky 05.jpeg
2023-04-18 14:27 - 2023-04-18 14:27 - 000088040 _____ C:\Users\Tami\Downloads\Podprsenky 02.jpeg
2023-04-18 14:27 - 2023-04-18 14:27 - 000086895 _____ C:\Users\Tami\Downloads\Podprsenky 07.jpeg
2023-04-18 14:27 - 2023-04-18 14:27 - 000085449 _____ C:\Users\Tami\Downloads\Podprsenky 01.jpeg
2023-04-18 14:27 - 2023-04-18 14:27 - 000084292 _____ C:\Users\Tami\Downloads\Podprsenky 06.jpeg
2023-04-18 14:27 - 2023-04-18 14:27 - 000078866 _____ C:\Users\Tami\Downloads\Podprsenky 04.jpeg
2023-04-18 14:27 - 2023-04-18 14:27 - 000069809 _____ C:\Users\Tami\Downloads\Podprsenky 03.jpeg
2023-04-18 07:54 - 2023-04-18 21:10 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-04-16 17:00 - 2023-04-16 17:00 - 000159943 _____ C:\Users\Tami\Downloads\LazyEye06.jpeg
2023-04-16 17:00 - 2023-04-16 17:00 - 000118756 _____ C:\Users\Tami\Downloads\LazyEye08.jpeg
2023-04-16 17:00 - 2023-04-16 17:00 - 000118283 _____ C:\Users\Tami\Downloads\LazyEye07.jpeg
2023-04-16 16:59 - 2023-04-16 16:59 - 000102487 _____ C:\Users\Tami\Downloads\LazyEye04.jpeg
2023-04-16 16:59 - 2023-04-16 16:59 - 000099927 _____ C:\Users\Tami\Downloads\LazyEye05.jpeg
2023-04-16 16:59 - 2023-04-16 16:59 - 000087618 _____ C:\Users\Tami\Downloads\LazyEye01.jpeg
2023-04-16 16:59 - 2023-04-16 16:59 - 000070069 _____ C:\Users\Tami\Downloads\LazyEye03.jpeg
2023-04-16 16:59 - 2023-04-16 16:59 - 000065115 _____ C:\Users\Tami\Downloads\LazyEye02.jpeg
2023-04-16 15:04 - 2023-04-16 15:04 - 000316188 _____ C:\Users\Tami\Downloads\Word Art stres.pdf
2023-04-16 14:43 - 2023-04-16 14:43 - 000332772 _____ C:\Users\Tami\Downloads\Názvy pocitů.pdf
2023-04-16 14:42 - 2023-04-16 14:42 - 000118640 _____ C:\Users\Tami\Downloads\METODIKA Zvládání stresu a negativních emocí - Dokumenty Google.pdf
2023-04-15 15:05 - 2023-04-15 15:05 - 000817048 _____ C:\WINDOWS\system32\perfh005.dat
2023-04-15 15:05 - 2023-04-15 15:05 - 000187956 _____ C:\WINDOWS\system32\perfc005.dat
2023-04-13 22:34 - 2023-04-13 22:34 - 000000087 _____ C:\Users\Vali\.git-credentials
2023-04-13 12:32 - 2023-04-13 12:32 - 000135829 _____ C:\Users\Tami\Downloads\Valešová - potvrzení.pdf
2023-04-13 12:28 - 2023-04-13 12:28 - 000065981 _____ C:\Users\Tami\Downloads\Valešová - faktura.pdf
2023-04-13 12:06 - 2023-04-13 12:06 - 000190652 _____ C:\Users\Tami\Downloads\Prezentace 2023.pptx
2023-04-13 11:52 - 2023-04-13 11:52 - 000000000 ___HD C:\$WinREAgent
2023-04-12 19:28 - 2023-04-12 19:28 - 000001351 _____ C:\Users\Vali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1Password.lnk
2023-04-11 21:07 - 2023-04-11 21:07 - 000340396 _____ C:\Users\Tami\Downloads\892760895.pdf
2023-04-10 19:55 - 2023-03-17 21:15 - 000851472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-04-10 19:55 - 2023-03-17 21:13 - 005834760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-04-10 19:54 - 2023-03-17 21:20 - 002172456 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-04-10 19:54 - 2023-03-17 21:20 - 002172456 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-04-10 19:54 - 2023-03-17 21:20 - 001607720 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-04-10 19:54 - 2023-03-17 21:20 - 001607720 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-04-10 19:54 - 2023-03-17 21:20 - 001487328 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-04-10 19:54 - 2023-03-17 21:20 - 001479208 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-04-10 19:54 - 2023-03-17 21:20 - 001479208 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-04-10 19:54 - 2023-03-17 21:20 - 001227248 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-04-10 19:54 - 2023-03-17 21:20 - 001211432 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-04-10 19:54 - 2023-03-17 21:20 - 001211432 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-04-10 19:54 - 2023-03-17 21:16 - 000671776 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-04-10 19:54 - 2023-03-17 21:16 - 000506376 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-04-10 19:54 - 2023-03-17 21:15 - 058244640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2023-04-10 19:54 - 2023-03-17 21:15 - 001535984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-04-10 19:54 - 2023-03-17 21:15 - 001194480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-04-10 19:54 - 2023-03-17 21:15 - 000741872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-04-10 19:54 - 2023-03-17 21:14 - 002165776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-04-10 19:54 - 2023-03-17 21:14 - 001621000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-04-10 19:54 - 2023-03-17 21:14 - 000979472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-04-10 19:54 - 2023-03-17 21:14 - 000759832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-04-10 19:54 - 2023-03-17 21:14 - 000457696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-04-10 19:54 - 2023-03-17 21:13 - 013767176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-04-10 19:54 - 2023-03-17 21:13 - 011647520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-04-10 19:54 - 2023-03-17 21:13 - 006083592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-04-10 19:54 - 2023-03-17 21:13 - 005911584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-04-10 19:54 - 2023-03-17 21:13 - 003429896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-04-10 19:54 - 2023-03-17 21:12 - 000852960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-04-10 19:54 - 2023-03-17 21:11 - 006796280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-04-10 19:54 - 2023-03-17 10:32 - 000104369 _____ C:\WINDOWS\system32\nvinfo.pb
2023-04-10 19:24 - 2023-04-10 19:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2023-04-10 19:24 - 2023-04-10 19:24 - 000000000 ____D C:\ProgramData\BraveSoftware
2023-04-04 22:30 - 2023-04-04 22:30 - 000012449 _____ C:\Users\Vali\Desktop\Velikonoce 2023.kmz
2023-04-04 12:51 - 2023-04-04 12:51 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2023-04-03 13:58 - 2023-04-03 13:58 - 000310423 _____ C:\Users\Tami\Downloads\goby091222_3.xlsx
2023-04-02 20:14 - 2023-04-02 20:14 - 000002667 _____ C:\Users\Vali\Desktop\Autodesk Fusion 360.lnk
2023-04-02 20:14 - 2023-04-02 20:14 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk
2023-04-02 20:04 - 2023-04-02 20:04 - 011760696 _____ (Autodesk, Inc) C:\Users\Vali\Downloads\Fusion 360 Client Downloader.exe
2023-03-25 23:27 - 2023-03-25 23:27 - 000373984 _____ C:\Users\Vali\Downloads\lua-5.4.2_Win64_bin.zip
2023-03-25 23:27 - 2023-03-25 23:27 - 000000000 ____D C:\lua
2023-03-22 17:09 - 2023-03-22 17:09 - 000000000 ____D C:\Users\Tami\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2023-03-22 17:09 - 2023-03-22 17:09 - 000000000 ____D C:\Users\Tami\AppData\Local\Zoom
2023-03-20 20:31 - 2023-03-20 21:14 - 000037309 _____ C:\Users\Vali\Desktop\geodetická keš.dwg
2023-03-20 15:27 - 2023-03-20 15:27 - 000090098 _____ C:\Users\Tami\Downloads\Word Art.pdf
2023-03-19 21:40 - 2023-03-19 21:40 - 000000000 ____D C:\Users\Vali\Desktop\Sifrovane_dokumenty

