Preventivní kontrola

Zpráva

Lancre · #1 Příspěvek od **Lancre** » 06 říj 2024 20:02

Dobrý den,
prosím o preventivní kontrolu. Takřka při každém spuštění je po dobu cca 40 minut využití disku 100 %. Vyzkoušel jsem běžné postupy, jak problém vyřešit, ale nic nemělo efekt. Předem děkuji za pomoc.

FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2024
Ran by Vali (administrator) on DESKTOP-CPN8GN9 (HP HP Pavilion Gaming Desktop 690-00xx) (06-10-2024 20:57:46)
Running from C:\Users\Vali\Desktop\FRST64.exe
Loaded Profiles: Vali
Platform: Microsoft Windows 10 Home Version 22H2 19045.4957 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Agilebits -> 1Password) C:\Users\Vali\AppData\Local\1Password\app\8\1Password.exe <4>
(Autodesk, Inc. -> Autodesk, Inc.) C:\Users\Vali\AppData\Local\Autodesk\webdeploy\production\06fdec045fd75975b505ab1dcbd568595c1cf626\ADPClientService.exe
(C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\1.3.911.1\DropboxCrashHandler.exe
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2>
(cmd.exe ->) (Agilebits -> AgileBits, Inc.) C:\Users\Vali\AppData\Local\1Password\app\8\1Password-BrowserSupport.exe
(cmd.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\BrowserPrivacyAndSecurity.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <23>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(explorer.exe ->) (Open Source Developer, Robin Krom -> Greenshot) C:\Program Files\Greenshot\Greenshot.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Arvato Digital Services Canada Inc -> arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(services.exe ->) (Autodesk, Inc -> Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (NAVIMATICS LLC -> Navimatics LLC) C:\Program Files (x86)\WinFsp\bin\launcher-x64.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2437.3.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [527792 2017-08-09] (Open Source Developer, Robin Krom -> Greenshot)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [196016 2024-08-28] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2410968 2018-09-13] (Adobe Systems Incorporated -> Adobe Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [9235344 2024-09-17] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [493960 2014-12-05] (Autodesk, Inc -> Autodesk Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752208 2024-06-05] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-376349657-598784215-588274030-1001\...\Run: [1Password] => C:\Users\Vali\AppData\Local\1Password\app\8\1Password.exe [176811872 2024-10-06] (Agilebits -> 1Password)
HKU\S-1-5-21-376349657-598784215-588274030-1001\...\Run: [MicrosoftEdgeAutoLaunch_47E7A3D832D99C24E8E65EF6A7C4529C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [3795008 2024-10-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-376349657-598784215-588274030-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Vali\AppData\Local\Microsoft\Teams\Update.exe [2589872 2023-10-12] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-376349657-598784215-588274030-1001\...\Run: [Opera Stable] => C:\Users\Vali\AppData\Local\Programs\Opera\opera.exe [1386912 2024-10-06] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-376349657-598784215-588274030-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45125936 2024-09-18] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-376349657-598784215-588274030-1001\...\RunOnce: [b75426da614240b28394bef43a17be45] => cmd /C copy /Y "C:\Users\Vali\AppData\Local\Autodesk\webdeploy\production\fe6fc4e563d5e777991ef05dfeb93ed8d5cbf331\FusionLauncher.exe" "C:\Users\Vali\AppData\Local\Autodesk\webdeploy\production\6a0c96 (the data entry has 46 more characters). (No File)
HKU\S-1-5-21-376349657-598784215-588274030-1001\...\Policies\Explorer: []
HKU\S-1-5-21-376349657-598784215-588274030-1002\...\Run: [MicrosoftEdgeAutoLaunch_2DD3D84B977F5AE3077F02BCAC515977] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3795008 2024-10-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-376349657-598784215-588274030-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4919352 2024-10-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-376349657-598784215-588274030-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Tami\AppData\Local\Microsoft\Teams\Update.exe [2589872 2023-12-02] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-376349657-598784215-588274030-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45125936 2024-09-18] (Gen Digital Inc. -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\HP1006PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1006PP.dll [65024 2013-04-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HP1006LM: C:\WINDOWS\system32\HP1006LM.DLL [198144 2013-04-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [196096 2023-09-28] (pdfforge GmbH) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\122.0.6261.112\Installer\chrmstp.exe [2024-03-11] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\129.1.70.123\Installer\chrmstp.exe [2024-10-06] (Brave Software, Inc. -> Brave Software, Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {C0508714-F499-4F70-9F48-B2B92880D436} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {AEA6B72D-1B17-4F08-BD67-AB7897BE0DAF} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{90900E10-A706-458E-A4F8-CF0D46630A5B} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-10-27] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {4D63D19F-B337-4E30-908D-9B5F323456E3} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{41AF176A-5114-4DA4-882D-9BE3FF0C9310} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-10-27] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {572FC136-57AB-4DEC-9D64-D2A57C1E0F15} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-09-18] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {2BCF55E4-A48B-42B1-9B69-5C8CD1EFC66A} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5937456 2024-09-18] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "e2c884f5-2ed1-4247-b511-26424619f5ee" --version "6.28.11297" --silent
Task: {A98F01E0-DDE1-4A9D-96CA-C41F58729C53} - System32\Tasks\CCleanerSkipUAC - Tami => C:\Program Files\CCleaner\CCleaner.exe [39012144 2024-09-18] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {4ECA8461-974F-4EF3-A1CE-EF74EA1E83D9} - System32\Tasks\CCleanerSkipUAC - Vali => C:\Program Files\CCleaner\CCleaner.exe [39012144 2024-09-18] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {A400D319-D3A1-4D58-953F-7D341A2485AF} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-10-02] (Dropbox, Inc -> Dropbox, Inc.)
Task: {BD1FF097-D6CA-49CC-A232-08CA1582DE9D} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-10-02] (Dropbox, Inc -> Dropbox, Inc.)
Task: {02C19890-3B44-4BCB-9E26-3BE6484FFC1E} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem124.0.6342.2{D743130D-6C0E-403F-8A46-C91B7C89CA7A} => "C:\Program Files (x86)\Google\GoogleUpdater\124.0.6342.2\updater.exe" --wake --system --enable-logging --vmodule=*/components/winhttp/*=1,*/components/update_client/*=2,*/chrome/updater/*=2 (No File)
Task: {97814336-05A3-47CE-A868-6ECF2EC1112A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28617448 2024-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {A79496B0-1457-4A52-8F8C-AE28C99C383A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28617448 2024-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {A011413B-A46A-450B-B39E-86453171EC47} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312472 2024-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {06367F75-9F38-4B9B-8418-BCCF7610FC56} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312472 2024-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {086689BD-03B0-46ED-BBF3-A2F96ED3AEC7} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [187328 2024-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {FF427FA7-63F9-48ED-B05A-AB365FCFA77C} - System32\Tasks\Microsoft\Windows\Clip\ClipESU => C:\WINDOWS\system32\clipesu.exe [221680 2024-09-25] (Microsoft Windows -> Microsoft Corporation)
Task: {40CD4831-20D1-41F6-BADA-869AA9C2694E} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-06-13] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {6D08C24C-F3AE-4AFD-A490-AA1E7E4A692F} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-376349657-598784215-588274030-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [673696 2024-06-13] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {872B1F7B-62E5-4D79-A2D2-4F9C5E7E7AF3} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [33696 2024-06-13] (Mozilla Corporation -> Mozilla Foundation)
Task: {B1172938-46CD-454C-9B36-FDD497AA2E82} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209184 2024-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {012D5A52-CEBC-4E6C-9C6B-4D1A6B6ED21C} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-376349657-598784215-588274030-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209184 2024-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {575CA44C-CF16-497C-A7E8-A263DD3DC256} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-376349657-598784215-588274030-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4209184 2024-10-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {5F351738-CE5E-4836-8C74-703D56ECF278} - System32\Tasks\Opera scheduled Autoupdate 1699294200 => C:\Users\Vali\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5570464 2024-09-27] (Opera Norway AS -> Opera Software)
Task: {D3C0F2E2-D9FD-4B72-982C-29FBE9D6ACF4} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 127.0.0.1 cryptomator-vault
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{664952b0-fb39-4fe7-a5e8-d1d2d893d516}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{664952b0-fb39-4fe7-a5e8-d1d2d893d516}: [DhcpDomain] home
Tcpip\..\Interfaces\{664952b0-fb39-4fe7-a5e8-d1d2d893d516}\4553357796E676F45747F55374: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{664952b0-fb39-4fe7-a5e8-d1d2d893d516}\4553357796E676F45747F55374: [DhcpDomain] home

