Prosím o kontrolu logu - vyskakování o zavirovaném PC
Napsal: 12 zář 2024 17:30
Prosím o kontrolu logu vyskakovací oznámení , že je PC zavirován, že je tam trojský kůň. Děkuji.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-09-2024
Ran by MKMP (administrator) on RODINKAA (ASUSTeK COMPUTER INC. Vivobook_ASUSLaptop M1502IA_M1502IA) (12-09-2024 18:27:22)
Running from C:\Users\MKMP\Downloads\FRST64.exe
Loaded Profiles: MKMP
Platform: Microsoft Windows 11 Home Version 23H2 22631.4169 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe
(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOSD.exe
(C:\Program Files\TeamViewer\TeamViewer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\128.0.2739.67\msedgewebview2.exe <19>
(C:\Program Files\TeamViewer\TeamViewer.exe ->) (TeamViewer Germany GmbH -> ) C:\Program Files\TeamViewer\crashpad_handler.exe <2>
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_x64.exe
(C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSSrcExt.exe
(C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\cncmd.exe
(DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusWiFiSmartConnect.exe
(DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSupportService.exe
(DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\u0390792.inf_amd64_c7c1ce20b2f1c813\B390782\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390792.inf_amd64_c7c1ce20b2f1c813\B390782\atieclxx.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_24215.1007.3082.1590_x64__8wekyb3d8bbwe\ms-teams.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24081.55.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <63>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390792.inf_amd64_c7c1ce20b2f1c813\B390782\atiesrxx.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSystemAnalysis.exe <2>
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asusnumpadfilter.inf_amd64_4b75f58caa254b78\AsusNumPadService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.4.0.0_x64__8wekyb3d8bbwe\WidgetService\WidgetService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\MKMP\AppData\Local\Microsoft\OneDrive\24.166.0818.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_be03f2dca68bf962\RtkAudUService64.exe <3>
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKU\S-1-5-21-4038819242-1580343200-2903088957-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4407656 2024-07-17] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-4038819242-1580343200-2903088957-1001\...\Run: [Mozilla-Firefox-308046B0AF4A39CB] => "C:\Program Files\Mozilla Firefox\firefox.exe" -os-autostart [672328 2024-09-05] (Mozilla Corporation -> Mozilla Corporation)
HKU\S-1-5-21-4038819242-1580343200-2903088957-1001\...\Run: [MicrosoftEdgeAutoLaunch_484EB2388B0391A2E6BDF3636ED4FFA5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741256 2024-09-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\128.0.6613.121\Installer\chrmstp.exe [2024-09-11] (Google LLC -> Google LLC)
Startup: C:\Users\MKMP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2023-03-23]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1DFE6A77-FE45-4F4A-BF54-3EA4996E843D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {F19C3D0D-5A94-4B2C-9D97-250836F37A4B} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusHotkey.exe [325608 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {1B063AD3-0C9F-4355-8FEF-569ED22900E0} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusUpdateChecker.exe [793552 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {A2538B8D-AC26-4ACE-B6F2-191CD9D953F0} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5006312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {96821F42-AE07-4197-BE15-D2934C3D2A51} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5583864 2024-09-11] (Microsoft Windows -> Microsoft Corporation)
Task: {E7CCA89E-745D-486C-B848-16FBD730CF26} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{1D95C4E0-E48B-45DB-85BB-1D51E2E86A48} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {0E7D2652-C9E3-40D9-8466-2AC2F76ADA09} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-08-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {409D92DE-0F3A-4CE6-8696-3CB5E0562BEB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-08-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {8DBC533A-3292-4904-A964-AEC3C37FA887} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312520 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {0D65EEBC-D255-4E08-9D60-354E5471221E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312520 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {C4908E8E-9678-4EA2-97C6-06194CB06735} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [187024 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {91E258EF-D3E6-4931-8A82-CBC9916B36F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3C15B3B6-C210-431A-A379-250D227747E5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DB2F1423-FDD1-4810-8B02-CB86DFB385A1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {ECC3FACB-F8BE-4E10-BE0A-BA0DD60459CF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0CBAB405-2E3B-46AD-8DB6-E1F942377D72} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [672328 2024-09-05] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {1DDC5340-B44A-4541-8852-3CC36FEB5EB3} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-4038819242-1580343200-2903088957-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [672328 2024-09-05] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {0BF5282D-1271-4D38-8C76-C3DF775A60C7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34376 2024-09-05] (Mozilla Corporation -> Mozilla Foundation)