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-04-18 21:26 - 2020-06-27 14:20 - 000000000 ____D C:\FRST
2023-04-18 21:26 - 2019-10-04 18:51 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2023-04-18 21:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-04-18 21:23 - 2022-05-05 17:10 - 000000000 ____D C:\Users\Vali\AppData\Roaming\1Password
2023-04-18 21:23 - 2022-05-05 17:09 - 000000000 ____D C:\Users\Vali\AppData\Local\1Password
2023-04-18 21:19 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-04-18 21:14 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-04-18 21:14 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-04-18 21:14 - 2019-07-08 17:39 - 000000000 ____D C:\Users\Vali\AppData\Local\Packages
2023-04-18 21:14 - 2019-06-26 10:14 - 000000000 ____D C:\ProgramData\Packages
2023-04-18 21:11 - 2022-10-05 16:07 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4123483902-689985857-2153118612-1002
2023-04-18 21:11 - 2022-10-05 16:07 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4123483902-689985857-2153118612-1002
2023-04-18 21:11 - 2021-10-03 14:57 - 000002374 _____ C:\Users\Vali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-04-18 21:10 - 2022-10-05 16:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-04-18 21:10 - 2021-11-11 20:22 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-04-18 21:10 - 2021-11-11 20:22 - 000000000 ____D C:\Users\Vali\AppData\LocalLow\Mozilla
2023-04-18 21:10 - 2021-11-11 20:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-04-18 21:10 - 2019-11-06 22:03 - 000000000 ____D C:\Users\Vali\Desktop\ČSOB
2023-04-18 21:07 - 2019-07-10 06:28 - 000000000 ____D C:\Program Files\CCleaner
2023-04-18 21:07 - 2019-07-08 17:44 - 000000000 ____D C:\Program Files (x86)\Google
2023-04-18 21:05 - 2022-10-05 16:07 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-04-18 21:05 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-04-18 21:05 - 2020-07-19 20:31 - 000012288 ___SH C:\DumpStack.log.tmp
2023-04-18 21:05 - 2020-04-29 09:25 - 000000068 __RSH C:\WINDOWS\system32\Drivers\xinputhid.winsecurity
2023-04-18 21:05 - 2020-04-29 09:25 - 000000068 __RSH C:\WINDOWS\system32\Drivers\winusb.winsecurity
2023-04-18 21:05 - 2019-10-14 17:09 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2023-04-18 21:05 - 2019-06-26 10:06 - 000000000 ____D C:\ProgramData\NVIDIA
2023-04-18 21:02 - 2020-07-19 20:46 - 000000000 ____D C:\Users\Vali\AppData\Local\D3DSCache
2023-04-18 20:41 - 2022-10-05 15:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-04-18 16:58 - 2021-09-08 20:46 - 000000000 ____D C:\Users\Tami\AppData\Local\D3DSCache
2023-04-18 13:39 - 2019-07-10 07:05 - 000000000 ___RD C:\Users\Tami\OneDrive
2023-04-18 09:47 - 2019-07-31 07:06 - 000000000 ____D C:\Users\Tami\AppData\Roaming\Microsoft\Šablony
2023-04-18 09:43 - 2019-07-31 07:06 - 000000000 ____D C:\Users\Tami\AppData\Roaming\Microsoft\Word
2023-04-17 13:09 - 2020-08-26 17:03 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-04-16 14:45 - 2019-07-24 08:38 - 000000000 ____D C:\Users\Tami\AppData\Roaming\Microsoft\Excel
2023-04-16 14:44 - 2019-07-10 07:03 - 000000000 ____D C:\Users\Tami\AppData\Local\Packages
2023-04-15 15:26 - 2022-03-06 18:41 - 000000000 ____D C:\Users\Tami\AppData\Roaming\DropboxElectron
2023-04-15 15:26 - 2019-07-11 12:33 - 000000000 ____D C:\Users\Tami\AppData\Local\Dropbox
2023-04-15 15:05 - 2022-10-05 16:07 - 001979924 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-04-15 15:05 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-04-15 14:58 - 2021-05-14 20:06 - 000002364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-04-15 14:58 - 2020-12-15 21:01 - 000000000 ____D C:\Users\Tami\AppData\Local\CrashDumps
2023-04-14 12:25 - 2019-07-08 17:44 - 000002365 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-04-13 22:34 - 2022-10-05 15:56 - 000000000 ____D C:\Users\Vali
2023-04-13 22:34 - 2020-04-17 16:19 - 000002869 _____ C:\Users\Vali\.bash_history
2023-04-13 22:33 - 2021-03-02 21:08 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Code
2023-04-13 21:55 - 2022-03-29 20:06 - 000000000 ____D C:\Users\Vali\.platformio
2023-04-13 21:49 - 2021-03-02 21:08 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2023-04-13 14:15 - 2022-10-05 15:50 - 001958984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-04-13 12:05 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-04-13 12:01 - 2022-10-05 15:55 - 003211776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-04-12 20:00 - 2019-12-09 18:08 - 000000000 ____D C:\Users\Vali\AppData\Local\CrashDumps
2023-04-12 20:00 - 2019-07-10 20:27 - 000000033 _____ C:\Users\Vali\AppData\Roaming\AdobeWLCMCache.dat
2023-04-12 19:48 - 2019-06-26 10:19 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-04-12 19:44 - 2019-06-26 10:19 - 156112424 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-04-12 19:26 - 2022-10-05 16:07 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4123483902-689985857-2153118612-1003
2023-04-12 19:26 - 2022-10-05 16:07 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4123483902-689985857-2153118612-1003
2023-04-12 19:26 - 2020-07-19 20:35 - 000002374 _____ C:\Users\Tami\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-04-11 13:19 - 2022-10-16 19:07 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2023-04-11 00:26 - 2022-10-05 16:07 - 000003768 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-04-11 00:26 - 2022-10-05 16:07 - 000003644 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-04-10 21:30 - 2019-07-10 20:20 - 000000000 ____D C:\Users\Vali\AppData\Local\NVIDIA
2023-04-10 19:52 - 2019-12-09 17:31 - 000000000 ____D C:\Users\Vali\AppData\Local\NVIDIA Corporation
2023-04-10 19:29 - 2022-10-05 16:07 - 000004144 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1562600925
2023-04-10 19:29 - 2022-01-17 17:00 - 000001402 _____ C:\Users\Vali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2023-04-10 19:28 - 2022-10-05 16:07 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-04-10 19:24 - 2019-07-18 20:54 - 000000000 ____D C:\Program Files (x86)\Dropbox
2023-04-10 19:15 - 2022-10-05 16:07 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-04-10 19:15 - 2022-10-05 16:07 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-04-04 22:45 - 2021-06-01 15:42 - 000000000 ____D C:\Users\Vali\Downloads\_WHERIGO
2023-04-03 21:36 - 2019-08-16 09:15 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Microsoft\Word
2023-04-03 21:36 - 2019-07-25 14:22 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Microsoft\Šablony
2023-04-03 19:53 - 2019-07-10 19:46 - 000000000 ____D C:\Users\Vali\AppData\Local\Autodesk
2023-04-02 20:54 - 2022-10-04 15:01 - 000000000 ____D C:\Users\Vali\AppData\Local\RealVNC
2023-04-02 20:54 - 2022-10-04 14:54 - 000000128 _____ C:\Users\Vali\AppData\Local\PUTTY.RND
2023-04-02 20:16 - 2019-07-10 19:44 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Autodesk
2023-03-25 21:52 - 2019-10-12 20:25 - 000000000 ____D C:\Users\Vali\AppData\Roaming\vlc
2023-03-23 21:23 - 2023-02-20 22:51 - 000000000 ____D C:\Users\Vali\AppData\Roaming\PrusaSlicer
2023-03-22 17:09 - 2020-03-19 12:02 - 000000000 ____D C:\Users\Tami\AppData\Roaming\Zoom
2023-03-19 21:43 - 2020-05-06 13:24 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Cryptomator

==================== Files in the root of some directories ========

2019-07-10 20:27 - 2023-04-12 20:00 - 000000033 _____ () C:\Users\Vali\AppData\Roaming\AdobeWLCMCache.dat
2020-08-23 19:15 - 2020-08-23 19:20 - 000001140 _____ () C:\Users\Vali\AppData\Roaming\javascriptobfuscator.jsop
2020-09-24 20:11 - 2023-02-12 17:14 - 000001480 _____ () C:\Users\Vali\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2020-08-13 17:27 - 2022-09-08 21:09 - 000002733 _____ () C:\Users\Vali\AppData\Local\meld.log
2019-07-10 20:19 - 2019-07-10 20:19 - 000000410 _____ () C:\Users\Vali\AppData\Local\oobelibMkey.log
2022-10-04 14:54 - 2023-04-02 20:54 - 000000128 _____ () C:\Users\Vali\AppData\Local\PUTTY.RND
2022-09-08 21:58 - 2022-09-08 21:58 - 000002109 _____ () C:\Users\Vali\AppData\Local\recently-used.xbel

==================== FLock ==============================

2021-11-30 21:50 C:\Users\Tami\AppData\Roaming\FileZilla
2021-11-30 21:48 C:\Users\Tami\AppData\Local\FileZilla

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Přílohy
Addition.zip
(35.3 KiB) Staženo 35 x
Nahoru
Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:
Kontaktovat uživatele Diallix

Re: Preventivní kontrola

#2 Příspěvek od Diallix »

Dobrý deň.