Edge:
=======
Edge Profile: C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-14]
Edge Extension: (Injector) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bfdonckegflhbiamlmidciapolfccmmb [2023-12-24]
Edge Extension: (Markdown Viewer) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ckkdlimhmcjmikdlpkmbgfkaikojcbjk [2024-05-02]
Edge Extension: (AdBlocker Pro - Adblock pro YouTube™) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dgjbaljgolmlcmmklmmeafecikidmjpi [2024-05-27]
Edge Extension: (lock) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dppgmdbiimibapkepcbdbmkaabgiofem [2024-09-14]
Edge Extension: (SingleFile) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\efnbkdcfmcmnhlkaijjjmhjjgladedno [2024-09-14]
Edge Extension: (Ghostery Tracker & Ad Blocker - Privacy AdBlock) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fclbdkbhjlgkbpfldjodgjncejkkjcme [2024-09-07]
Edge Extension: (Page load time) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fploionmjgeclbkemipmkogoaohcdbig [2024-09-14]
Edge Extension: (Dokumenty Google offline) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-07]
Edge Extension: (Tampermonkey) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\iikmkjmpaadaobahmlepeloendndfphd [2024-05-16]
Edge Extension: (FormApps Extension) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2024-05-02]
Edge Extension: (Disconnect) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2023-12-24]
Edge Extension: (Edge relevant text changes) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-28]
Edge Extension: (Microsoft Edge DevTools Enhancements) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kfbdpdaobnofkbopebjglnaadopfikhh [2023-10-28]
Edge Extension: (ChroPath) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ljngjbnaijcbncmcnjfhigebomdlkcjo [2023-12-24]
Edge Extension: (Boční lišta záložek) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lmjefbghkfeppnpofmbfmhgodpclipbl [2024-08-11]
Edge Extension: (Markdown Reader) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\medapdbncneneejhbgcjceippjlfkmkg [2024-08-25]
Edge Extension: (Privacy Badger) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mkejgcgkdlddbggjhhflekkondicpnop [2024-08-11]
Edge Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2024-09-07]
Edge Extension: (Adblock for Youtube™) - C:\Users\Vali\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nipggfgilmoiofmnkbeabghbcaohmjih [2024-08-29]
Edge HKLM-x32\...\Edge\Extension: [nkapkmklnmidbbgjaipbgpcnbomnaakc]

FireFox:
========
FF DefaultProfile: byjw55jj.default
FF ProfilePath: C:\Users\Vali\AppData\Roaming\Mozilla\Firefox\Profiles\byjw55jj.default [2023-11-06]
FF ProfilePath: C:\Users\Vali\AppData\Roaming\Mozilla\Firefox\Profiles\kaudyvx3.default-release [2024-09-13]
FF Plugin: @java.com/DTPlugin,version=11.421.2 -> C:\Program Files\Java\jre1.8.0_421\bin\dtplugin\npDeployJava1.dll [2024-06-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.421.2 -> C:\Program Files\Java\jre1.8.0_421\bin\plugin2\npjp2.dll [2024-06-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-09-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2018-09-13] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-09-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2018-09-13] (Adobe Systems Incorporated -> Adobe Systems)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2024-10-06]