Task: {9D3C0BB5-B761-4A43-8ABA-96104885234E} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_be03f2dca68bf962\RtkAudUService64.exe [3498472 2022-05-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{3d3b711c-1b40-4ec8-b58a-e6134344297e}: [DhcpNameServer] 10.66.16.1 10.8.60.1 10.8.60.2
Tcpip\..\Interfaces\{af5b0e20-9efa-47ff-9eab-78cd9da06c0c}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{af5b0e20-9efa-47ff-9eab-78cd9da06c0c}\05F6B6F6A656: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{af5b0e20-9efa-47ff-9eab-78cd9da06c0c}\255646D696029345: [DhcpNameServer] 192.168.22.159
Tcpip\..\Interfaces\{af5b0e20-9efa-47ff-9eab-78cd9da06c0c}\4505D2C496E6B6F554531344F55374F5548545: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{af5b0e20-9efa-47ff-9eab-78cd9da06c0c}\4505D2C496E6B6F554531344F5548545: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{af5b0e20-9efa-47ff-9eab-78cd9da06c0c}\4505D2C496E6B6F57457563747F554531344: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge Profile: C:\Users\MKMP\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-12]
Edge Extension: (Dokumenty Google offline) - C:\Users\MKMP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-30]
Edge Extension: (Edge relevant text changes) - C:\Users\MKMP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-02]
FireFox:
========
FF DefaultProfile: jz177wlj.default
FF ProfilePath: C:\Users\MKMP\AppData\Roaming\Mozilla\Firefox\Profiles\jz177wlj.default [2024-08-06]
FF ProfilePath: C:\Users\MKMP\AppData\Roaming\Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691 [2024-09-12]
FF Homepage: Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691 -> www.seznam.cz
FF Session Restore: Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691 -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691 -> hxxps://qltuh.free-tl-100-c.buzz
FF Extension: (To Google Translate) - C:\Users\MKMP\AppData\Roaming\Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2024-08-05]
FF Extension: (uBlock Origin) - C:\Users\MKMP\AppData\Roaming\Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691\Extensions\uBlock0@raymondhill.net.xpi [2024-08-05]
FF Extension: (ImTranslator: Překladač, Slovník, Hlas) - C:\Users\MKMP\AppData\Roaming\Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2024-08-05]
FF Extension: (Deer In Forest Green) - C:\Users\MKMP\AppData\Roaming\Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691\Extensions\{ab3e9b9e-d9b0-48e4-9ba9-895d3bbdac8c}.xpi [2024-08-06]
FF Extension: (Running Foxes by MaDonna) - C:\Users\MKMP\AppData\Roaming\Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691\Extensions\{dfb93b31-21ba-46fc-977d-46300ce0a76b}.xpi [2024-08-05]
FF Plugin: @java.com/DTPlugin,version=11.421.2 -> C:\Program Files\Java\jre1.8.0_421\bin\dtplugin\npDeployJava1.dll [2024-06-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.421.2 -> C:\Program Files\Java\jre1.8.0_421\bin\plugin2\npjp2.dll [2024-06-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-08-23] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\MKMP\AppData\Local\Google\Chrome\User Data\Default [2024-08-16]
CHR Extension: (Stahovač Obrázků - Uložte fotografie a obrázky) - C:\Users\MKMP\AppData\Local\Google\Chrome\User Data\Default\Extensions\daeljdgmllhgmbdkpgnaojldjkdgkbjg [2023-10-05]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\MKMP\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-08-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\MKMP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MKMP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-05]
CHR HKU\S-1-5-21-4038819242-1580343200-2903088957-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\AsusAppService\AsusAppService.exe [1176016 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 AsusNumPadService; C:\WINDOWS\System32\DriverStore\FileRepository\asusnumpadfilter.inf_amd64_4b75f58caa254b78\AsusNumPadService.exe [246160 2022-01-05] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimization.exe [571880 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe [1381728 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSwitch\AsusSwitch.exe [650704 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5006312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [894312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14042624 2024-08-25] (Microsoft Corporation -> Microsoft Corporation)
R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [434000 2023-02-22] (DTS, Inc. -> DTS Inc.)
S3 LibreOfficeMaintenance; C:\Program Files\LibreOffice\program\update_service.exe [123320 2024-06-04] (The Document Foundation -> The Document Foundation)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 NGS; C:\ProgramData\Nexon\NGS\NGService.exe [3189352 2023-03-19] (NEXON Korea Corporation. -> NEXON Korea Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [22442808 2024-09-03] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [54704 2023-02-20] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0390792.inf_amd64_c7c1ce20b2f1c813\B390782\amdkmdag.sys [94637408 2023-04-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 AsusNumpadPTP; C:\WINDOWS\System32\DriverStore\FileRepository\asusnumpadfilter.inf_amd64_4b75f58caa254b78\AsusNUMPADFilter.sys [200680 2022-01-05] (ASUSTeK COMPUTER INC. -> Human Interface Tech.)
R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_93fc123351137141\AsusPTPFilter.sys [155568 2023-01-05] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSAIO.sys [49312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusWmiAcpi.sys [49064 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R2 IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [171512 2023-02-15] (Microsoft Windows Hardware Compatibility Publisher -> Tonec Inc.)