Prečistite počítač s programom CCleaner - Registry. Čistenie spustite niekoľko krát, kým nebudú žiadne problémy.

Následne tu vložte nové logy z FRST.
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Nahoru
Lancre
Návštěvník
Návštěvník
Příspěvky: 152
Registrován: 24 úno 2012 15:28

Re: Preventivní kontrola

#3 Příspěvek od Lancre »

FRST.txt:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-04-2023
Ran by Vali (administrator) on VALIPC (HP HP Pavilion Gaming Desktop 690-00xx) (24-04-2023 20:51:21)
Running from C:\Users\Vali\Desktop\FRST64.exe
Loaded Profiles: Vali
Platform: Microsoft Windows 11 Home Version 22H2 22621.1555 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.133\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.133\BraveCrashHandler64.exe
(C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(cmd.exe ->) (Agilebits -> AgileBits, Inc.) C:\Users\Vali\AppData\Local\1Password\app\8\1Password-BrowserSupport.exe
(explorer.exe ->) (Agilebits -> 1Password) C:\Users\Vali\AppData\Local\1Password\app\8\1Password.exe <4>
(explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <23>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.212\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.212\GoogleCrashHandler64.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (@ByELDI -> @ByELDI) [File not signed] C:\Program Files\KMSpico\Service_KMS.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DiscSoftBusServiceUltra.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Evoluent (Jack Lo) -> Evoluent) [File not signed] C:\Program Files (x86)\Evoluent\Evoluent Mouse Manager\EvoDriverUpdateService.exe
(services.exe ->) (Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(services.exe ->) (Chaos Software Ltd. -> ) C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe
(services.exe ->) (ChaosGroup) [File not signed] C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdcsi.inf_amd64_7a26eb38513648ab\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Siemens AG -> SIEMENS AG) C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.8900.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [194704 2023-01-17] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2095672 2020-11-01] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [11327200 2023-04-15] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [668376 2021-05-11] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-11-01] (Adobe Inc. -> )
HKLM-x32\...\Run: [Evoluent Mouse Listener] => C:\Program Files (x86)\Evoluent\Evoluent Mouse Manager\EvoMouseListener.exe [144800 2021-07-21] (Evoluent (Jack Lo) -> Evoluent) [File not signed]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5237416 2021-02-02] (Adobe Inc. -> Adobe Systems Inc.)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\112.0.1722.58\Installer\setup.exe [4007888 2023-04-23] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-21-4123483902-689985857-2153118612-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [677512 2020-11-01] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40412472 2023-04-17] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91016584 2021-01-15] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [458608 2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\Run: [1Password] => C:\Users\Vali\AppData\Local\1Password\app\8\1Password.exe [162193776 2023-04-20] (Agilebits -> 1Password)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\Run: [MicrosoftEdgeAutoLaunch_47E7A3D832D99C24E8E65EF6A7C4529C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4139968 2023-04-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4123483902-689985857-2153118612-1002\...\Run: [Opera Browser Assistant] => C:\Users\Vali\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3947424 2023-04-19] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-4123483902-689985857-2153118612-1003\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40412472 2023-04-17] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKLM\...\Providers\Internet Print Provider: inetpp.dll
HKLM\...\Providers\LanMan Print Services: win32spl.dll
HKLM\...\Windows x64\Print Processors\HP1006PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1006PP.dll [65024 2013-04-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: AdobePDF.dll (No File)
HKLM\...\Print\Monitors\Appmon: AppMon.dll (No File)
HKLM\...\Print\Monitors\HP1006LM: HP1006LM.DLL (No File)
HKLM\...\Print\Monitors\Local Port: localspl.dll (No File)
HKLM\...\Print\Monitors\Microsoft Shared Fax Monitor: FXSMON.DLL (No File)
HKLM\...\Print\Monitors\pdfcmon: pdfcmon.dll (No File)
HKLM\...\Print\Monitors\Standard TCP/IP Port: tcpmon.dll (No File)
HKLM\...\Print\Monitors\USB Monitor: usbmon.dll (No File)
HKLM\...\Print\Monitors\WSD Port: APMon.dll (No File)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{28B89EEF-3007-0000-7102-CF3F3A09B77D}] -> msiexec /fus {28B89EEF-3007-0000-7102-CF3F3A09B77D}
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\112.0.5615.138\Installer\chrmstp.exe [2023-04-21] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\112.1.50.121\Installer\chrmstp.exe [2023-04-21] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\Software\...\Winlogon\GPExtensions: [{0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}] -> C:\Windows\SysWOW64\wlgpclnt.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{16be69fa-4209-4250-88cb-716cf41954e0}] -> auditcse.dll
HKLM\Software\...\Winlogon\GPExtensions: [{25537BA6-77A8-11D2-9B6C-0000F8080861}] -> C:\Windows\SysWOW64\fdeploy.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{426031c0-0b47-4852-b0ca-ac3d37bfcb39}] -> C:\Windows\SysWOW64\gptext.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{4d968b55-cac2-4ff5-983f-0a54603781a3}] -> WorkFoldersGPExt.dll
HKLM\Software\...\Winlogon\GPExtensions: [{7909AD9E-09EE-4247-BAB9-7029D5F0A278}] -> C:\Windows\SysWOW64\dmenrollengine.dll [2023-04-13] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{827D319E-6EAC-11D2-A4EA-00C04F79F83A}] -> C:\Windows\SysWOW64\scecli.dll [2023-03-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{B587E2B1-4D59-4e7e-AED9-22B9DF11D053}] -> C:\Windows\SysWOW64\dot3gpclnt.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{BA649533-0AAC-4E04-B9BC-4DBAE0325B12}] -> pwlauncher.dll
HKLM\Software\...\Winlogon\GPExtensions: [{C34B2751-1CF4-44F5-9262-C3FC39666591}] -> pwlauncher.dll
HKLM\Software\...\Winlogon\GPExtensions: [{cdeafc3d-948d-49dd-ab12-e578ba4af7aa}] -> C:\Windows\SysWOW64\gptext.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{f3ccc681-b74c-4060-9f26-cd84525dca2a}] -> auditcse.dll
HKLM\Software\...\Winlogon\GPExtensions: [{FB2CA36D-0B40-4307-821B-A13B252DE56C}] -> C:\Windows\SysWOW64\gptext.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{fbf687e6-f063-4d9f-9f4f-fd9a26acdd5f}] -> C:\Windows\SysWOW64\gptext.dll [2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2020-04-29]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Evoluent Mouse Manager.lnk [2021-10-21]
ShortcutTarget: Evoluent Mouse Manager.lnk -> C:\Program Files (x86)\Evoluent\Evoluent Mouse Manager\EvoMouseExec.exe (Evoluent (Jack Lo) -> Evoluent) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Image Transfer Utility.lnk [2022-01-03]
ShortcutTarget: Image Transfer Utility.lnk -> C:\Program Files (x86)\Canon\ImageTransferUtility\ImageTransferUtility.exe (Canon Inc. -> CANON INC.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Network Server.lnk [2021-03-24]
ShortcutTarget: Network Server.lnk -> C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
Startup: C:\Users\Vali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2022-10-06]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {040D3F70-C727-4270-9868-9D15F318F46E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-08] (Google Inc -> Google LLC)
Task: {082CF432-5DC7-44DB-9042-0A31D108824F} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => C:\WINDOWS\system32\MusNotification.exe /RunOnAC RebootDialog (No File)
Task: {0C7FE380-97EA-43D9-BF8D-3A28F096782D} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [1145 2021-03-24] () [File not signed]
Task: {131690E8-FD7A-4B71-B336-B26D5841983A} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => C:\WINDOWS\system32\MusNotification.exe /RunOnBattery RebootDialog (No File)
Task: {171A4439-7063-45B5-9E6B-A3AD77498FAC} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-04-17] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "1d1c4fe2-63fd-4778-ac1c-14a0ce70a008" --version "6.11.10435" --silent
Task: {1A15FCDF-59EC-4540-9A9F-59B07697C2EF} - System32\Tasks\Opera scheduled assistant Autoupdate 1582729239 => C:\Users\Vali\AppData\Local\Programs\Opera\launcher.exe [2686880 2023-04-18] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Vali\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {1E09107D-8F44-4338-B329-82986C84F663} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2006202D-B4F4-4C3E-B64D-8F156AF011FE} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {22149EAF-22C7-46A9-8A6F-1B440BFC8B4F} - System32\Tasks\Red Giant Link => C:\Program [Argument = Files (x86)\Red Giant Link\Red Giant Link.exe]
Task: {243E2771-B540-4C0F-A24B-3320FF81D579} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {29F8F79B-88C6-4F19-8ED8-9EC1516CE808} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-08] (Google Inc -> Google LLC)
Task: {469FC1FC-450B-40E2-97B5-1F2434527FAB} - System32\Tasks\CCleanerSkipUAC - Vali => C:\Program Files\CCleaner\CCleaner.exe [34159416 2023-04-17] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {48FFC210-3964-454A-9B6C-F5580C2EA73E} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {4CF5CEE9-185D-42AE-8BB0-D0953E29AE2B} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-14] (Dropbox, Inc -> Dropbox, Inc.)
Task: {4EDE90FB-7660-46C4-8821-555118BFDFB8} - System32\Tasks\Opera scheduled Autoupdate 1562600925 => C:\Users\Vali\AppData\Local\Programs\Opera\launcher.exe [2686880 2023-04-18] (Opera Norway AS -> Opera Software)
Task: {530E48A3-7CFC-47B1-9A02-5D1C3B6768F1} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {54DE8D02-85C8-45DF-A408-1C7078B52CA2} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {5C84E12A-9B24-4966-A006-A608EC9AFCFD} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6617D44F-1931-4C8B-9495-F9D0EB43EA44} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-14] (Dropbox, Inc -> Dropbox, Inc.)
Task: {69641306-B29A-4366-9930-286164B93F44} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {7149F3C6-4D3F-4151-86D5-9E455EDF9706} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8EA11AEC-44B9-4726-B65C-6A3BA6A059A7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {8F102B42-8827-4EE8-BE87-6ADA006DE548} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {92AAA967-CD49-4933-9DE4-E87E1BA9F2BD} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {96D98186-5BE4-4D21-9F8F-546CF4AA8073} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [737984 2015-08-30] (@ByELDI -> @ByELDI) [File not signed]
Task: {A886B470-2A53-41AD-BC7D-647CA2DDCA7E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {ACA040FB-CF65-4080-9FBF-32FA5BEED809} - System32\Tasks\UserSwitch_Enable => PowerShell.exe Set-ItemProperty -Path HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI\UserSwitch -Name Enabled -Value 1
Task: {BC0A6097-F752-4DF9-A567-0D788B2215D2} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows\SysWOW64\BthUdTask.exe [38400 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Task: {C108DBA1-335F-43AB-AFEF-292EB4B553F4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-04-17] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {CDB7AD21-5392-43C8-B908-BD515720602F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D8FD6584-1BEB-416C-A204-51BCC9E88707} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\WINDOWS\system32\MusNotification.exe (No File)
Task: {E39FFAC5-C765-4C83-8D78-A61ABEF8C861} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-04-24] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {EB2BEE17-52AF-4DC3-8AC8-5B45CEF874E0} - System32\Tasks\CCleanerSkipUAC - Tami => C:\Program Files\CCleaner\CCleaner.exe [34159416 2023-04-17] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {EB5C348D-B449-44AB-BAA3-EA0590CCAF19} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {F715457F-3DCF-4D1D-85EC-CD483977559A} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718752 2023-04-24] (Mozilla Corporation -> Mozilla Foundation)
Task: {FFCD3D9C-7C31-45E0-AD44-04FE1A5DD65C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{13d8dad0-a2ff-4a71-969d-56315a709532}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{257bd8ad-0260-427e-9cff-d25d98d40cda}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Notifications: HKU\S-1-5-21-4123483902-689985857-2153118612-1002 -> hxxps://teams.microsoft.com
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default [2023-04-24]
Edge Extension: (Edge relevant text changes) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-12]
Edge Extension: (Microsoft Edge DevTools Enhancements) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kfbdpdaobnofkbopebjglnaadopfikhh [2023-04-10]