Chrome:
=======
CHR Profile: C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default [2024-10-06]
CHR Extension: (lock) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\aeblfdkhhhdcdjpifhhbdiojplfjncoa [2024-09-20]
CHR Extension: (Injector) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfdonckegflhbiamlmidciapolfccmmb [2023-09-28]
CHR Extension: (Markdown Viewer) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckkdlimhmcjmikdlpkmbgfkaikojcbjk [2024-05-02]
CHR Extension: (Adblock na Youtube™) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2024-08-08]
CHR Extension: (AdBlocker Pro - Adblock pro YouTube™) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgjbaljgolmlcmmklmmeafecikidmjpi [2024-05-29]
CHR Extension: (Tampermonkey) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2024-05-03]
CHR Extension: (Postman) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhbjgbiflinjbdggehcddcbncdddomop [2023-09-28]
CHR Extension: (Page load time) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\fploionmjgeclbkemipmkogoaohcdbig [2024-09-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-22]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-04-10]
CHR Extension: (Tmavý režim - tmavá čtečka pro Сhrome) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjjbmfigjpgnehjioicaalopaikcnheo [2024-08-05]
CHR Extension: (FormApps Extension) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2024-04-15]
CHR Extension: (Boční lišta záložek) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdbnofccmhefkmjbkkdkfiicjkgofkdh [2024-08-08]
CHR Extension: (Disconnect) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2023-09-28]
CHR Extension: (Tmavý režim - tmavá čtečka pro Сhrome) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhhjdfldilccfllhlbjdlhknlfbhpgeg [2024-08-05]
CHR Extension: (ChroPath) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljngjbnaijcbncmcnjfhigebomdlkcjo [2023-09-28]
CHR Extension: (Markdown Reader) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\medapdbncneneejhbgcjceippjlfkmkg [2024-08-18]
CHR Extension: (MindMup 2.0 - Free Mind Map web site) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkgkheknpfngchmoaognoilfanomldfl [2023-09-28]
CHR Extension: (Ghostery Tracker & Ad Blocker - Privacy AdBlock) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2024-10-06]
CHR Extension: (SingleFile) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpiodijhokgodhhofbcjdecpffjipkle [2024-10-06]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-09-28]
CHR Extension: (ESET Browser Privacy & Security) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\oombnmpbbhbakfpfgdflaajkhicgfaam [2024-09-10]
CHR Extension: (Privacy Badger) - C:\Users\Vali\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkehgijcmpdhfbdbbnkijodmdjhbjlgp [2024-07-18]
CHR HKU\S-1-5-21-376349657-598784215-588274030-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-376349657-598784215-588274030-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [oombnmpbbhbakfpfgdflaajkhicgfaam]