S3 MpKsl61f523c8; C:\WINDOWS\system32\MpEngineStore\MpKslDrv.sys [222464 2023-09-26] (Microsoft Windows -> Microsoft Corporation)
R3 MTKBTFilterX64; C:\WINDOWS\System32\DriverStore\FileRepository\mtkbtfilter.inf_amd64_4e18fe2e122d5d00\mtkbtfilterx.sys [326768 2024-04-28] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 mtkwlex; C:\WINDOWS\System32\DriverStore\FileRepository\mtkwl6ex.inf_amd64_f698a1260525f27b\mtkwl6ex.sys [1461912 2024-05-06] (MEDIATEK INC. -> MediaTek Inc.)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [57344 2022-05-07] (Microsoft Corporation) [File not signed]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-08-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602504 2024-08-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-08] (Microsoft Windows -> Microsoft Corporation)
S3 NDivert; \SystemRoot\System32\drivers\NDivert.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-09-12 18:27 - 2024-09-12 18:28 - 000027389 _____ C:\Users\MKMP\Downloads\FRST.txt
2024-09-12 18:27 - 2024-09-12 18:27 - 000000000 ____D C:\Users\MKMP\Downloads\FRST-OlderVersion
2024-09-11 18:31 - 2024-09-11 18:31 - 000692356 _____ C:\WINDOWS\system32\perfh005.dat
2024-09-11 18:31 - 2024-09-11 18:31 - 000143226 _____ C:\WINDOWS\system32\perfc005.dat
2024-09-10 16:43 - 2024-09-10 16:43 - 001100658 _____ C:\Users\MKMP\Downloads\Chit_Chat_1_slovnicek.pdf
2024-09-09 19:49 - 2024-09-09 19:49 - 000072009 _____ C:\Users\MKMP\Downloads\42413-1.zip
2024-09-06 21:22 - 2024-09-06 21:36 - 1994408028 _____ C:\Users\MKMP\Downloads\Toto je náš svet, Tohle je náš svět (Captain Fantastic) (2016) CZ.mkv
2024-09-05 21:13 - 2024-05-06 19:30 - 000552152 _____ (MediaTek Inc.) C:\WINDOWS\system32\mtkihvx.dll
2024-09-05 20:14 - 2024-09-11 18:26 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-09-03 16:44 - 2024-09-03 16:44 - 006839728 _____ C:\Users\MKMP\Downloads\Five Nights at Freddys .tgz
2024-09-02 19:07 - 2024-09-02 19:07 - 000000000 ___HD C:\OneDriveTemp
2024-09-02 19:06 - 2024-09-02 19:06 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4038819242-1580343200-2903088957-1002
2024-09-02 19:06 - 2024-09-02 19:06 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4038819242-1580343200-2903088957-1002
2024-09-01 00:26 - 2024-09-01 11:45 - 000000000 ____D C:\Users\MKMP\AppData\Roaming\FileZilla
2024-09-01 00:26 - 2024-09-01 00:40 - 000000000 ____D C:\Users\MKMP\AppData\Local\FileZilla
2024-09-01 00:25 - 2024-09-01 00:25 - 000000000 ____D C:\Program Files\FileZilla FTP Client
2024-09-01 00:20 - 2024-09-02 18:19 - 000000000 ____D C:\Users\MKMP\AppData\Local\filezilla-server-gui
2024-09-01 00:19 - 2024-09-02 18:20 - 000000000 ____D C:\Program Files\FileZilla Server
2024-09-01 00:19 - 2024-09-01 00:51 - 000000000 ____D C:\ProgramData\filezilla-server
2024-08-31 22:41 - 2024-09-08 15:05 - 000000000 ____D C:\Vjeci
2024-08-28 19:02 - 2024-08-28 19:02 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-08-16 21:48 - 2024-08-16 21:48 - 006339378 _____ C:\Users\MKMP\Downloads\Olešnice-Aerobik+sjezd kár-video.zip
2024-08-16 21:46 - 2024-08-16 21:46 - 008866619 _____ C:\Users\MKMP\Downloads\Olešnice-areál-foto-1.zip
2024-08-16 21:45 - 2024-08-16 21:45 - 008866619 _____ C:\Users\MKMP\Downloads\Olešnice-areál-foto.zip
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-09-12 18:27 - 2024-08-06 12:41 - 000000000 ____D C:\FRST
2024-09-12 18:27 - 2024-08-06 12:40 - 002397696 _____ (Farbar) C:\Users\MKMP\Downloads\FRST64.exe
2024-09-12 18:25 - 2022-12-20 22:23 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2024-09-12 18:20 - 2023-03-17 21:53 - 000000000 ____D C:\Program Files (x86)\Steam
2024-09-12 18:18 - 2022-12-20 22:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-09-12 18:18 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-12 17:12 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-12 17:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-09-11 21:05 - 2023-01-14 14:03 - 000000000 ____D C:\Program Files (x86)\FastShare
2024-09-11 18:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-09-11 18:42 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-09-11 18:31 - 2022-12-20 22:24 - 001629494 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-09-11 18:31 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-09-11 18:27 - 2023-02-28 23:55 - 000000000 ____D C:\Program Files\TeamViewer
2024-09-11 18:27 - 2022-12-20 22:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-09-11 18:27 - 2022-12-20 22:20 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-09-11 18:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-09-11 18:27 - 2022-05-07 07:17 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2024-09-11 18:27 - 2021-10-04 23:52 - 000012288 ___SH C:\DumpStack.log.tmp
2024-09-11 18:26 - 2022-12-20 22:20 - 000646488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-09-11 18:26 - 2022-12-20 20:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-09-11 18:25 - 2023-09-30 12:44 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-09-11 18:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-09-11 18:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-09-11 18:07 - 2022-12-20 20:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-09-11 18:06 - 2022-12-20 20:23 - 199688632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-09-11 18:05 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-09-11 09:55 - 2023-10-05 19:30 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-09-10 12:02 - 2022-12-20 20:14 - 000000000 ____D C:\Users\MKMP\AppData\Local\D3DSCache
2024-09-09 07:25 - 2022-12-20 22:23 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-09-09 07:25 - 2022-12-20 22:23 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-09-08 20:58 - 2022-12-29 20:24 - 000000000 ____D C:\Users\MKMP\AppData\Roaming\vlc
2024-09-08 11:48 - 2022-12-20 22:23 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4038819242-1580343200-2903088957-1001
2024-09-08 11:48 - 2022-12-20 22:23 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4038819242-1580343200-2903088957-1001
2024-09-08 11:48 - 2022-12-20 20:15 - 000002420 _____ C:\Users\MKMP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-09-07 12:12 - 2022-12-20 20:14 - 000000000 ____D C:\Users\MKMP\AppData\Local\Packages
2024-09-07 10:53 - 2021-10-04 23:52 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-09-06 21:16 - 2022-12-20 20:15 - 000000000 ____D C:\Users\MKMP\AppData\Local\PlaceholderTileLogoFolder
2024-09-06 21:16 - 2021-10-04 23:54 - 000000000 ____D C:\ProgramData\Packages
2024-09-06 13:04 - 2024-06-11 13:49 - 000001436 _____ C:\Users\MKMP\Desktop\Roblox Player.lnk
2024-09-06 13:04 - 2023-01-21 13:37 - 000000000 ____D C:\Users\MKMP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2024-09-06 13:03 - 2023-06-20 13:11 - 000000000 ____D C:\Users\MKMP\AppData\Local\CrashDumps
2024-09-05 22:01 - 2022-12-20 22:23 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-09-05 22:01 - 2022-12-20 20:20 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-09-05 21:12 - 2023-04-06 22:41 - 000000000 ____D C:\Users\MKMP\AppData\Local\JDownloader 2.0
2024-09-05 21:09 - 2023-03-17 22:15 - 000000000 ____D C:\Users\MKMP\Desktop\věci
2024-09-02 21:06 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-09-02 19:04 - 2022-06-28 07:31 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-09-02 19:04 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-08-31 23:37 - 2023-05-18 08:20 - 000000000 ____D C:\Users\MKMP\AppData\Roaming\HandBrake
2024-08-31 23:28 - 2022-12-29 21:30 - 000000000 ____D C:\Users\MKMP\AppData\Roaming\avidemux
2024-08-29 17:31 - 2024-02-16 15:25 - 000284224 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll
2024-08-29 17:31 - 2023-02-24 23:03 - 002799144 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-08-29 17:31 - 2023-02-24 23:03 - 000783912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-08-29 17:31 - 2023-02-24 23:03 - 000243240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-08-29 17:31 - 2023-02-24 23:03 - 000210360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-08-29 17:31 - 2023-02-24 23:03 - 000149032 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-08-29 17:31 - 2023-02-24 23:03 - 000124344 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-08-29 17:31 - 2023-02-24 23:03 - 000075192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-08-28 19:42 - 2023-01-14 14:10 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-08-28 19:42 - 2022-12-20 23:46 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-08-28 19:02 - 2021-10-04 23:54 - 000000000 ____D C:\Program Files\Microsoft Office
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\WUModels
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-08-27 20:53 - 2022-12-20 22:23 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-08-24 21:03 - 2023-02-21 20:30 - 000000000 ____D C:\Users\MKMP\AppData\Local\Plex Media Server
2024-08-20 11:35 - 2024-05-08 12:20 - 000000000 ____D C:\Users\MKMP\Documents\Euro Truck Simulator 2
2024-08-17 12:48 - 2023-05-18 08:17 - 000000000 ____D C:\Program Files\HandBrake
2024-08-17 11:03 - 2022-12-20 22:23 - 000004122 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
2024-08-17 11:03 - 2022-12-20 22:23 - 000003756 _____ C:\WINDOWS\system32\Tasks\ASUS Optimization 36D18D69AFC3
2024-08-15 11:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-08-15 11:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-08-15 11:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\schemas
2024-08-15 11:27 - 2022-05-07 07:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2024-08-15 11:27 - 2022-05-07 07:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2024-08-13 21:51 - 2022-12-20 22:12 - 000000000 ____D C:\Users\MKMP
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-09-2024
Ran by MKMP (administrator) on RODINKAA (ASUSTeK COMPUTER INC. Vivobook_ASUSLaptop M1502IA_M1502IA) (12-09-2024 18:27:22)
Running from C:\Users\MKMP\Downloads\FRST64.exe
Loaded Profiles: MKMP
Platform: Microsoft Windows 11 Home Version 23H2 22631.4169 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe
(0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe
(ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOSD.exe
(C:\Program Files\TeamViewer\TeamViewer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\128.0.2739.67\msedgewebview2.exe <19>
(C:\Program Files\TeamViewer\TeamViewer.exe ->) (TeamViewer Germany GmbH -> ) C:\Program Files\TeamViewer\crashpad_handler.exe <2>
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_x64.exe
(C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSServ.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\AMDRSSrcExt.exe
(C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\RadeonSoftware.exe ->) (0A0B0503-04C2-4CCF-9BC2-4F164DC80FEE -> Advanced Micro Devices, Inc.) C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.22.20073.0_x64__0a9344xs7nr4m\radeonsoftware\cncmd.exe
(DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimizationStartupTask.exe
(DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimization.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusWiFiSmartConnect.exe
(DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSupportService.exe
(DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManagerAgent.exe