FireFox:
========
FF DefaultProfile: gkd7snae.default
FF ProfilePath: C:\Users\Vali\AppData\Roaming\Mozilla\Firefox\Profiles\gkd7snae.default [2021-11-11]
FF ProfilePath: C:\Users\Vali\AppData\Roaming\Mozilla\Firefox\Profiles\ty746rql.default-release [2023-04-24]
FF Extension: (Tampermonkey) - C:\Users\Vali\AppData\Roaming\Mozilla\Firefox\Profiles\ty746rql.default-release\Extensions\firefox@tampermonkey.net.xpi [2022-01-19]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-02-02] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-04-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-4123483902-689985857-2153118612-1002: SkypeForBusinessPlugin-16.2 -> C:\Users\Vali\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-4123483902-689985857-2153118612-1002: SkypeForBusinessPlugin64-16.2 -> C:\Users\Vali\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\npGatewayNpapi-x64.dll [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2023-04-24]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default [2023-04-24]
CHR HomePage: Default -> hxxps://mail.google.com/mail/u/0/#inbox
CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/#inbox"
CHR Extension: (lock) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\aeblfdkhhhdcdjpifhhbdiojplfjncoa [2023-04-18]
CHR Extension: (Injector) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfdonckegflhbiamlmidciapolfccmmb [2022-10-21]
CHR Extension: (GCVote) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\boingbkmoapffongfpcancmephhnmehp [2019-07-08]
CHR Extension: (Markdown Viewer) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckkdlimhmcjmikdlpkmbgfkaikojcbjk [2023-04-18]
CHR Extension: (Adblock na Youtube™) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2023-02-13]
CHR Extension: (Tampermonkey) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2022-12-23]
CHR Extension: (Postman) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhbjgbiflinjbdggehcddcbncdddomop [2022-11-03]
CHR Extension: (Page load time) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\fploionmjgeclbkemipmkogoaohcdbig [2022-12-13]
CHR Extension: (Vzdálená plocha Chrome) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-07-18]
CHR Extension: (HTTPS Everywhere) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2022-06-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-02-10]
CHR Extension: (Page Ruler Redux) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\giejhjebcalaheckengmchjekofhhmal [2022-03-24]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-02-10]
CHR Extension: (Reklamy blokátor pro YouTube ™) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2019-07-08]
CHR Extension: (FormApps Extension) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2022-10-11]
CHR Extension: (Boční lišta zálloh) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdbnofccmhefkmjbkkdkfiicjkgofkdh [2022-08-13]
CHR Extension: (Disconnect) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2020-11-11]
CHR Extension: (ChroPath) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljngjbnaijcbncmcnjfhigebomdlkcjo [2021-11-06]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-02-10]
CHR Extension: (Mapy Google) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2019-07-08]
CHR Extension: (MD Reader) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\medapdbncneneejhbgcjceippjlfkmkg [2023-04-18]
CHR Extension: (MindMup 2.0 - Free Mind Map web site) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkgkheknpfngchmoaognoilfanomldfl [2019-07-08]
CHR Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2023-04-18]
CHR Extension: (SingleFile) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpiodijhokgodhhofbcjdecpffjipkle [2023-04-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Privacy Badger) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkehgijcmpdhfbdbbnkijodmdjhbjlgp [2023-02-10]
CHR HKU\S-1-5-21-4123483902-689985857-2153118612-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-4123483902-689985857-2153118612-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

Opera:
=======
OPR Profile: C:\Users\Vali\AppData\Roaming\Opera Software\Opera Stable [2023-04-24]
OPR DefaultSearchURL: Opera Stable -> hxxps://www.google.com/search?client=opera&q={s ... utEncoding}
OPR DefaultSearchKeyword: Opera Stable -> g
OPR Extension: (AdBlocker for YouTube™) - C:\Users\Vali\AppData\Roaming\Opera Software\Opera Stable\Extensions\cgdogbijachehheddakopmfjahhgmmma [2023-02-09]
OPR Extension: (Rich Hints Agent) - C:\Users\Vali\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-03-25]
OPR Extension: (Opera Wallet) - C:\Users\Vali\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-03-25]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Vali\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-01-11]
OPR Extension: (Tampermonkey) - C:\Users\Vali\AppData\Roaming\Opera Software\Opera Stable\Extensions\mfdhdgbonjidekjkjmjaneanmdmpmidf [2023-02-09]