Opera:
=======
OPR DefaultProfile: Default

Brave:
=======
BRA Profile: C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2024-05-29]
BRA Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-02-15]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2024-02-16]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2024-02-16]
BRA Extension: (Brave NTP background images) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2024-02-15]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2024-02-16]
BRA Extension: (Wallet Data Files Updater) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2024-01-22]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2024-02-16]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2024-02-16]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2023-11-25]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2023-10-27]
BRA Extension: (Brave Ads Resources) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\iejekkikpddbbockoldagmfcdbffomfc [2024-02-16]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2024-02-16]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2024-01-26]
BRA Extension: (Brave Ad Block Updater (EasyList Czech and Slovak (plaintext))) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2024-01-26]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Vali\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2023-10-27]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944 2014-12-05] (Autodesk, Inc -> Autodesk Inc.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818136 2018-09-13] (Adobe Systems Incorporated -> Adobe Inc.)
S2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc -> Autodesk, Inc.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-10-27] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\129.1.70.123\elevation_service.exe [2656280 2024-10-02] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [175424 2023-10-27] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-09-18] (Gen Digital Inc. -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13861048 2024-09-22] (Microsoft Corporation -> Microsoft Corporation)
S3 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-10-02] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2023-10-02] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46824 2024-09-17] (Dropbox, Inc -> Dropbox, Inc.)
R2 dlpsrv; C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe [707864 2023-06-27] (ESET, spol. s r.o. -> ESET)
S3 DropboxElevationService; C:\Program Files (x86)\Dropbox\Client\208.4.5824\DropboxElevationService.exe [1659288 2024-09-17] (Dropbox, Inc -> Dropbox, Inc.)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5527928 2024-08-28] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [4207104 2024-08-28] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [4207104 2024-08-28] (ESET, spol. s r.o. -> ESET)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.180.0905.0001\FileSyncHelper.exe [3522976 2024-10-06] (Microsoft Corporation -> Microsoft Corporation)
S3 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdc.inf_amd64_62e21d7975892b4c\Display.NvContainer\NVDisplay.Container.exe [1274888 2024-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.180.0905.0001\OneDriveUpdaterService.exe [3864496 2024-10-06] (Microsoft Corporation -> Microsoft Corporation)
R2 PSI_SVC_2_x64; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (Arvato Digital Services Canada Inc -> arvato digital services llc)
S3 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [22442808 2024-09-03] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 VSInstallerElevationService; C:\Program Files (x86)\Microsoft Visual Studio\Installer\VSInstallerElevationService.exe [41928 2023-10-26] (Microsoft Corporation -> Microsoft)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinFsp.Launcher; C:\Program Files (x86)\WinFsp\bin\launcher-x64.exe [34592 2022-12-05] (NAVIMATICS LLC -> Navimatics LLC)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [78328 2021-08-25] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R0 DLMFENC; C:\WINDOWS\System32\DRIVERS\DLMFENC.sys [242168 2023-06-27] (ESET, spol. s r.o. -> ESET, spol. s r.o.)
R0 DLPCRYPT; C:\WINDOWS\System32\DRIVERS\dlpcrypt.sys [121728 2023-06-27] (DESlock Limited -> DESlock Ltd.)
R0 dlpvdisk; C:\WINDOWS\System32\DRIVERS\dlpvdisk.sys [98296 2023-06-27] (DESlock Limited -> DESlock Ltd.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [219984 2024-07-10] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [119424 2024-07-10] (Microsoft Windows Hardware Compatibility Publisher -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2024-03-21] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [265944 2024-07-10] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [57848 2024-07-10] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [84136 2024-07-10] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [126480 2024-07-10] (ESET, spol. s r.o. -> ESET)
R0 VDLPToken2; C:\WINDOWS\System32\DRIVERS\vdlptkn2.sys [135672 2023-06-27] (DESlock Limited -> DESlock Ltd.)
R1 VD_FileDisk; C:\Windows\System32\Drivers\VD_FileDisk.sys [30312 2011-01-26] (Ghisler Software GmbH -> CaptainFlint Software)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WinFsp; C:\Program Files (x86)\WinFsp\bin\winfsp-x64.sys [165936 2022-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Navimatics LLC)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-10-06 20:57 - 2024-10-06 20:58 - 000036054 _____ C:\Users\Vali\Desktop\FRST.txt
2024-10-06 20:56 - 2024-10-06 20:56 - 002397696 _____ (Farbar) C:\Users\Vali\Desktop\FRST64.exe
2024-10-06 20:51 - 2024-10-06 20:51 - 000007684 _____ C:\Users\Vali\Desktop\dilek_vesak.stl
2024-10-06 20:39 - 2024-10-06 20:39 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-10-06 20:27 - 2024-10-06 20:27 - 000007599 _____ C:\Users\Vali\AppData\Local\Resmon.ResmonCfg
2024-09-26 22:40 - 2024-09-26 22:40 - 000010620 _____ C:\Users\Vali\Downloads\strasna kokotina.xlsx
2024-09-25 08:15 - 2024-09-25 08:15 - 000000000 ___HD C:\$WinREAgent
2024-09-20 09:26 - 2024-09-20 09:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2024-09-17 16:18 - 2024-09-17 16:18 - 000046824 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2024-09-16 21:02 - 2024-09-16 21:02 - 010831626 _____ C:\Users\Vali\Downloads\25217732 (1).zip
2024-09-15 20:46 - 2024-09-15 20:46 - 000155034 _____ C:\Users\Vali\Downloads\d444159f-6b12-4de9-91f3-9c8c08058fb3.rar
2024-09-13 06:47 - 2024-09-13 06:47 - 000000000 ____D C:\Users\Vali\Documents\FeedbackHub
2024-09-12 13:55 - 2024-09-12 20:25 - 000867932 _____ C:\Users\Vali\Desktop\TEST.TXT
2024-09-10 20:41 - 2024-09-10 20:41 - 000000889 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2024-09-10 20:40 - 2024-09-10 20:40 - 070025080 _____ (TeamViewer Germany GmbH) C:\Users\Vali\Downloads\TeamViewer_Setup_x64 (1).exe
2024-09-08 21:22 - 2024-09-08 21:22 - 000035468 _____ C:\Users\Vali\Downloads\BirdLife_International_logo.svg