(DriverStore\FileRepository\u0390792.inf_amd64_c7c1ce20b2f1c813\B390782\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390792.inf_amd64_c7c1ce20b2f1c813\B390782\atieclxx.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_24215.1007.3082.1590_x64__8wekyb3d8bbwe\ms-teams.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24081.55.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <63>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0390792.inf_amd64_c7c1ce20b2f1c813\B390782\atiesrxx.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\AsusAppService\AsusAppService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimization.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSwitch\AsusSwitch.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSystemAnalysis.exe <2>
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe
(services.exe ->) (DTS, Inc. -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.) C:\Windows\System32\DriverStore\FileRepository\asusnumpadfilter.inf_amd64_4b75f58caa254b78\AsusNumPadService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.4.0.0_x64__8wekyb3d8bbwe\WidgetService\WidgetService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\MKMP\AppData\Local\Microsoft\OneDrive\24.166.0818.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_be03f2dca68bf962\RtkAudUService64.exe <3>
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKU\S-1-5-21-4038819242-1580343200-2903088957-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4407656 2024-07-17] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-4038819242-1580343200-2903088957-1001\...\Run: [Mozilla-Firefox-308046B0AF4A39CB] => "C:\Program Files\Mozilla Firefox\firefox.exe" -os-autostart [672328 2024-09-05] (Mozilla Corporation -> Mozilla Corporation)
HKU\S-1-5-21-4038819242-1580343200-2903088957-1001\...\Run: [MicrosoftEdgeAutoLaunch_484EB2388B0391A2E6BDF3636ED4FFA5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741256 2024-09-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\128.0.6613.121\Installer\chrmstp.exe [2024-09-11] (Google LLC -> Google LLC)
Startup: C:\Users\MKMP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2023-03-23]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1DFE6A77-FE45-4F4A-BF54-3EA4996E843D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {F19C3D0D-5A94-4B2C-9D97-250836F37A4B} - System32\Tasks\ASUS Optimization 36D18D69AFC3 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusHotkey.exe [325608 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {1B063AD3-0C9F-4355-8FEF-569ED22900E0} - System32\Tasks\ASUS Update Checker 2.0 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusUpdateChecker.exe [793552 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {A2538B8D-AC26-4ACE-B6F2-191CD9D953F0} - System32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474 => C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5006312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {96821F42-AE07-4197-BE15-D2934C3D2A51} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5583864 2024-09-11] (Microsoft Windows -> Microsoft Corporation)
Task: {E7CCA89E-745D-486C-B848-16FBD730CF26} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{1D95C4E0-E48B-45DB-85BB-1D51E2E86A48} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {0E7D2652-C9E3-40D9-8466-2AC2F76ADA09} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-08-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {409D92DE-0F3A-4CE6-8696-3CB5E0562BEB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28605656 2024-08-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {8DBC533A-3292-4904-A964-AEC3C37FA887} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312520 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {0D65EEBC-D255-4E08-9D60-354E5471221E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312520 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {C4908E8E-9678-4EA2-97C6-06194CB06735} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [187024 2024-08-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {91E258EF-D3E6-4931-8A82-CBC9916B36F0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3C15B3B6-C210-431A-A379-250D227747E5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DB2F1423-FDD1-4810-8B02-CB86DFB385A1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {ECC3FACB-F8BE-4E10-BE0A-BA0DD60459CF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0CBAB405-2E3B-46AD-8DB6-E1F942377D72} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [672328 2024-09-05] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {1DDC5340-B44A-4541-8852-3CC36FEB5EB3} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-4038819242-1580343200-2903088957-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [672328 2024-09-05] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {0BF5282D-1271-4D38-8C76-C3DF775A60C7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34376 2024-09-05] (Mozilla Corporation -> Mozilla Foundation)
Task: {9D3C0BB5-B761-4A43-8ABA-96104885234E} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_be03f2dca68bf962\RtkAudUService64.exe [3498472 2022-05-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{3d3b711c-1b40-4ec8-b58a-e6134344297e}: [DhcpNameServer] 10.66.16.1 10.8.60.1 10.8.60.2
Tcpip\..\Interfaces\{af5b0e20-9efa-47ff-9eab-78cd9da06c0c}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{af5b0e20-9efa-47ff-9eab-78cd9da06c0c}\05F6B6F6A656: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{af5b0e20-9efa-47ff-9eab-78cd9da06c0c}\255646D696029345: [DhcpNameServer] 192.168.22.159
Tcpip\..\Interfaces\{af5b0e20-9efa-47ff-9eab-78cd9da06c0c}\4505D2C496E6B6F554531344F55374F5548545: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{af5b0e20-9efa-47ff-9eab-78cd9da06c0c}\4505D2C496E6B6F554531344F5548545: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{af5b0e20-9efa-47ff-9eab-78cd9da06c0c}\4505D2C496E6B6F57457563747F554531344: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge Profile: C:\Users\MKMP\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-12]
Edge Extension: (Dokumenty Google offline) - C:\Users\MKMP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-30]
Edge Extension: (Edge relevant text changes) - C:\Users\MKMP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-02]
FireFox:
========
FF DefaultProfile: jz177wlj.default
FF ProfilePath: C:\Users\MKMP\AppData\Roaming\Mozilla\Firefox\Profiles\jz177wlj.default [2024-08-06]
FF ProfilePath: C:\Users\MKMP\AppData\Roaming\Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691 [2024-09-12]
FF Homepage: Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691 -> www.seznam.cz
FF Session Restore: Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691 -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691 -> hxxps://qltuh.free-tl-100-c.buzz
FF Extension: (To Google Translate) - C:\Users\MKMP\AppData\Roaming\Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2024-08-05]
FF Extension: (uBlock Origin) - C:\Users\MKMP\AppData\Roaming\Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691\Extensions\uBlock0@raymondhill.net.xpi [2024-08-05]
FF Extension: (ImTranslator: Překladač, Slovník, Hlas) - C:\Users\MKMP\AppData\Roaming\Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2024-08-05]
FF Extension: (Deer In Forest Green) - C:\Users\MKMP\AppData\Roaming\Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691\Extensions\{ab3e9b9e-d9b0-48e4-9ba9-895d3bbdac8c}.xpi [2024-08-06]
FF Extension: (Running Foxes by MaDonna) - C:\Users\MKMP\AppData\Roaming\Mozilla\Firefox\Profiles\4yz218gd.default-release-1722853215691\Extensions\{dfb93b31-21ba-46fc-977d-46300ce0a76b}.xpi [2024-08-05]
FF Plugin: @java.com/DTPlugin,version=11.421.2 -> C:\Program Files\Java\jre1.8.0_421\bin\dtplugin\npDeployJava1.dll [2024-06-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.421.2 -> C:\Program Files\Java\jre1.8.0_421\bin\plugin2\npjp2.dll [2024-06-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-08-23] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\MKMP\AppData\Local\Google\Chrome\User Data\Default [2024-08-16]
CHR Extension: (Stahovač Obrázků - Uložte fotografie a obrázky) - C:\Users\MKMP\AppData\Local\Google\Chrome\User Data\Default\Extensions\daeljdgmllhgmbdkpgnaojldjkdgkbjg [2023-10-05]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\MKMP\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-08-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\MKMP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MKMP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-05]
CHR HKU\S-1-5-21-4038819242-1580343200-2903088957-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
R2 AsusAppService; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\AsusAppService\AsusAppService.exe [1176016 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 AsusNumPadService; C:\WINDOWS\System32\DriverStore\FileRepository\asusnumpadfilter.inf_amd64_4b75f58caa254b78\AsusNumPadService.exe [246160 2022-01-05] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek COMPUTER INC.)
R2 ASUSOptimization; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusOptimization.exe [571880 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSoftwareManager; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSoftwareManager\AsusSoftwareManager.exe [1381728 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSwitch; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSwitch\AsusSwitch.exe [650704 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemAnalysis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSystemAnalysis.exe [5006312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 ASUSSystemDiagnosis; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemDiagnosis\AsusSystemDiagnosis.exe [894312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14042624 2024-08-25] (Microsoft Corporation -> Microsoft Corporation)
R2 DtsApo4Service; C:\WINDOWS\System32\DTS\PC\APO4x\DtsApo4Service.exe [434000 2023-02-22] (DTS, Inc. -> DTS Inc.)
S3 LibreOfficeMaintenance; C:\Program Files\LibreOffice\program\update_service.exe [123320 2024-06-04] (The Document Foundation -> The Document Foundation)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 NGS; C:\ProgramData\Nexon\NGS\NGService.exe [3189352 2023-03-19] (NEXON Korea Corporation. -> NEXON Korea Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [22442808 2024-09-03] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-08] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [54704 2023-02-20] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0390792.inf_amd64_c7c1ce20b2f1c813\B390782\amdkmdag.sys [94637408 2023-04-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 AsusNumpadPTP; C:\WINDOWS\System32\DriverStore\FileRepository\asusnumpadfilter.inf_amd64_4b75f58caa254b78\AsusNUMPADFilter.sys [200680 2022-01-05] (ASUSTeK COMPUTER INC. -> Human Interface Tech.)
R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_93fc123351137141\AsusPTPFilter.sys [155568 2023-01-05] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 AsusSAIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSSystemAnalysis\AsusSAIO.sys [49312 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R1 ATKWMIACPIIO; C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_dce8906ce88264fa\ASUSOptimization\AsusWmiAcpi.sys [49064 2024-08-12] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R2 IDMWFP; C:\WINDOWS\system32\DRIVERS\idmwfp.sys [171512 2023-02-15] (Microsoft Windows Hardware Compatibility Publisher -> Tonec Inc.)
S3 MpKsl61f523c8; C:\WINDOWS\system32\MpEngineStore\MpKslDrv.sys [222464 2023-09-26] (Microsoft Windows -> Microsoft Corporation)
R3 MTKBTFilterX64; C:\WINDOWS\System32\DriverStore\FileRepository\mtkbtfilter.inf_amd64_4e18fe2e122d5d00\mtkbtfilterx.sys [326768 2024-04-28] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 mtkwlex; C:\WINDOWS\System32\DriverStore\FileRepository\mtkwl6ex.inf_amd64_f698a1260525f27b\mtkwl6ex.sys [1461912 2024-05-06] (MEDIATEK INC. -> MediaTek Inc.)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [57344 2022-05-07] (Microsoft Corporation) [File not signed]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-08-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602504 2024-08-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-08] (Microsoft Windows -> Microsoft Corporation)
S3 NDivert; \SystemRoot\System32\drivers\NDivert.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-09-12 18:27 - 2024-09-12 18:28 - 000027389 _____ C:\Users\MKMP\Downloads\FRST.txt
2024-09-12 18:27 - 2024-09-12 18:27 - 000000000 ____D C:\Users\MKMP\Downloads\FRST-OlderVersion
2024-09-11 18:31 - 2024-09-11 18:31 - 000692356 _____ C:\WINDOWS\system32\perfh005.dat
2024-09-11 18:31 - 2024-09-11 18:31 - 000143226 _____ C:\WINDOWS\system32\perfc005.dat
2024-09-10 16:43 - 2024-09-10 16:43 - 001100658 _____ C:\Users\MKMP\Downloads\Chit_Chat_1_slovnicek.pdf
2024-09-09 19:49 - 2024-09-09 19:49 - 000072009 _____ C:\Users\MKMP\Downloads\42413-1.zip
2024-09-06 21:22 - 2024-09-06 21:36 - 1994408028 _____ C:\Users\MKMP\Downloads\Toto je náš svet, Tohle je náš svět (Captain Fantastic) (2016) CZ.mkv
2024-09-05 21:13 - 2024-05-06 19:30 - 000552152 _____ (MediaTek Inc.) C:\WINDOWS\system32\mtkihvx.dll
2024-09-05 20:14 - 2024-09-11 18:26 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-09-03 16:44 - 2024-09-03 16:44 - 006839728 _____ C:\Users\MKMP\Downloads\Five Nights at Freddys .tgz
2024-09-02 19:07 - 2024-09-02 19:07 - 000000000 ___HD C:\OneDriveTemp
2024-09-02 19:06 - 2024-09-02 19:06 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4038819242-1580343200-2903088957-1002
2024-09-02 19:06 - 2024-09-02 19:06 - 000003366 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4038819242-1580343200-2903088957-1002
2024-09-01 00:26 - 2024-09-01 11:45 - 000000000 ____D C:\Users\MKMP\AppData\Roaming\FileZilla
2024-09-01 00:26 - 2024-09-01 00:40 - 000000000 ____D C:\Users\MKMP\AppData\Local\FileZilla
2024-09-01 00:25 - 2024-09-01 00:25 - 000000000 ____D C:\Program Files\FileZilla FTP Client
2024-09-01 00:20 - 2024-09-02 18:19 - 000000000 ____D C:\Users\MKMP\AppData\Local\filezilla-server-gui
2024-09-01 00:19 - 2024-09-02 18:20 - 000000000 ____D C:\Program Files\FileZilla Server
2024-09-01 00:19 - 2024-09-01 00:51 - 000000000 ____D C:\ProgramData\filezilla-server
2024-08-31 22:41 - 2024-09-08 15:05 - 000000000 ____D C:\Vjeci
2024-08-28 19:02 - 2024-08-28 19:02 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-08-16 21:48 - 2024-08-16 21:48 - 006339378 _____ C:\Users\MKMP\Downloads\Olešnice-Aerobik+sjezd kár-video.zip
2024-08-16 21:46 - 2024-08-16 21:46 - 008866619 _____ C:\Users\MKMP\Downloads\Olešnice-areál-foto-1.zip
2024-08-16 21:45 - 2024-08-16 21:45 - 008866619 _____ C:\Users\MKMP\Downloads\Olešnice-areál-foto.zip
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-09-12 18:27 - 2024-08-06 12:41 - 000000000 ____D C:\FRST
2024-09-12 18:27 - 2024-08-06 12:40 - 002397696 _____ (Farbar) C:\Users\MKMP\Downloads\FRST64.exe
2024-09-12 18:25 - 2022-12-20 22:23 - 000003752 _____ C:\WINDOWS\system32\Tasks\AsusSystemAnalysis_754F3273-0563-4F20-B12F-826510B07474
2024-09-12 18:20 - 2023-03-17 21:53 - 000000000 ____D C:\Program Files (x86)\Steam
2024-09-12 18:18 - 2022-12-20 22:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-09-12 18:18 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-12 17:12 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-12 17:12 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-09-11 21:05 - 2023-01-14 14:03 - 000000000 ____D C:\Program Files (x86)\FastShare
2024-09-11 18:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-09-11 18:42 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-09-11 18:31 - 2022-12-20 22:24 - 001629494 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-09-11 18:31 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2024-09-11 18:27 - 2023-02-28 23:55 - 000000000 ____D C:\Program Files\TeamViewer
2024-09-11 18:27 - 2022-12-20 22:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-09-11 18:27 - 2022-12-20 22:20 - 000001607 _____ C:\WINDOWS\system32\config\VSMIDK
2024-09-11 18:27 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ServiceState
2024-09-11 18:27 - 2022-05-07 07:17 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2024-09-11 18:27 - 2021-10-04 23:52 - 000012288 ___SH C:\DumpStack.log.tmp
2024-09-11 18:26 - 2022-12-20 22:20 - 000646488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-09-11 18:26 - 2022-12-20 20:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-09-11 18:25 - 2023-09-30 12:44 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-09-11 18:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-09-11 18:25 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-09-11 18:07 - 2022-12-20 20:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-09-11 18:06 - 2022-12-20 20:23 - 199688632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-09-11 18:05 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-09-11 09:55 - 2023-10-05 19:30 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-09-10 12:02 - 2022-12-20 20:14 - 000000000 ____D C:\Users\MKMP\AppData\Local\D3DSCache
2024-09-09 07:25 - 2022-12-20 22:23 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-09-09 07:25 - 2022-12-20 22:23 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-09-08 20:58 - 2022-12-29 20:24 - 000000000 ____D C:\Users\MKMP\AppData\Roaming\vlc
2024-09-08 11:48 - 2022-12-20 22:23 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4038819242-1580343200-2903088957-1001
2024-09-08 11:48 - 2022-12-20 22:23 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4038819242-1580343200-2903088957-1001
2024-09-08 11:48 - 2022-12-20 20:15 - 000002420 _____ C:\Users\MKMP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-09-07 12:12 - 2022-12-20 20:14 - 000000000 ____D C:\Users\MKMP\AppData\Local\Packages
2024-09-07 10:53 - 2021-10-04 23:52 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-09-06 21:16 - 2022-12-20 20:15 - 000000000 ____D C:\Users\MKMP\AppData\Local\PlaceholderTileLogoFolder
2024-09-06 21:16 - 2021-10-04 23:54 - 000000000 ____D C:\ProgramData\Packages
2024-09-06 13:04 - 2024-06-11 13:49 - 000001436 _____ C:\Users\MKMP\Desktop\Roblox Player.lnk
2024-09-06 13:04 - 2023-01-21 13:37 - 000000000 ____D C:\Users\MKMP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2024-09-06 13:03 - 2023-06-20 13:11 - 000000000 ____D C:\Users\MKMP\AppData\Local\CrashDumps
2024-09-05 22:01 - 2022-12-20 22:23 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-09-05 22:01 - 2022-12-20 20:20 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-09-05 21:12 - 2023-04-06 22:41 - 000000000 ____D C:\Users\MKMP\AppData\Local\JDownloader 2.0
2024-09-05 21:09 - 2023-03-17 22:15 - 000000000 ____D C:\Users\MKMP\Desktop\věci
2024-09-02 21:06 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-09-02 19:04 - 2022-06-28 07:31 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-09-02 19:04 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-08-31 23:37 - 2023-05-18 08:20 - 000000000 ____D C:\Users\MKMP\AppData\Roaming\HandBrake
2024-08-31 23:28 - 2022-12-29 21:30 - 000000000 ____D C:\Users\MKMP\AppData\Roaming\avidemux
2024-08-29 17:31 - 2024-02-16 15:25 - 000284224 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll
2024-08-29 17:31 - 2023-02-24 23:03 - 002799144 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-08-29 17:31 - 2023-02-24 23:03 - 000783912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-08-29 17:31 - 2023-02-24 23:03 - 000243240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-08-29 17:31 - 2023-02-24 23:03 - 000210360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-08-29 17:31 - 2023-02-24 23:03 - 000149032 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-08-29 17:31 - 2023-02-24 23:03 - 000124344 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-08-29 17:31 - 2023-02-24 23:03 - 000075192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-08-28 19:42 - 2023-01-14 14:10 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-08-28 19:42 - 2022-12-20 23:46 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-08-28 19:02 - 2021-10-04 23:54 - 000000000 ____D C:\Program Files\Microsoft Office
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\WUModels
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-08-27 21:50 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\Provisioning
2024-08-27 20:53 - 2022-12-20 22:23 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-08-24 21:03 - 2023-02-21 20:30 - 000000000 ____D C:\Users\MKMP\AppData\Local\Plex Media Server
2024-08-20 11:35 - 2024-05-08 12:20 - 000000000 ____D C:\Users\MKMP\Documents\Euro Truck Simulator 2
2024-08-17 12:48 - 2023-05-18 08:17 - 000000000 ____D C:\Program Files\HandBrake
2024-08-17 11:03 - 2022-12-20 22:23 - 000004122 _____ C:\WINDOWS\system32\Tasks\ASUS Update Checker 2.0
2024-08-17 11:03 - 2022-12-20 22:23 - 000003756 _____ C:\WINDOWS\system32\Tasks\ASUS Optimization 36D18D69AFC3
2024-08-15 11:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-08-15 11:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-08-15 11:44 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\schemas
2024-08-15 11:27 - 2022-05-07 07:25 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2024-08-15 11:27 - 2022-05-07 07:24 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2024-08-13 21:51 - 2022-12-20 22:12 - 000000000 ____D C:\Users\MKMP
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================