Brave:
=======
BRA Profile: C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2023-04-24]
BRA Notifications: Default -> hxxps://calendar.google.com; hxxps://www.facebook.com
BRA HomePage: Default -> hxxps://mail.google.com/mail/u/0/#inbox
BRA Extension: (Překladač Google) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-23]
BRA Extension: (lock) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aeblfdkhhhdcdjpifhhbdiojplfjncoa [2023-04-22]
BRA Extension: (GCVote) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\boingbkmoapffongfpcancmephhnmehp [2021-05-14]
BRA Extension: (Markdown Viewer) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ckkdlimhmcjmikdlpkmbgfkaikojcbjk [2023-03-15]
BRA Extension: (Adblock na Youtube™) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2023-02-13]
BRA Extension: (Tampermonkey) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2022-11-25]
BRA Extension: (Adobe Acrobat: nástroje pro úpravu, převod a podpis souborů PDF) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-03-23]
BRA Extension: (HTTPS Everywhere) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2022-06-14]
BRA Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-04-24]
BRA Extension: (QR Scanner) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gmloihcgbhbonllenincdakeijmikcne [2022-06-26]
BRA Extension: (Najít na mapy.cz) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gmogjpphjifpompcibhiafmlkhdmbbkb [2022-01-24]
BRA Extension: (FormApps Extension) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2022-10-11]
BRA Extension: (Boční lišta záložek) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\jdbnofccmhefkmjbkkdkfiicjkgofkdh [2023-04-22]
BRA Extension: (Disconnect) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2021-05-14]
BRA Extension: (Protractor) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\kpjldaeddnfokhmgdlmpdlecmobaonnj [2022-01-24]
BRA Extension: (ChroPath) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ljngjbnaijcbncmcnjfhigebomdlkcjo [2021-08-03]
BRA Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-02-08]
BRA Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2023-04-10]
BRA Extension: (Material Theme Dark [blue-grey]) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\paoafodbgcjnmijjepmpgnlhnogaahme [2021-11-17]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2023-04-24]
BRA Extension: (Brave NTP background images) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-08-11]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications List (plaintext))) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2023-04-24]
BRA Extension: (Wallet Data Files Updater) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2023-04-24]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-12-04]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2023-04-24]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-04-17]
BRA Extension: (Brave Ad Block Updater (Default (plaintext))) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2023-04-24]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-03-10]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2023-03-19]
BRA Extension: (Brave Ad Block Updater (CZE, SVK: EasyList Czech and Slovak (plaintext))) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2023-03-25]
BRA Extension: (Brave Ad Block Updater (CZE, SVK: EasyList Czech and Slovak)) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\omkkefoeihpbpebhhbhmjekpnegokpbj [2022-12-04]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-04-19]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1050920 2021-05-11] (Autodesk, Inc. -> Autodesk Inc.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [852024 2020-11-01] (Adobe Inc. -> Adobe Inc.)
S2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [18673448 2020-11-17] (Autodesk, Inc. -> Autodesk)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3896288 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3729888 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 almservice; C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe [2209144 2018-01-17] (Siemens AG -> SIEMENS AG)
S2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc -> Autodesk, Inc.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-05-14] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveVpnService; C:\Program Files\BraveSoftware\Brave-Browser\Application\112.1.50.121\brave_vpn_helper.exe [3015472 2023-04-19] (Brave Software, Inc. -> Brave Software, Inc.)
R2 CCBService; C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe [41120623 2021-08-05] (ChaosGroup) [File not signed]
R2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [9550744 2018-07-19] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-14] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2021-11-14] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2023-04-15] (Dropbox, Inc -> Dropbox, Inc.)
R3 Disc Soft Ultra Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusServiceUltra.exe [7208816 2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3549872 2023-01-17] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3549872 2023-01-17] (ESET, spol. s r.o. -> ESET)
R2 EvoDriverUpdateService; C:\Program Files (x86)\Evoluent\Evoluent Mouse Manager\EvoDriverUpdateService.exe [40864 2021-07-21] (Evoluent (Jack Lo) -> Evoluent) [File not signed]
R2 MSSQL$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [366512 2023-01-04] (Microsoft Corporation -> Microsoft Corporation)
R2 PSI_SVC_2_x64; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
R2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [737984 2015-08-30] (@ByELDI -> @ByELDI) [File not signed]
S4 SQLAgent$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [607152 2023-01-04] (Microsoft Corporation -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [15212856 2023-01-18] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [744968 2020-02-18] (Oracle Corporation -> Oracle Corporation)
R2 VRLService; C:\Program Files\Chaos Group\VRLService\OLS\vrol.exe [20309016 2021-05-31] (Chaos Software Ltd. -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdcsi.inf_amd64_7a26eb38513648ab\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhdcsi.inf_amd64_7a26eb38513648ab\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [69024 2019-05-29] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R1 dokan1; C:\WINDOWS\System32\DRIVERS\dokan1.sys [131080 2019-07-24] (D3L -> Dokan Project)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [198416 2023-01-17] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [119904 2023-01-17] (ESET, spol. s r.o. -> ESET)
R1 edevmonm; C:\WINDOWS\System32\DRIVERS\edevmonm.sys [120928 2023-01-17] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-08-23] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [237208 2023-01-17] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [122504 2023-01-17] (ESET, spol. s r.o. -> ESET)
S3 EvoMouseDriverFilterHidUsb; C:\WINDOWS\System32\drivers\EvoMouseDriverFilterHidUsb.sys [29616 2020-07-29] (Microsoft Windows Hardware Compatibility Publisher -> Evoluent)
R3 EvoMouseDriverMini; C:\WINDOWS\system32\drivers\EvoMouseDriverMini.sys [25952 2018-09-20] (Microsoft Windows Hardware Compatibility Publisher -> Evoluent)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [71736 2021-08-30] (Insecure.Com LLC -> Insecure.Com LLC.)
S4 npcap_wifi; C:\WINDOWS\system32\DRIVERS\npcap.sys [71736 2021-08-30] (Insecure.Com LLC -> Insecure.Com LLC.)
R2 NPF; C:\Windows\SysWow64\drivers\npf.sys [35344 2014-06-06] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2019-11-08] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> )
S4 RsFx0321; C:\WINDOWS\System32\DRIVERS\RsFx0321.sys [258720 2018-07-25] (Microsoft Corporation -> Microsoft Corporation)
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [247224 2020-02-19] (Oracle Corporation -> Oracle Corporation)