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-10-06 20:58 - 2020-06-27 14:20 - 000000000 ____D C:\FRST
2024-10-06 20:54 - 2023-10-01 19:06 - 000000000 ____D C:\Users\Vali\AppData\Local\Autodesk
2024-10-06 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-10-06 20:45 - 2023-09-27 22:52 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-10-06 20:45 - 2019-12-07 16:41 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2024-10-06 20:45 - 2019-12-07 16:41 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2024-10-06 20:45 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2024-10-06 20:41 - 2023-09-28 06:45 - 000000000 ____D C:\Users\Vali\AppData\Roaming\1Password
2024-10-06 20:40 - 2024-06-18 19:47 - 000001347 _____ C:\Users\Vali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1Password.lnk
2024-10-06 20:40 - 2023-10-02 21:03 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Python
2024-10-06 20:40 - 2023-09-28 06:44 - 000000000 ____D C:\Users\Vali\AppData\Local\1Password
2024-10-06 20:40 - 2023-09-28 05:14 - 000000000 ____D C:\Users\Vali
2024-10-06 20:39 - 2023-12-01 22:35 - 000000000 ____D C:\Program Files\Microsoft Office
2024-10-06 20:39 - 2023-10-01 19:11 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Autodesk
2024-10-06 20:39 - 2023-05-05 14:27 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-10-06 20:39 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-10-06 20:37 - 2024-02-13 22:10 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-10-06 20:37 - 2023-09-27 22:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-10-06 20:37 - 2020-07-19 20:31 - 000008192 ___SH C:\DumpStack.log.tmp
2024-10-06 20:36 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-10-06 20:29 - 2023-09-27 22:38 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-10-06 20:28 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-10-06 20:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-10-06 20:26 - 2023-12-04 22:33 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-10-06 20:26 - 2023-12-01 22:43 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-10-06 20:26 - 2023-11-06 20:10 - 000004258 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1699294200
2024-10-06 20:26 - 2023-11-06 20:10 - 000001379 _____ C:\Users\Vali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2024-10-06 20:26 - 2023-10-27 18:34 - 000002364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2024-10-06 20:25 - 2024-02-04 18:00 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-10-06 20:25 - 2023-12-01 22:43 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-376349657-598784215-588274030-1001
2024-10-06 20:25 - 2023-10-01 17:47 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-376349657-598784215-588274030-1002
2024-10-06 20:17 - 2023-10-02 06:08 - 000000000 ____D C:\Program Files (x86)\Dropbox
2024-10-06 20:16 - 2023-09-27 22:38 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-10-06 20:16 - 2023-09-27 22:38 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-10-06 20:14 - 2024-02-13 22:10 - 000000000 ____D C:\Program Files\CCleaner
2024-09-26 22:42 - 2023-09-28 05:15 - 000000000 ____D C:\Users\Vali\AppData\Local\Packages
2024-09-26 22:40 - 2023-09-28 07:35 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Microsoft\Excel
2024-09-26 22:30 - 2023-09-27 22:35 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-09-26 21:02 - 2023-10-01 21:44 - 000000033 _____ C:\Users\Vali\AppData\Roaming\AdobeWLCMCache.dat
2024-09-26 20:51 - 2023-09-28 06:31 - 000000000 ____D C:\Users\Vali\AppData\Local\PlaceholderTileLogoFolder
2024-09-25 22:16 - 2023-09-27 22:35 - 000959288 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-09-25 22:14 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-09-25 22:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-09-25 22:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-09-25 22:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-09-25 22:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-09-25 22:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-09-25 22:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-09-25 22:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-09-25 22:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-09-25 22:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-09-25 20:33 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-09-25 08:28 - 2023-10-01 19:13 - 000002088 _____ C:\Users\Vali\.bash_history
2024-09-25 08:23 - 2023-10-21 21:40 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Code
2024-09-25 08:10 - 2023-10-21 21:41 - 000000000 ____D C:\Users\Vali\.platformio
2024-09-22 21:03 - 2023-09-28 06:35 - 000000000 ____D C:\Users\Vali\AppData\Local\D3DSCache
2024-09-21 20:59 - 2023-10-06 08:00 - 000000000 ____D C:\Users\Vali\AppData\Roaming\PrusaSlicer
2024-09-21 20:22 - 2024-02-13 22:10 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-09-21 20:22 - 2024-02-13 22:10 - 000003376 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-09-21 20:18 - 2023-10-30 16:29 - 000000000 ____D C:\Users\Tami\AppData\Roaming\com.adobe.dunamis
2024-09-21 20:18 - 2023-10-30 16:29 - 000000000 ____D C:\Users\Tami\AppData\Local\Adobe
2024-09-21 20:18 - 2023-10-01 17:45 - 000000000 ____D C:\Users\Tami\AppData\Roaming\Adobe
2024-09-20 09:27 - 2023-10-02 06:09 - 000000000 ____D C:\Users\Vali\AppData\Local\Dropbox
2024-09-19 21:18 - 2023-12-23 15:38 - 000000000 ____D C:\Users\Vali\Downloads\_WHERIGO
2024-09-19 20:16 - 2023-10-29 15:29 - 000000000 ____D C:\Users\Vali\AppData\Roaming\com.adobe.dunamis
2024-09-19 20:16 - 2023-10-01 21:33 - 000000000 ____D C:\Users\Vali\AppData\Local\Adobe
2024-09-19 20:16 - 2023-09-28 05:15 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Adobe
2024-09-18 21:03 - 2023-10-29 15:24 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-09-18 21:02 - 2023-10-29 15:23 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-09-16 21:02 - 2024-04-01 20:54 - 000000000 ____D C:\Users\Vali\Downloads\my_finds
2024-09-14 20:00 - 2023-10-08 21:05 - 000000000 ____D C:\Users\Vali\AppData\Local\RealVNC
2024-09-13 20:56 - 2024-06-14 06:36 - 000000000 ____D C:\Program Files\TeamViewer
2024-09-13 20:18 - 2023-10-16 20:24 - 000000000 ____D C:\Users\Vali\AppData\Local\Greenshot
2024-09-13 06:51 - 2024-02-13 22:16 - 000000000 ____D C:\Users\Vali\Documents\registry_zaloha
2024-09-12 21:17 - 2023-10-21 21:23 - 000000000 ____D C:\Users\Vali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2024-09-10 19:22 - 2023-09-27 22:40 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-09-10 19:11 - 2023-10-01 16:04 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-09-10 19:05 - 2023-10-01 16:04 - 199688632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-09-07 14:49 - 2023-09-28 06:37 - 000000000 ____D C:\ProgramData\NVIDIA