R1 VD_FileDisk; C:\Windows\System32\Drivers\VD_FileDisk.sys [30312 2011-01-26] (Ghisler Software GmbH -> CaptainFlint Software)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R2 WIBUKEY; C:\WINDOWS\System32\DRIVERS\WibuKey64.sys [97792 2011-09-22] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-04-24 20:51 - 2023-04-24 20:51 - 000050867 _____ C:\Users\Vali\Desktop\FRST.txt
2023-04-24 20:51 - 2023-04-24 20:51 - 000000000 ____D C:\Users\Vali\Desktop\FRST-OlderVersion
2023-04-24 20:03 - 2023-04-24 20:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-04-23 17:55 - 2023-04-23 17:55 - 000012070 _____ C:\Users\Vali\Desktop\bile_plexi_8mm_elektroskrin.cdr
2023-04-23 17:18 - 2023-04-23 17:18 - 000012130 _____ C:\Users\Vali\Desktop\cerne_plexi_5mm_mikrospinace.cdr
2023-04-21 20:46 - 2023-04-21 20:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2023-04-20 19:47 - 2023-04-20 19:47 - 000001351 _____ C:\Users\Vali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1Password.lnk
2023-04-19 12:37 - 2023-04-19 12:37 - 000004036 _____ C:\WINDOWS\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-4123483902-689985857-2153118612-1003_4
2023-04-18 21:33 - 2023-04-18 21:33 - 000036149 _____ C:\Users\Vali\Desktop\Addition.zip
2023-04-18 21:25 - 2023-04-24 20:51 - 002381824 _____ (Farbar) C:\Users\Vali\Desktop\FRST64.exe
2023-04-18 21:14 - 2023-04-18 21:14 - 008288432 _____ (hxxps://winmerge.org ) C:\Users\Vali\Downloads\WinMerge-2.16.28-x64-Setup.exe
2023-04-18 21:14 - 2023-04-18 21:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinMerge
2023-04-18 21:14 - 2023-04-18 21:14 - 000000000 ____D C:\Program Files\WinMerge
2023-04-18 21:05 - 2023-04-18 21:05 - 000000004 ____H C:\ProgramData\cm-lock
2023-04-18 21:04 - 2023-04-18 21:04 - 000821100 _____ C:\Users\Vali\Desktop\záložky_18.04.23.html
2023-04-18 14:27 - 2023-04-18 14:27 - 000090242 _____ C:\Users\Tami\Downloads\Podprsenky 05.jpeg
2023-04-18 14:27 - 2023-04-18 14:27 - 000088040 _____ C:\Users\Tami\Downloads\Podprsenky 02.jpeg
2023-04-18 14:27 - 2023-04-18 14:27 - 000086895 _____ C:\Users\Tami\Downloads\Podprsenky 07.jpeg
2023-04-18 14:27 - 2023-04-18 14:27 - 000085449 _____ C:\Users\Tami\Downloads\Podprsenky 01.jpeg
2023-04-18 14:27 - 2023-04-18 14:27 - 000084292 _____ C:\Users\Tami\Downloads\Podprsenky 06.jpeg
2023-04-18 14:27 - 2023-04-18 14:27 - 000078866 _____ C:\Users\Tami\Downloads\Podprsenky 04.jpeg
2023-04-18 14:27 - 2023-04-18 14:27 - 000069809 _____ C:\Users\Tami\Downloads\Podprsenky 03.jpeg
2023-04-16 17:00 - 2023-04-16 17:00 - 000159943 _____ C:\Users\Tami\Downloads\LazyEye06.jpeg
2023-04-16 17:00 - 2023-04-16 17:00 - 000118756 _____ C:\Users\Tami\Downloads\LazyEye08.jpeg
2023-04-16 17:00 - 2023-04-16 17:00 - 000118283 _____ C:\Users\Tami\Downloads\LazyEye07.jpeg
2023-04-16 16:59 - 2023-04-16 16:59 - 000102487 _____ C:\Users\Tami\Downloads\LazyEye04.jpeg
2023-04-16 16:59 - 2023-04-16 16:59 - 000099927 _____ C:\Users\Tami\Downloads\LazyEye05.jpeg
2023-04-16 16:59 - 2023-04-16 16:59 - 000087618 _____ C:\Users\Tami\Downloads\LazyEye01.jpeg
2023-04-16 16:59 - 2023-04-16 16:59 - 000070069 _____ C:\Users\Tami\Downloads\LazyEye03.jpeg
2023-04-16 16:59 - 2023-04-16 16:59 - 000065115 _____ C:\Users\Tami\Downloads\LazyEye02.jpeg
2023-04-16 15:04 - 2023-04-16 15:04 - 000316188 _____ C:\Users\Tami\Downloads\Word Art stres.pdf
2023-04-16 14:43 - 2023-04-16 14:43 - 000332772 _____ C:\Users\Tami\Downloads\Názvy pocitů.pdf
2023-04-16 14:42 - 2023-04-16 14:42 - 000118640 _____ C:\Users\Tami\Downloads\METODIKA Zvládání stresu a negativních emocí - Dokumenty Google.pdf
2023-04-15 21:53 - 2023-04-15 21:53 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2023-04-15 15:05 - 2023-04-15 15:05 - 000817048 _____ C:\WINDOWS\system32\perfh005.dat
2023-04-15 15:05 - 2023-04-15 15:05 - 000187956 _____ C:\WINDOWS\system32\perfc005.dat
2023-04-13 22:34 - 2023-04-13 22:34 - 000000087 _____ C:\Users\Vali\.git-credentials
2023-04-13 12:32 - 2023-04-13 12:32 - 000135829 _____ C:\Users\Tami\Downloads\Valešová - potvrzení.pdf
2023-04-13 12:28 - 2023-04-13 12:28 - 000065981 _____ C:\Users\Tami\Downloads\Valešová - faktura.pdf
2023-04-13 12:06 - 2023-04-13 12:06 - 000190652 _____ C:\Users\Tami\Downloads\Prezentace 2023.pptx
2023-04-13 11:52 - 2023-04-13 11:52 - 000000000 ___HD C:\$WinREAgent
2023-04-11 21:07 - 2023-04-11 21:07 - 000340396 _____ C:\Users\Tami\Downloads\892760895.pdf
2023-04-10 19:55 - 2023-03-17 21:15 - 000851472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-04-10 19:55 - 2023-03-17 21:13 - 005834760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-04-10 19:54 - 2023-03-17 21:20 - 002172456 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-04-10 19:54 - 2023-03-17 21:20 - 002172456 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-04-10 19:54 - 2023-03-17 21:20 - 001607720 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-04-10 19:54 - 2023-03-17 21:20 - 001607720 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-04-10 19:54 - 2023-03-17 21:20 - 001487328 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-04-10 19:54 - 2023-03-17 21:20 - 001479208 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-04-10 19:54 - 2023-03-17 21:20 - 001479208 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-04-10 19:54 - 2023-03-17 21:20 - 001227248 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-04-10 19:54 - 2023-03-17 21:20 - 001211432 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-04-10 19:54 - 2023-03-17 21:20 - 001211432 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-04-10 19:54 - 2023-03-17 21:16 - 000671776 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-04-10 19:54 - 2023-03-17 21:16 - 000506376 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-04-10 19:54 - 2023-03-17 21:15 - 058244640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2023-04-10 19:54 - 2023-03-17 21:15 - 001535984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-04-10 19:54 - 2023-03-17 21:15 - 001194480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-04-10 19:54 - 2023-03-17 21:15 - 000741872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-04-10 19:54 - 2023-03-17 21:14 - 002165776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-04-10 19:54 - 2023-03-17 21:14 - 001621000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-04-10 19:54 - 2023-03-17 21:14 - 000979472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-04-10 19:54 - 2023-03-17 21:14 - 000759832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-04-10 19:54 - 2023-03-17 21:14 - 000457696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-04-10 19:54 - 2023-03-17 21:13 - 013767176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-04-10 19:54 - 2023-03-17 21:13 - 011647520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-04-10 19:54 - 2023-03-17 21:13 - 006083592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-04-10 19:54 - 2023-03-17 21:13 - 005911584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-04-10 19:54 - 2023-03-17 21:13 - 003429896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-04-10 19:54 - 2023-03-17 21:12 - 000852960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-04-10 19:54 - 2023-03-17 21:11 - 006796280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-04-10 19:54 - 2023-03-17 10:32 - 000104369 _____ C:\WINDOWS\system32\nvinfo.pb
2023-04-10 19:24 - 2023-04-10 19:24 - 000000000 ____D C:\ProgramData\BraveSoftware
2023-04-03 13:58 - 2023-04-03 13:58 - 000310423 _____ C:\Users\Tami\Downloads\goby091222_3.xlsx
2023-04-02 20:14 - 2023-04-02 20:14 - 000002667 _____ C:\Users\Vali\Desktop\Autodesk Fusion 360.lnk
2023-04-02 20:14 - 2023-04-02 20:14 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk
2023-04-02 20:04 - 2023-04-02 20:04 - 011760696 _____ (Autodesk, Inc) C:\Users\Vali\Downloads\Fusion 360 Client Downloader.exe
2023-03-25 23:27 - 2023-03-25 23:27 - 000373984 _____ C:\Users\Vali\Downloads\lua-5.4.2_Win64_bin.zip
2023-03-25 23:27 - 2023-03-25 23:27 - 000000000 ____D C:\lua

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-04-24 20:51 - 2020-06-27 14:20 - 000000000 ____D C:\FRST
2023-04-24 20:50 - 2020-04-29 09:25 - 000000068 __RSH C:\WINDOWS\system32\Drivers\winusb.winsecurity
2023-04-24 20:50 - 2019-07-21 21:21 - 000000000 ____D C:\Users\Vali\Documents\_CCleaner_registry
2023-04-24 20:49 - 2022-10-05 13:11 - 000000000 ___DC C:\WINDOWS\Panther
2023-04-24 20:49 - 2022-10-04 15:01 - 000000000 ____D C:\Users\Vali\AppData\Local\RealVNC
2023-04-24 20:49 - 2022-02-09 16:22 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-04-24 20:49 - 2019-12-09 18:08 - 000000000 ____D C:\Users\Vali\AppData\Local\CrashDumps
2023-04-24 20:49 - 2019-10-14 17:09 - 000000000 ____D C:\Users\Vali\AppData\Roaming\TeamViewer
2023-04-24 20:49 - 2019-10-14 17:09 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2023-04-24 20:49 - 2019-07-10 06:28 - 000000000 ____D C:\Program Files\CCleaner
2023-04-24 20:49 - 2019-07-08 18:02 - 000000000 ____D C:\Users\Vali\AppData\Roaming\XnView
2023-04-24 20:47 - 2019-06-26 10:06 - 000000000 ____D C:\ProgramData\NVIDIA
2023-04-24 20:46 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-04-24 20:37 - 2022-05-05 17:09 - 000000000 ____D C:\Users\Vali\AppData\Local\1Password
2023-04-24 20:24 - 2020-04-29 09:25 - 000000068 __RSH C:\WINDOWS\system32\Drivers\xinputhid.winsecurity
2023-04-24 20:20 - 2022-10-05 15:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-04-24 20:16 - 2021-11-11 20:22 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-04-24 20:13 - 2022-12-15 12:24 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-04-24 20:13 - 2022-10-05 16:07 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-04-24 20:13 - 2022-09-29 17:12 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-04-24 20:12 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-04-24 20:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-04-24 20:04 - 2019-10-04 18:51 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2023-04-24 20:04 - 2019-07-08 17:44 - 000000000 ____D C:\Program Files (x86)\Google
2023-04-24 20:03 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-04-24 20:03 - 2021-11-11 20:22 - 000000000 ____D C:\Users\Vali\AppData\LocalLow\Mozilla
2023-04-24 19:59 - 2022-10-05 16:07 - 000003768 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-04-24 19:59 - 2022-10-05 16:07 - 000003644 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-04-24 19:58 - 2022-05-05 17:10 - 000000000 ____D C:\Users\Vali\AppData\Roaming\1Password
2023-04-24 19:58 - 2019-07-10 07:05 - 000000000 ___RD C:\Users\Tami\OneDrive
2023-04-23 21:48 - 2019-07-10 19:46 - 000000000 ____D C:\Users\Vali\AppData\Local\Autodesk
2023-04-23 21:39 - 2020-07-19 20:46 - 000000000 ____D C:\Users\Vali\AppData\Local\D3DSCache
2023-04-23 17:11 - 2020-08-26 17:03 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-04-22 22:24 - 2021-03-02 21:08 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Code
2023-04-22 22:07 - 2022-03-29 20:06 - 000000000 ____D C:\Users\Vali\.platformio
2023-04-22 22:01 - 2023-01-26 23:35 - 000000000 ____D C:\Program Files\Arduino IDE
2023-04-22 21:55 - 2023-01-26 23:39 - 000000000 ____D C:\Users\Vali\AppData\Roaming\arduino-ide
2023-04-22 21:55 - 2023-01-26 23:39 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Arduino IDE
2023-04-22 21:55 - 2023-01-26 23:39 - 000000000 ____D C:\Users\Vali\AppData\Local\arduino-ide-updater
2023-04-22 20:09 - 2022-10-05 16:07 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4123483902-689985857-2153118612-1002
2023-04-22 20:09 - 2022-10-05 16:07 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4123483902-689985857-2153118612-1002
2023-04-22 20:09 - 2021-10-03 14:57 - 000002374 _____ C:\Users\Vali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-04-22 20:08 - 2022-10-05 16:07 - 000004396 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582729239
2023-04-22 20:02 - 2019-07-18 20:54 - 000000000 ____D C:\Program Files (x86)\Dropbox
2023-04-21 20:45 - 2021-05-14 20:06 - 000002364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2023-04-21 20:45 - 2019-07-08 17:44 - 000002365 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-04-19 18:16 - 2022-10-05 16:07 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4123483902-689985857-2153118612-1003
2023-04-19 18:16 - 2022-10-05 16:07 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4123483902-689985857-2153118612-1003
2023-04-19 18:16 - 2020-07-19 20:35 - 000002374 _____ C:\Users\Tami\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-04-19 12:42 - 2022-10-05 16:07 - 000004144 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1562600925
2023-04-19 12:42 - 2022-01-17 17:00 - 000001402 _____ C:\Users\Vali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2023-04-19 12:39 - 2021-09-08 20:46 - 000000000 ____D C:\Users\Tami\AppData\Local\D3DSCache
2023-04-18 22:23 - 2019-07-25 14:22 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Microsoft\Šablony
2023-04-18 22:23 - 2019-07-22 18:31 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Microsoft\Office
2023-04-18 22:22 - 2019-08-16 09:15 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Microsoft\Word
2023-04-18 21:57 - 2020-05-06 13:24 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Cryptomator
2023-04-18 21:14 - 2019-07-08 17:39 - 000000000 ____D C:\Users\Vali\AppData\Local\Packages
2023-04-18 21:14 - 2019-06-26 10:14 - 000000000 ____D C:\ProgramData\Packages
2023-04-18 21:10 - 2022-10-05 16:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-04-18 21:10 - 2021-11-11 20:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-04-18 21:10 - 2019-11-06 22:03 - 000000000 ____D C:\Users\Vali\Desktop\ČSOB
2023-04-18 21:05 - 2022-10-05 16:07 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-04-18 21:05 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-04-18 21:05 - 2020-07-19 20:31 - 000012288 ___SH C:\DumpStack.log.tmp
2023-04-18 09:47 - 2019-07-31 07:06 - 000000000 ____D C:\Users\Tami\AppData\Roaming\Microsoft\Šablony
2023-04-18 09:43 - 2019-07-31 07:06 - 000000000 ____D C:\Users\Tami\AppData\Roaming\Microsoft\Word
2023-04-16 14:45 - 2019-07-24 08:38 - 000000000 ____D C:\Users\Tami\AppData\Roaming\Microsoft\Excel
2023-04-16 14:44 - 2019-07-10 07:03 - 000000000 ____D C:\Users\Tami\AppData\Local\Packages
2023-04-15 15:26 - 2022-03-06 18:41 - 000000000 ____D C:\Users\Tami\AppData\Roaming\DropboxElectron
2023-04-15 15:26 - 2019-07-11 12:33 - 000000000 ____D C:\Users\Tami\AppData\Local\Dropbox
2023-04-15 15:05 - 2022-10-05 16:07 - 001979924 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-04-15 15:05 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2023-04-15 14:58 - 2020-12-15 21:01 - 000000000 ____D C:\Users\Tami\AppData\Local\CrashDumps
2023-04-13 22:34 - 2022-10-05 15:56 - 000000000 ____D C:\Users\Vali
2023-04-13 22:34 - 2020-04-17 16:19 - 000002869 _____ C:\Users\Vali\.bash_history
2023-04-13 21:49 - 2021-03-02 21:08 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2023-04-13 14:15 - 2022-10-05 15:50 - 001958984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\UUS
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-04-13 14:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-04-13 12:05 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-04-13 12:01 - 2022-10-05 15:55 - 003211776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-04-12 20:00 - 2019-07-10 20:27 - 000000033 _____ C:\Users\Vali\AppData\Roaming\AdobeWLCMCache.dat
2023-04-12 19:48 - 2019-06-26 10:19 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-04-12 19:44 - 2019-06-26 10:19 - 156112424 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-04-11 13:19 - 2022-10-16 19:07 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2023-04-10 21:30 - 2019-07-10 20:20 - 000000000 ____D C:\Users\Vali\AppData\Local\NVIDIA
2023-04-10 19:52 - 2019-12-09 17:31 - 000000000 ____D C:\Users\Vali\AppData\Local\NVIDIA Corporation
2023-04-10 19:28 - 2022-10-05 16:07 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-04-10 19:15 - 2022-10-05 16:07 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-04-10 19:15 - 2022-10-05 16:07 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-04-04 22:45 - 2021-06-01 15:42 - 000000000 ____D C:\Users\Vali\Downloads\_WHERIGO
2023-04-02 20:54 - 2022-10-04 14:54 - 000000128 _____ C:\Users\Vali\AppData\Local\PUTTY.RND
2023-04-02 20:16 - 2019-07-10 19:44 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Autodesk
2023-03-25 21:52 - 2019-10-12 20:25 - 000000000 ____D C:\Users\Vali\AppData\Roaming\vlc

==================== Files in the root of some directories ========

2019-07-10 20:27 - 2023-04-12 20:00 - 000000033 _____ () C:\Users\Vali\AppData\Roaming\AdobeWLCMCache.dat
2020-08-23 19:15 - 2020-08-23 19:20 - 000001140 _____ () C:\Users\Vali\AppData\Roaming\javascriptobfuscator.jsop
2020-09-24 20:11 - 2023-02-12 17:14 - 000001480 _____ () C:\Users\Vali\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2020-08-13 17:27 - 2022-09-08 21:09 - 000002733 _____ () C:\Users\Vali\AppData\Local\meld.log
2019-07-10 20:19 - 2019-07-10 20:19 - 000000410 _____ () C:\Users\Vali\AppData\Local\oobelibMkey.log
2022-10-04 14:54 - 2023-04-02 20:54 - 000000128 _____ () C:\Users\Vali\AppData\Local\PUTTY.RND
2022-09-08 21:58 - 2022-09-08 21:58 - 000002109 _____ () C:\Users\Vali\AppData\Local\recently-used.xbel

==================== FLock ==============================

2021-11-30 21:50 C:\Users\Tami\AppData\Roaming\FileZilla
2021-11-30 21:48 C:\Users\Tami\AppData\Local\FileZilla

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Addition (2).zip
Přílohy
Addition (2).zip
(35.51 KiB) Staženo 35 x
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15214
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola

#4 Příspěvek od JaRon »

je to nejake opustene - zaskocim :)
citat:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>

Kód: Vybrat vše

Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-21-4123483902-689985857-2153118612-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: AdobePDF.dll (No File)
HKLM\...\Print\Monitors\Appmon: AppMon.dll (No File)
HKLM\...\Print\Monitors\HP1006LM: HP1006LM.DLL (No File)
HKLM\...\Print\Monitors\Local Port: localspl.dll (No File)
HKLM\...\Print\Monitors\Microsoft Shared Fax Monitor: FXSMON.DLL (No File)
HKLM\...\Print\Monitors\pdfcmon: pdfcmon.dll (No File)
HKLM\...\Print\Monitors\Standard TCP/IP Port: tcpmon.dll (No File)
HKLM\...\Print\Monitors\USB Monitor: usbmon.dll (No File)
HKLM\...\Print\Monitors\WSD Port: APMon.dll (No File)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version:  - )
AlternateDataStreams: C:\Windows:CM_2fc6bb5911f8ec497148a890945a6514141ed49d2c744fd5c5eb1f84b9f6aca2 [74]
AlternateDataStreams: C:\Windows:CM_907695013ca08992cd58feb07e0251af0db243016da7741a2963bd09f47d77f4 [74]
AlternateDataStreams: C:\Users\Tami\Downloads\Modré šaty 2.jpg:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Tami\Downloads\Modré šaty 2.jpg:com.dropbox.attrs [58]



EmptyTemp:
Reboot:
End
•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST

:arrow: Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt

:arrow: Restart PC a dejte mi sem fixlog.txt
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
Lancre
Návštěvník
Návštěvník
Příspěvky: 152
Registrován: 24 úno 2012 15:28

Re: Preventivní kontrola

#5 Příspěvek od Lancre »

Fix result of Farbar Recovery Scan Tool (x64) Version: 30-04-2023
Ran by Vali (01-05-2023 19:57:00) Run:2
Running from C:\Users\Vali\Desktop
Loaded Profiles: HP & Vali & Tami
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-21-4123483902-689985857-2153118612-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\65.0.4.0\GoogleDriveFS.exe --startup_mode (No File)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: AdobePDF.dll (No File)
HKLM\...\Print\Monitors\Appmon: AppMon.dll (No File)
HKLM\...\Print\Monitors\HP1006LM: HP1006LM.DLL (No File)
HKLM\...\Print\Monitors\Local Port: localspl.dll (No File)
HKLM\...\Print\Monitors\Microsoft Shared Fax Monitor: FXSMON.DLL (No File)
HKLM\...\Print\Monitors\pdfcmon: pdfcmon.dll (No File)
HKLM\...\Print\Monitors\Standard TCP/IP Port: tcpmon.dll (No File)
HKLM\...\Print\Monitors\USB Monitor: usbmon.dll (No File)
HKLM\...\Print\Monitors\WSD Port: APMon.dll (No File)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
AlternateDataStreams: C:\Windows:CM_2fc6bb5911f8ec497148a890945a6514141ed49d2c744fd5c5eb1f84b9f6aca2 [74]
AlternateDataStreams: C:\Windows:CM_907695013ca08992cd58feb07e0251af0db243016da7741a2963bd09f47d77f4 [74]
AlternateDataStreams: C:\Users\Tami\Downloads\Modré šaty 2.jpg:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Tami\Downloads\Modré šaty 2.jpg:com.dropbox.attrs [58]



EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
"HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleDriveFS" => removed successfully
"HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleDriveFS" => removed successfully
"HKU\S-1-5-21-4123483902-689985857-2153118612-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleDriveFS" => removed successfully
"HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleDriveFS" => removed successfully
HKLM\System\CurrentControlSet\Control\Print\Monitors\Adobe PDF Port Monitor => removed successfully
HKLM\System\CurrentControlSet\Control\Print\Monitors\Appmon => removed successfully
HKLM\System\CurrentControlSet\Control\Print\Monitors\HP1006LM => removed successfully
HKLM\System\CurrentControlSet\Control\Print\Monitors\Local Port => removed successfully
HKLM\System\CurrentControlSet\Control\Print\Monitors\Microsoft Shared Fax Monitor => removed successfully
HKLM\System\CurrentControlSet\Control\Print\Monitors\pdfcmon => removed successfully
HKLM\System\CurrentControlSet\Control\Print\Monitors\Standard TCP/IP Port => removed successfully
"HKLM\System\CurrentControlSet\Control\Print\Monitors\USB Monitor" => removed successfully
HKLM\System\CurrentControlSet\Control\Print\Monitors\WSD Port => removed successfully
HKLM\System\CurrentControlSet\Services\WinSetupMon => removed successfully
WinSetupMon => service removed successfully
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - ) => Error: No automatic fix found for this entry.
C:\Windows => ":CM_2fc6bb5911f8ec497148a890945a6514141ed49d2c744fd5c5eb1f84b9f6aca2" ADS removed successfully
C:\Windows => ":CM_907695013ca08992cd58feb07e0251af0db243016da7741a2963bd09f47d77f4" ADS removed successfully
C:\Users\Tami\Downloads\Modré šaty 2.jpg => ":com.dropbox.attributes" ADS removed successfully
C:\Users\Tami\Downloads\Modré šaty 2.jpg => ":com.dropbox.attrs" ADS removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13859044 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 128432 B
Windows/system/drivers => 164528380 B
Edge => 131584 B
Chrome => 1997707 B
Brave => 92945174 B
Firefox => 15783616 B
Opera => 10454016 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 673094 B
NetworkService => 673094 B
HP => 685766 B
Vali => 96062866 B
Tami => 282939239 B

RecycleBin => 299002360 B
EmptyTemp: => 934.5 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:57:34 ====
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15214
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola

#6 Příspěvek od JaRon »

OK, vycistene
su nejake problemy :???:
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
Lancre
Návštěvník
Návštěvník
Příspěvky: 152
Registrován: 24 úno 2012 15:28

Re: Preventivní kontrola

#7 Příspěvek od Lancre »

Děkuji.
Poslední sobou se stává, že SSD disk mívá (většinou chvíli po startu) využití 100 %, aniž by běžela nějaká mnou spuštěná aplikace, která by to měla způsobovat. Zároveň co cca 14 dní nachází NVIDIA nový ovladač, což neúnosně zpomalí PC. Jakmile se nainstaluje a restartuje PC, je zase vše v pořádku. Neměl byste nějaký tip, jak tyto záležitosti vyřešit?
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15214
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola

#8 Příspěvek od JaRon »

nuz moze to sposobovat updater Nvidie alebo nejaky iny update
je teraz moderne, ze kazda aplikacia neustale cosi update-uje :)
nahliadni do adresara task prip. prehliadni msconfig - a zbytocne veci zakaz
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
Lancre
Návštěvník
Návštěvník
Příspěvky: 152
Registrován: 24 úno 2012 15:28

Re: Preventivní kontrola

#9 Příspěvek od Lancre »

Díky za tip. Mrknu na to. Jinak samozřejmě děkuji za pomoc.
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15214
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola

#10 Příspěvek od JaRon »

Rado sa stalo :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
Zamčeno

Zpět na „Preventivní kontroly logů“