==================== Files in the root of some directories ========

2023-10-01 21:44 - 2024-09-26 21:02 - 000000033 _____ () C:\Users\Vali\AppData\Roaming\AdobeWLCMCache.dat
2023-10-15 19:16 - 2024-02-27 17:08 - 000000615 _____ () C:\Users\Vali\AppData\Local\oobelibMkey.log
2024-01-15 11:56 - 2024-08-21 20:58 - 000000128 _____ () C:\Users\Vali\AppData\Local\PUTTY.RND
2024-10-06 20:27 - 2024-10-06 20:27 - 000007599 _____ () C:\Users\Vali\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Addition.zip: (18.98 KiB) Staženo 69 x

#2 Příspěvek od **JaRon** » 07 říj 2024 12:17

Ahoj,
pouzi fixlist s obsahom:

Start

HKU\S-1-5-21-376349657-598784215-588274030-1001\...\RunOnce: [b75426da614240b28394bef43a17be45] => cmd /C copy /Y "C:\Users\Vali\AppData\Local\Autodesk\webdeploy\production\fe6fc4e563d5e777991ef05dfeb93ed8d5cbf331\FusionLauncher.exe" "C:\Users\Vali\AppData\Local\Autodesk\webdeploy\production\6a0c96 (the data entry has 46 more characters). (No File)
HKU\S-1-5-21-376349657-598784215-588274030-1001\...\Policies\Explorer: []

EmptyTemp:

End

Lancre · #3 Příspěvek od **Lancre** » 07 říj 2024 18:59

Fix result of Farbar Recovery Scan Tool (x64) Version: 16-09-2024
Ran by Vali (07-10-2024 19:52:07) Run:4
Running from C:\Users\Vali\Desktop
Loaded Profiles: Vali & Tami
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

HKU\S-1-5-21-376349657-598784215-588274030-1001\...\RunOnce: [b75426da614240b28394bef43a17be45] => cmd /C copy /Y "C:\Users\Vali\AppData\Local\Autodesk\webdeploy\production\fe6fc4e563d5e777991ef05dfeb93ed8d5cbf331\FusionLauncher.exe" "C:\Users\Vali\AppData\Local\Autodesk\webdeploy\production\6a0c96 (the data entry has 46 more characters). (No File)
HKU\S-1-5-21-376349657-598784215-588274030-1001\...\Policies\Explorer: []

EmptyTemp:

End
*****************

"HKU\S-1-5-21-376349657-598784215-588274030-1001\Software\Microsoft\Windows\CurrentVersion\RunOnce\\b75426da614240b28394bef43a17be45" => not found
"HKU\S-1-5-21-376349657-598784215-588274030-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 118593954 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 411410324 B
Edge => 0 B
Chrome => 919326619 B
Brave => 1060864 B
Firefox => 15144608 B
Opera => 235213 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 24 B
systemprofile32 => 24 B
LocalService => 50692 B
NetworkService => 50692 B
Vali => 167097361 B
Tami => 774937555 B

RecycleBin => 3072191128 B
EmptyTemp: => 5.1 GB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 19:54:35 ====

#4 Příspěvek od **JaRon** » 07 říj 2024 19:20

Aky je stav ?

Lancre · #5 Příspěvek od **Lancre** » 07 říj 2024 20:09

Vypadá to dobře. Díky za pomoc. Myslím, že téma můžeme zavřít.

#6 Příspěvek od **JaRon** » 07 říj 2024 20:12

To ma tesi

VIRY.CZ

Preventivní kontrola

Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola