Dobrý večer,
chtěl bych poprosit o kontrolu PC. V poslední době mám problém s internetem. Po zapnutí PC se začne odpojovat LAN port. Zkoušel jsem i jiné síťové karty, ale problém je pořád stejný. V logu z routeru jsem narazil alerty ohledně firewallu. Proto bych chtěl mít jistotu že mám PC čisté.
Moc děkuji
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-08-2023
Ran by tucek (administrator) on DESKTOP-HMDAOB9 (Micro-Star International Co., Ltd. MS-7B47) (22-08-2023 20:00:11)
Running from C:\Users\tucek\OneDrive\Plocha\FRST64.exe
Loaded Profiles: tucek
Platform: Microsoft Windows 10 Home Version 22H2 19045.3324 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\MSIMon.exe
(A225F3B5-240D-4EE9-BCF4-697A07F5E93E -> Micro-Star INT'L CO., LTD.) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.126.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(C:\Program Files (x86)\Garmin\Express\express.exe ->) (The CefSharp Authors) [File not signed] C:\Program Files (x86)\Garmin\Express\CefSharp.BrowserSubprocess.exe <2>
(C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
(C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
(C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\One Dragon Center\CC_Engine_x64.exe
(C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming Group Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\helper_process.exe
(C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming Group Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe <3>
(C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wargamingerrormonitor.exe
(D:\Programs\TW\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) D:\Programs\TW\TeamViewer.exe
(D:\Programs\TW\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) D:\Programs\TW\tv_w32.exe
(D:\Programs\TW\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) D:\Programs\TW\tv_x64.exe
(D:\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6>
(Discord Inc. -> Discord Inc.) C:\Users\tucek\AppData\Local\Discord\app-1.0.9016\Discord.exe <6>
(explorer.exe ->) () [File not signed] C:\Program Files\DS502 GAMING Headset\CPL\DS_502_Headset.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(explorer.exe ->) (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\79.0.2.0\crashpad_handler.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <15>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\79.0.2.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(explorer.exe ->) (NZXT, Inc. -> NZXT) C:\Program Files (x86)\NZXT\CAM\Launcher\CAM.exe <3>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\Steam\steam.exe
(explorer.exe ->) (Wargaming Group Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI\Command Center\RemoteMedia.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\APP Manager\AppManager.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Power Software Limited -> Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(services.exe ->) (Immersed) [File not signed] C:\Program Files\Immersed\Immersed-service.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Software Development Products -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(services.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\RAMDisk\MSI_RAMDisk_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(services.exe ->) (ND_Apps -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_6444f5939bb26330\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Oracle America, Inc. -> ) C:\Program Files\MySQL\MySQL Server 8.0\bin\mysqld.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe <2>
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) D:\Programs\TW\TeamViewer_Service.exe
(services.exe ->) (Tencent Technology(Shenzhen) Company Limited -> Tencent) D:\txgameassistant\appmarket\QMEmulatorService.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Spotify AB -> Spotify Ltd) C:\Users\tucek\AppData\Roaming\Spotify\Spotify.exe <6>
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2305.4.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\Live Update.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControlEngine.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Cm108BSound] => C:\Program Files\DS502 GAMING Headset\CPL\DS_502_Headset.exe [2836992 2014-11-10] () [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [256408 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe [1673008 2023-05-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [MsiDS200gmmouseRun] => C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\msimon.exe [3712512 2016-03-03] () [File not signed]
HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [759120 2015-04-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [456160 2018-06-17] (Power Software Limited -> Power Software Ltd)
HKLM-x32\...\Run: [RemoteMedia] => C:\Program Files (x86)\MSI\Command Center\RemoteMedia.exe [1144272 2015-06-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1028280 2017-11-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835760 2019-11-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [APP Manager] => C:\Program Files (x86)\MSI\APP Manager\AppManager.exe [3705520 2019-05-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [X_Boost] => C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe [4260000 2018-08-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26327864 2021-08-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\79.0.2.0\GoogleDriveFS.exe [147244312 2023-08-12] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\79.0.2.0\GoogleDriveFS.exe [147244312 2023-08-12] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [Steam] => D:\Steam\steam.exe [4374376 2023-07-28] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [Discord] => C:\Users\tucek\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2192152 2023-07-22] (Wargaming Group Limited -> Wargaming.net)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41584544 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [CAM] => C:\Program Files (x86)\NZXT\CAM\Launcher\CAM.exe [67662912 2019-07-29] (NZXT, Inc. -> NZXT)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\79.0.2.0\GoogleDriveFS.exe [147244312 2023-08-12] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\tucek\AppData\Local\WebEx\ciscowebexstart.exe [4934984 2021-10-29] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [Spotify] => C:\Users\tucek\AppData\Roaming\Spotify\Spotify.exe [28551544 2023-08-22] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31325464 2023-06-14] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [152025856 2023-08-04] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: H - "H:\Autorun.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {1b1019da-4990-11ed-8476-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {4aca7351-827b-11ec-844c-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {4ca43534-590e-11eb-8410-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {8a37cb78-7776-11ec-844b-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {da856389-dc43-11eb-8420-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {e7cb1fad-0833-11ee-84bc-309c2365f4f3} - "J:\DUB-E250_Win_Driver_Installer.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {feef4ed6-9312-11eb-8415-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\79.0.2.0\GoogleDriveFS.exe [147244312 2023-08-12] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2020-10-05] (pdfforge GmbH) [File not signed]
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\WINDOWS\system32\602localmon.dll [54864 2018-05-31] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\116.0.5845.97\Installer\chrmstp.exe [2023-08-22] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
IFEO\lotrbfme.exe: [Debugger]
IFEO\lotrbfme2.exe: [Debugger]
IFEO\lotrbfme2ep1.exe: [Debugger]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {EFF02996-F935-445E-9048-CA4107A9C8CF} - System32\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A} => D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe -> /i "C:\Users\tucek\AppData\Local\Temp\MTGAinstall\MTGAInstaller.msi" AI_SETUPEXEPATH="D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe" SETUPEXEDIR="D:\Games\MTG\MTGA\MTGALauncher\Updates\" ADDLOCAL=MainFeature,MicrosoftVisualC ALLUSERS="1" PRIMARYFOLDER="APPDIR" ROOTDRIVE="D:\ (the data entry has 670 more characters).
Task: {369161D9-2AA3-4A61-82B6-10FAC2913F63} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {F6C0C92D-3E24-4915-85C1-AF49760315C3} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4944792 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
Task: {D2C52D3B-6F29-4116-9AFA-DE2EDAF0816D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-04] (Avast Software s.r.o. -> Avast Software)
Task: {38EAA451-5E7E-4083-8812-B53F55CDD113} - System32\Tasks\CAM.Desktop => C:\Program Files (x86)\NZXT\CAM\CAM.Desktop.exe [344128 2019-07-29] (NZXT, Inc. -> )
Task: {1D29CC8E-63D9-4E3D-8A9B-77C83D9D0412} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {5DB76B24-0F64-4016-8C80-E17EB6E074DD} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "88bbfc47-fb73-425f-9d5c-66c56402e950" --version "6.15.10623" --silent
Task: {0DA94219-897C-4919-8EF0-D188ED1D64B9} - System32\Tasks\CCleanerSkipUAC - tucek => C:\Program Files\CCleaner\CCleaner.exe [34687904 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {CC2A15DB-C068-4586-A713-67CBA0081475} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [31000 2023-06-14] (Garmin International, Inc. -> )
Task: {208DBBEB-5199-414D-B47F-ED165FC3378F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-25] (Google Inc -> Google Inc.)
Task: {196F800F-DDC1-488C-852C-949ADA88D263} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-25] (Google Inc -> Google Inc.)
Task: {A2876E07-1D8E-40D8-AD92-A3E3E9F9EDE5} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4850904 2023-05-24] (Intel Corporation -> Intel Corporation)
Task: {BAFE0778-E04D-48F3-9A51-4161719751C5} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4850904 2023-05-24] (Intel Corporation -> Intel Corporation)
Task: {A9CC8437-5D31-45EC-8F99-93C2548E2D35} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {3829598C-CB8D-4CB9-A953-293DD328732D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26656848 2023-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {0C3AF01B-E4F4-4C5B-B316-A2B5DBF9D92F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26656848 2023-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {904E69FC-5FC7-4B4F-8710-7FB1F5B57FFF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158872 2023-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {FE184BBD-8C10-498B-A025-B40EED6FCF72} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158872 2023-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {3F498CAE-4125-491E-9B3D-D86A9B0B5EB9} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [167864 2023-08-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {4061BB2E-470D-4B89-8540-D4D05C943C62} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {B5EBA81E-3A3D-45C5-9DE0-E38F10F53583} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(1): %windir%\system32\compattelrunner.exe -> -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc
Task: {B5EBA81E-3A3D-45C5-9DE0-E38F10F53583} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(2): %windir%\system32\compattelrunner.exe -> -m:appraiser.dll -f:DoScheduledTelemetryRun
Task: {B5EBA81E-3A3D-45C5-9DE0-E38F10F53583} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(3): %windir%\system32\compattelrunner.exe -> -m:aemarebackup.dll -f:BackupMareData
Task: {80549369-A697-46D5-A68F-9E971D918765} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2463176 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {CF821B16-BCB5-48DF-91E4-F1A0D560C761} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1938368 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {447C4DAE-A8DD-4B03-8722-075A4C1B8AA6} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2323928 2021-02-02] (Microsoft Corporation -> Microsoft)
Task: {23270FDF-4371-4193-B21D-48FEBEF0EC41} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [32704 2021-02-02] (Microsoft Corporation -> Microsoft)
Task: {AAD49347-22C0-4A5D-8C0F-6388C4C29CF6} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2463176 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {33EA6C09-71DC-4B37-A23C-9AAF385623A1} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1938368 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {3DDAF722-DD0F-413C-8823-99B9D7FC7214} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [102712 2021-07-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {8E09E8AC-37AE-406C-A472-F87A6DDC83A9} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [102712 2021-07-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {62AD106E-C31E-4BD7-8197-F42079D2783C} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe [1794360 2022-01-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {3CFF9B5E-FFF5-48A1-BD99-5AA685FB3D43} - System32\Tasks\MSI_Toast_Server => C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe [31904 2019-03-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {AC118FA2-79DF-4B5B-A900-5E8C6015720D} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [3354296 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {6EE4A0E8-0102-4F04-8A4B-444F0AAA55E0} - System32\Tasks\MSILEDKeeper_Host => C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe [1068688 2019-08-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {91A8ECD7-245B-4478-B13A-05C982289565} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {3F492275-04FD-4BF9-A2B7-94995953BE84} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {51FF9AA9-76FC-4EE5-84F2-C03D0A697AA3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {637E5410-7169-469C-A8C1-5A0A2A5AF895} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8C0F046D-B484-4A0F-B550-13E719389CFA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5C464AFB-DE89-4D43-B4DD-0913D4EA5685} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3C56F90D-B8AC-40B2-976D-0DB15053FE9D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6BFB6EB7-D0C1-435A-A68B-713212D34A71} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F5A7EA81-3291-4014-B91C-F242C348AE2F} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E9AD68C5-E857-4146-9A2E-ACF4ECDB7529} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C62183F4-44AE-4194-A6D7-8AE0FF1015AC} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2476376 2021-07-04] (Overwolf Ltd -> Overwolf LTD)
Task: {8E20B5F6-92AE-49DF-B3BA-F8936687B62D} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\WINDOWS\System32\Wscript.exe [170496 2021-09-15] (Microsoft Windows -> Microsoft Corporation) -> //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {9CC4173A-B1FD-4410-9DC4-A9D50CA2FCE4} - System32\Tasks\ViGEmBusUpdater => C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBusUpdater.exe [888344 2019-12-28] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
Task: {69A55308-0EC4-40A9-A091-DC3E4751360A} - System32\Tasks\Vypnuti => C:\WINDOWS\system32\shutdown.exe [28160 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> /s
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe
Task: C:\WINDOWS\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}.job => D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exeϋ/i C:\Users\tucek\AppData\Local\Temp\MTGAinstall\MTGAInstaller.msi AI_SETUPEXEPATH=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe SETUPEXEDIR=D:\Games\MTG\MTGA\MTGALauncher\Updates\ ADDLOCAL=MainFeature,MicrosoftVisualC ALLUSERS=1 PRIMARYFOLDER=APPDIR ROOTDRIVE=D:\ AI_PREREQFILES=C:\Users\tucek\AppData\Roaming\Wizards of the Coast\MTGA Launcher\prerequisites\Visual C++ Redistributable for Visual Studio 2015-2019\VC_redist.x64_14_29_30135.exe AI_PREREQDIRS=C:\Users\tucek\AppData\Roaming AI_MISSING_PREREQS=Visual C++ Redistributable for Visual Studio 2017 x64 AI_SETUPEXEPATH=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe SETUPEXEDIR=D:\Games\MTG\MTGA\MTGALauncher\Updates\ AI_INSTALL=1 BIPROCESSTIME=2021-11-12T17:53:55.8677930Z TARGETLOCKED=TRUE TARGETDIR=D:\ APPDIR=D:\Games\MTG\MTGA\ AI_SETUPEXEPATH_ORIGINAL=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{66fb79a3-1a5f-486e-a833-bf70ff097767}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{e0591b2c-1145-49c4-969f-f0880d26fd7f}: [DhcpNameServer] 10.0.0.138
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\tucek\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-22]
Edge Extension: (Edge relevant text changes) - C:\Users\tucek\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-12]
FireFox:
========
FF DefaultProfile: itv3m1fw.default
FF ProfilePath: C:\Users\tucek\AppData\Roaming\Mozilla\Firefox\Profiles\itv3m1fw.default [2023-08-22]
FF Homepage: Mozilla\Firefox\Profiles\itv3m1fw.default -> hxxps://www.horizon.tv/cs_cz/tv/sledovat-tv.html
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-08-19] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-08-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Users\tucek\AppData\Roaming\mozilla\plugins\npatgpc.dll [2021-03-25]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default [2023-08-22]
CHR Notifications: Default -> hxxps://duo.google.com; hxxps://meet.google.com; hxxps://web.whatsapp.com
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/","hxxps://www.facebook.c ... e.com/maps"
CHR Extension: (Překladač Google) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-24]
CHR Extension: (Unlocker for WakeLockDetector) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgeplmmblegmdackkcemjkpngngocgjp [2018-01-25]
CHR Extension: (Kalendář Google) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2018-01-25]
CHR Extension: (Full Screen Weather) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2018-01-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-22]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-08-12]
CHR Extension: (365Scores) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gocaejggjgdmkhmbinicknpbhagkblop [2018-01-25]
CHR Extension: (Checker Plus for Google Calendar™) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkhggnncdpfibdhinjiegagmopldibha [2023-08-22]
CHR Extension: (Kindle Cloud Reader) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2018-01-25]
CHR Extension: (WME Toolbox) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihebciailciabdiknfomleeccodkdejn [2023-08-07]
CHR Extension: (FormApps Extension) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2022-10-11]
CHR Extension: (Cisco Webex Extension) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2022-07-23]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2018-01-25]
CHR Extension: (Onlive Clock) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\moddbcckaikhdnigidfcmaeelcobchpm [2018-01-25]
CHR Extension: (Selenium IDE) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mooikfkahbdckldjjndioackbalphokd [2022-08-31]
CHR Extension: (Wes Craven) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nahooofggegjbnodalhoibemeabkapop [2018-01-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Profile: C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-09-15]
CHR Profile: C:\Users\tucek\AppData\Local\Google\Chrome\User Data\System Profile [2021-09-15]
CHR HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8901016 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [586136 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [587160 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-27] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9811832 2022-05-27] (BattlEye Innovations e.K. -> )
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [602376 2021-07-29] (cFos Software GmbH -> cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11878368 2023-08-12] (Microsoft Corporation -> Microsoft Corporation)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43272 2023-07-03] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [212744 2023-07-03] (Intel Corporation -> Intel)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11504744 2023-07-09] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1136552 2023-08-05] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [935344 2023-06-04] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-12-03] (Epic Games Inc. -> Epic Games, Inc.)
R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [46776 2018-09-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2027192 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 Immersed-Service; C:\Program Files\Immersed\Immersed-service.exe [22016 2023-04-13] (Immersed) [File not signed]
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10677504 2023-08-04] (Logitech Inc -> Logitech, Inc.)
R2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [86776 2020-12-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 LogiFacecamService; C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe [497568 2021-10-25] (Logitech Inc -> Logitech)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService_x64.exe [2669240 2018-01-12] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2343600 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService_x64.exe [2725048 2017-12-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2255544 2018-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2507952 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2136248 2018-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [2740912 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [86688 2018-07-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_AppManager_Service; C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe [2055352 2019-01-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 MSI_Companion_Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe [143160 2021-03-31] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_DPCLTSERVICE; C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe [2167440 2019-04-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [113336 2017-12-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2210616 2021-08-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_RAMDisk_Service; C:\Program Files (x86)\MSI\RAMDisk\MSI_RAMDisk_Service.exe [71840 2018-07-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [183472 2020-03-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe [36152 2021-08-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MySQL80; C:\Program Files\MySQL\MySQL Server 8.0\bin\mysqld.exe [52037776 2022-07-06] (Oracle America, Inc. -> )
R2 MysticLight2_Service; C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe [34976 2018-12-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [39760 2021-05-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2476376 2021-07-04] (Overwolf Ltd -> Overwolf LTD)
R2 QMEmulatorService; D:\TxGameAssistant\AppMarket\QMEmulatorService.exe [166384 2019-11-08] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-06-23] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-06-23] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 TeamViewer; D:\Programs\TW\TeamViewer_Service.exe [17845048 2023-07-31] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 ViGEmBusUpdater; C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBusUpdater.exe [888344 2019-12-28] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_6444f5939bb26330\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_6444f5939bb26330\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aow_drv; D:\TxGameAssistant\UI\2.0.13166.123\aow_drv_x64_ev.sys [863616 2019-11-14] (Tencent Technology (Shenzhen) Company Limited -> Tencent)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31416 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237984 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392880 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297880 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95960 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [272568 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [559136 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105240 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [946048 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [705376 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212632 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319512 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 cFosSpeed; C:\WINDOWS\system32\DRIVERS\cfosspeed6.sys [1695016 2021-07-29] (cFos Software GmbH -> cFos Software GmbH)
R3 CMUAC; C:\WINDOWS\System32\drivers\CMUAC.sys [613888 2014-10-09] (C-MEDIA ELECTRONICS INC. -> C-MEDIA)
R1 CTIIO; C:\WINDOWS\system32\drivers\CtiIo64.sys [29208 2022-08-01] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159760 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
R3 DroidCamVideo; C:\WINDOWS\System32\drivers\droidcamvideo.sys [33784 2020-10-04] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2021-09-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2022-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-21] (Intel Corporation -> Intel Corporation)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2023-08-04] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2023-08-04] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2023-08-04] (Logitech Inc -> Logitech)
S1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 NTIOLib_CC_Clock; C:\Program Files (x86)\MSI\One Dragon Center\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\One Dragon Center\Lib\SYS\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_DPC; C:\Program Files (x86)\MSI\DPC Latency Tuner\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S4 NTIOLib_LiveUpdate; C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys [14288 2017-08-24] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MBAPI; C:\Program Files (x86)\MSI\Gaming APP\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MysticLight\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167432 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
S3 tesrsdt; C:\WINDOWS\system32\drivers\tesrsdt.sys [442128 2019-10-16] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 TesSafe; C:\WINDOWS\system32\TesSafe.sys [555064 2019-11-16] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
R3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]
S3 WinRing0_1_2_0; \??\C:\Users\tucek\AppData\Local\Temp\Rar$EXa23484.49216\OpenHardwareMonitor\OpenHardwareMonitorLib.sys [X] <==== ATTENTION
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-09 01:06 - 2023-08-09 01:06 - 000000000 ___HD C:\$WinREAgent
2023-08-09 00:29 - 2023-08-09 00:29 - 000000000 ____D C:\Users\tucek\AppData\Roaming\DaciaAutomotive
2023-08-09 00:29 - 2023-08-09 00:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DaciaAutomotive
2023-08-09 00:29 - 2023-08-09 00:29 - 000000000 ____D C:\Program Files (x86)\DaciaAutomotive
2023-08-06 00:39 - 2023-08-06 00:39 - 000000000 ____D C:\Users\tucek\AppData\LocalLow\Awesome Games Studio
2023-08-05 10:46 - 2023-08-05 10:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2023-08-04 23:08 - 2023-08-22 19:57 - 000000000 ____D C:\Users\tucek\AppData\Roaming\lghub
2023-08-04 23:08 - 2023-08-22 19:56 - 000000000 ____D C:\Users\tucek\AppData\Local\LGHUB
2023-08-04 23:08 - 2023-08-04 23:08 - 000073040 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2023-08-04 23:08 - 2023-08-04 23:08 - 000044880 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2023-08-04 23:08 - 2023-08-04 23:08 - 000032080 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys
2023-08-04 23:08 - 2023-08-04 23:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2023-08-04 23:08 - 2023-08-04 23:08 - 000000000 ____D C:\ProgramData\Logishrd
2023-08-04 23:08 - 2023-08-04 23:08 - 000000000 ____D C:\ProgramData\LGHUB
2023-08-04 23:08 - 2023-08-04 23:08 - 000000000 ____D C:\Program Files\LGHUB
2023-08-04 21:21 - 2023-08-04 21:21 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-07-23 09:23 - 2023-07-23 09:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-22 20:00 - 2018-12-03 21:25 - 000000000 ____D C:\FRST
2023-08-22 19:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-08-22 19:57 - 2018-01-25 17:11 - 000000000 ____D C:\Users\tucek\AppData\Local\Spotify
2023-08-22 19:56 - 2021-12-16 01:16 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-08-22 19:56 - 2021-10-01 21:07 - 000000000 ____D C:\Users\tucek\AppData\Local\Discord
2023-08-22 19:56 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-08-22 19:56 - 2018-11-29 00:02 - 000000000 ____D C:\Users\tucek\AppData\Roaming\CAM
2023-08-22 19:56 - 2018-01-30 15:14 - 000000000 ___RD C:\Users\tucek\Disk Google
2023-08-22 19:56 - 2018-01-25 17:51 - 000000000 ____D C:\Users\tucek\AppData\Roaming\discord
2023-08-22 19:56 - 2018-01-25 17:40 - 000000000 ____D C:\Users\tucek\AppData\Local\CrashDumps
2023-08-22 19:56 - 2018-01-25 17:25 - 000000000 ____D C:\Program Files\CCleaner
2023-08-22 19:56 - 2018-01-25 17:11 - 000000000 ____D C:\Users\tucek\AppData\Roaming\Spotify
2023-08-22 19:56 - 2018-01-25 16:32 - 000000000 ____D C:\Program Files (x86)\Google
2023-08-22 19:56 - 2018-01-25 15:38 - 000000000 ____D C:\ProgramData\NVIDIA
2023-08-22 19:36 - 2022-10-13 20:54 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-08-22 19:36 - 2020-08-20 21:36 - 000760666 _____ C:\WINDOWS\system32\perfh019.dat
2023-08-22 19:36 - 2020-08-20 21:36 - 000151374 _____ C:\WINDOWS\system32\perfc019.dat
2023-08-22 19:36 - 2020-08-20 20:55 - 002605486 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-08-22 19:36 - 2020-08-20 20:53 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-08-22 19:36 - 2020-06-10 22:02 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-08-22 19:36 - 2019-12-07 16:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2023-08-22 19:36 - 2019-12-07 16:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2023-08-22 19:36 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-08-22 19:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-08-22 19:36 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-08-22 19:35 - 2022-12-21 21:36 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2706176904-198997732-1839745789-1001
2023-08-22 19:35 - 2020-08-20 20:53 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2706176904-198997732-1839745789-1001
2023-08-22 19:35 - 2020-08-20 20:46 - 000002377 _____ C:\Users\tucek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-08-22 19:35 - 2018-12-31 13:05 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-08-22 19:34 - 2022-09-21 14:32 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-08-22 19:34 - 2022-09-21 14:32 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-08-22 19:34 - 2018-01-25 15:35 - 000000000 ___SD C:\Users\tucek\AppData\Roaming\Microsoft\Credentials
2023-08-22 19:33 - 2022-08-01 23:34 - 000003284 _____ C:\WINDOWS\system32\Tasks\MSI Task Host - Detect_Monitor
2023-08-22 19:33 - 2022-08-01 23:34 - 000003268 _____ C:\WINDOWS\system32\Tasks\MSI Task Host - DisplayID
2023-08-22 19:31 - 2020-08-20 20:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-08-22 19:31 - 2020-08-20 20:45 - 000008192 ___SH C:\DumpStack.log.tmp
2023-08-22 19:31 - 2018-01-25 17:25 - 000000000 ____D C:\ProgramData\AVAST Software
2023-08-14 20:51 - 2021-11-12 19:54 - 000002270 ____H C:\WINDOWS\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}.job
2023-08-14 20:51 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-08-14 20:46 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-08-14 20:33 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-08-13 22:58 - 2020-08-20 20:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-08-13 20:32 - 2023-07-22 10:13 - 000002678 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2023-08-13 20:32 - 2022-08-01 23:37 - 000002280 _____ C:\WINDOWS\system32\Tasks\MSIGH_Host
2023-08-13 20:32 - 2022-08-01 23:34 - 000002280 _____ C:\WINDOWS\system32\Tasks\MSI Task Host - LEDKeeper2_Host
2023-08-13 20:32 - 2022-08-01 21:47 - 000002402 _____ C:\WINDOWS\system32\Tasks\MSI_Toast_Server
2023-08-13 20:32 - 2022-07-28 12:23 - 000003042 _____ C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2023-08-13 20:32 - 2022-07-28 12:17 - 000002970 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2023-08-13 20:32 - 2022-07-28 12:17 - 000002604 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2023-08-13 20:32 - 2021-11-12 19:54 - 000004304 _____ C:\WINDOWS\system32\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}
2023-08-13 20:32 - 2021-08-22 16:30 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - tucek
2023-08-13 20:32 - 2020-08-20 20:53 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-08-13 20:32 - 2020-08-20 20:53 - 000003410 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-08-13 20:32 - 2020-08-20 20:53 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-13 20:32 - 2020-08-20 20:53 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-08-13 20:32 - 2020-08-20 20:53 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-08-13 20:32 - 2020-08-20 20:53 - 000003186 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-08-13 20:32 - 2020-08-20 20:53 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-13 20:32 - 2020-08-20 20:53 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-13 20:32 - 2020-08-20 20:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-13 20:32 - 2020-08-20 20:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-13 20:32 - 2020-08-20 20:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-13 20:32 - 2020-08-20 20:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-13 20:32 - 2020-08-20 20:53 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-13 20:32 - 2020-08-20 20:53 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-13 20:32 - 2020-08-20 20:53 - 000002702 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2023-08-13 20:32 - 2020-08-20 20:53 - 000002148 _____ C:\WINDOWS\system32\Tasks\MSISW_Host
2023-08-13 20:08 - 2022-08-01 23:37 - 000002136 _____ C:\WINDOWS\system32\Tasks\MSILEDKeeper_Host
2023-08-13 11:24 - 2018-09-23 12:42 - 000000000 ____D C:\Users\tucek\AppData\Local\AVAST Software
2023-08-13 10:55 - 2018-05-14 19:13 - 000000000 ____D C:\Users\tucek\AppData\Local\D3DSCache
2023-08-12 00:48 - 2018-01-30 15:54 - 000000000 ____D C:\Program Files\Microsoft Office
2023-08-12 00:30 - 2018-01-26 18:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-08-12 00:27 - 2021-02-01 21:13 - 000002017 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-08-12 00:25 - 2018-01-26 18:23 - 175983240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-08-09 02:06 - 2020-08-20 20:46 - 000440288 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
2023-08-09 01:12 - 2020-08-20 20:48 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-08-07 17:54 - 2018-01-30 15:57 - 000000000 ____D C:\Users\tucek\AppData\Roaming\Microsoft\Excel
2023-08-07 00:38 - 2022-02-08 18:07 - 000000000 ____D C:\Users\tucek\AppData\Roaming\Microsoft\Teams
2023-08-05 12:41 - 2018-04-15 15:53 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2023-08-05 10:46 - 2022-09-02 11:09 - 000000000 ____D C:\Users\tucek\AppData\Local\Logitech
2023-08-05 10:46 - 2022-09-02 11:00 - 000000000 ____D C:\Program Files\Logitech
2023-08-04 21:22 - 2020-08-20 20:53 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-08-04 21:21 - 2020-10-13 23:11 - 000272568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-08-04 21:21 - 2020-04-15 18:37 - 000559136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-08-04 21:21 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-08-04 21:21 - 2019-01-14 18:25 - 000392880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-08-04 21:21 - 2019-01-05 22:25 - 000297880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-08-04 21:21 - 2019-01-05 22:25 - 000095960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-08-04 21:21 - 2019-01-05 22:25 - 000031416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-08-04 21:21 - 2018-10-29 10:38 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000946048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000705376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000319512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000237984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000105240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000080416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-07-30 21:05 - 2020-08-20 20:46 - 000000000 ____D C:\Users\tucek
2023-07-30 00:03 - 2019-04-20 00:05 - 000000000 ____D C:\Users\tucek\AppData\Roaming\FiraxisLive
2023-07-30 00:03 - 2018-01-25 18:26 - 000000000 ____D C:\Users\tucek\OneDrive\Dokumenty\My Games
2023-07-30 00:02 - 2019-04-20 00:05 - 000000000 ____D C:\Users\tucek\AppData\Roaming\ModLauncherWPF
2023-07-29 23:00 - 2019-11-08 11:17 - 000000000 ____D C:\Users\tucek\AppData\Roaming\qBittorrent
2023-07-23 09:23 - 2020-07-18 20:47 - 000000000 ____D C:\ProgramData\Garmin
2023-07-23 09:23 - 2020-07-18 20:47 - 000000000 ____D C:\Program Files (x86)\Garmin
2023-07-23 09:23 - 2018-01-25 17:06 - 000000000 ____D C:\ProgramData\Package Cache
==================== Files in the root of some directories ========
2018-02-17 19:05 - 2018-02-17 19:06 - 000000099 _____ () C:\Users\tucek\AppData\Roaming\LauncherSettings_live.cfg
2022-01-05 19:21 - 2022-01-05 19:21 - 000332800 _____ () C:\Users\tucek\AppData\Roaming\patcher.dll
2022-02-17 09:49 - 2022-02-17 09:49 - 000004990 _____ () C:\Users\tucek\AppData\Local\2405905061
2022-03-02 23:02 - 2022-03-02 23:02 - 000004990 _____ () C:\Users\tucek\AppData\Local\71739615
2020-03-29 14:50 - 2020-03-29 14:50 - 000003584 _____ () C:\Users\tucek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-11-10 11:15 - 2018-11-10 11:15 - 000010272 _____ () C:\Users\tucek\AppData\Local\recently-used.xbel
2018-01-25 20:14 - 2019-11-06 10:59 - 000007667 _____ () C:\Users\tucek\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Odpojování LAN portu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpojování LAN portu
- Přílohy
-
- Addition.rar
- (29.46 KiB) Staženo 29 x
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Odpojování LAN portu
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Odpojování LAN portu
Po skenování nemám možnost Clean and reapir.
- Přílohy
-
- Scanpng.jpg (51.54 KiB) Zobrazeno 822 x
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Odpojování LAN portu
Dejte do karantény, tram jsou neškodné. Až po čištění budete ADWC mazat, karanténa se smaže s ním.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Odpojování LAN portu
# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2023-07-19.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-24-2023
# Duration: 00:00:03
# OS: Windows 10 (Build 19045.3324)
# Cleaned: 3
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Tencent
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKLM\Software\Classes\METNSD
***** [ Chromium (and derivatives) ] *****
Deleted oadboiipflhobonjjffjbfekfjcgkhco
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [3022 octets] - [03/12/2018 21:07:29]
AdwCleaner[C00].txt - [2844 octets] - [03/12/2018 21:08:25]
AdwCleaner[S01].txt - [2770 octets] - [01/08/2022 11:50:45]
AdwCleaner[C01].txt - [2658 octets] - [01/08/2022 11:52:37]
AdwCleaner[S02].txt - [1785 octets] - [22/08/2023 21:32:17]
AdwCleaner[S03].txt - [1846 octets] - [22/08/2023 21:33:43]
AdwCleaner[S04].txt - [1907 octets] - [24/08/2023 19:28:46]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C04].txt ##########
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2023-07-19.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-24-2023
# Duration: 00:00:03
# OS: Windows 10 (Build 19045.3324)
# Cleaned: 3
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Tencent
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKLM\Software\Classes\METNSD
***** [ Chromium (and derivatives) ] *****
Deleted oadboiipflhobonjjffjbfekfjcgkhco
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [3022 octets] - [03/12/2018 21:07:29]
AdwCleaner[C00].txt - [2844 octets] - [03/12/2018 21:08:25]
AdwCleaner[S01].txt - [2770 octets] - [01/08/2022 11:50:45]
AdwCleaner[C01].txt - [2658 octets] - [01/08/2022 11:52:37]
AdwCleaner[S02].txt - [1785 octets] - [22/08/2023 21:32:17]
AdwCleaner[S03].txt - [1846 octets] - [22/08/2023 21:33:43]
AdwCleaner[S04].txt - [1907 octets] - [24/08/2023 19:28:46]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C04].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Odpojování LAN portu
OK. Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Odpojování LAN portu
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23-08-2023
Ran by tucek (administrator) on DESKTOP-HMDAOB9 (Micro-Star International Co., Ltd. MS-7B47) (24-08-2023 20:11:52)
Running from C:\Users\tucek\OneDrive\Plocha\FRST64 (1).exe
Loaded Profiles: tucek
Platform: Microsoft Windows 10 Home Version 22H2 19045.3324 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\MSIMon.exe
(A225F3B5-240D-4EE9-BCF4-697A07F5E93E -> Micro-Star INT'L CO., LTD.) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.126.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(C:\Program Files (x86)\Garmin\Express\express.exe ->) (The CefSharp Authors) [File not signed] C:\Program Files (x86)\Garmin\Express\CefSharp.BrowserSubprocess.exe <2>
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(D:\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6>
(Discord Inc. -> Discord Inc.) C:\Users\tucek\AppData\Local\Discord\app-1.0.9016\Discord.exe <6>
(explorer.exe ->) () [File not signed] C:\Program Files\DS502 GAMING Headset\CPL\DS_502_Headset.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(explorer.exe ->) (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\79.0.2.0\crashpad_handler.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <28>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\79.0.2.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (NZXT, Inc. -> NZXT) C:\Program Files (x86)\NZXT\CAM\Launcher\CAM.exe <3>
(explorer.exe ->) (Spotify AB -> Spotify Ltd) C:\Users\tucek\AppData\Roaming\Spotify\Spotify.exe <6>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\Steam\steam.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI\Command Center\RemoteMedia.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\APP Manager\AppManager.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Power Software Limited -> Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Software Development Products -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(services.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_6444f5939bb26330\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Oracle America, Inc. -> ) C:\Program Files\MySQL\MySQL Server 8.0\bin\mysqld.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe <2>
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) D:\Programs\TW\TeamViewer_Service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Cm108BSound] => C:\Program Files\DS502 GAMING Headset\CPL\DS_502_Headset.exe [2836992 2014-11-10] () [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [256408 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe [1673008 2023-05-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [MsiDS200gmmouseRun] => C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\msimon.exe [3712512 2016-03-03] () [File not signed]
HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [759120 2015-04-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [456160 2018-06-17] (Power Software Limited -> Power Software Ltd)
HKLM-x32\...\Run: [RemoteMedia] => C:\Program Files (x86)\MSI\Command Center\RemoteMedia.exe [1144272 2015-06-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1028280 2017-11-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835760 2019-11-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [APP Manager] => C:\Program Files (x86)\MSI\APP Manager\AppManager.exe [3705520 2019-05-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [X_Boost] => C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe [4260000 2018-08-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26327864 2021-08-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\79.0.2.0\GoogleDriveFS.exe [147244312 2023-08-12] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\79.0.2.0\GoogleDriveFS.exe [147244312 2023-08-12] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [Steam] => D:\Steam\steam.exe [4374376 2023-07-28] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [Discord] => C:\Users\tucek\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2192152 2023-08-24] (Wargaming Group Limited -> Wargaming.net)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41584544 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [CAM] => C:\Program Files (x86)\NZXT\CAM\Launcher\CAM.exe [67662912 2019-07-29] (NZXT, Inc. -> NZXT)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\79.0.2.0\GoogleDriveFS.exe [147244312 2023-08-12] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\tucek\AppData\Local\WebEx\ciscowebexstart.exe [4934984 2021-10-29] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [Spotify] => C:\Users\tucek\AppData\Roaming\Spotify\Spotify.exe [28551544 2023-08-22] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31325464 2023-06-14] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [44161792 2023-08-24] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: H - "H:\Autorun.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {1b1019da-4990-11ed-8476-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {4aca7351-827b-11ec-844c-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {4ca43534-590e-11eb-8410-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {8a37cb78-7776-11ec-844b-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {da856389-dc43-11eb-8420-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {e7cb1fad-0833-11ee-84bc-309c2365f4f3} - "J:\DUB-E250_Win_Driver_Installer.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {feef4ed6-9312-11eb-8415-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\79.0.2.0\GoogleDriveFS.exe [147244312 2023-08-12] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2020-10-05] (pdfforge GmbH) [File not signed]
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\WINDOWS\system32\602localmon.dll [54864 2018-05-31] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\116.0.5845.97\Installer\chrmstp.exe [2023-08-22] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
IFEO\lotrbfme.exe: [Debugger]
IFEO\lotrbfme2.exe: [Debugger]
IFEO\lotrbfme2ep1.exe: [Debugger]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {EFF02996-F935-445E-9048-CA4107A9C8CF} - System32\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A} => D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe -> /i "C:\Users\tucek\AppData\Local\Temp\MTGAinstall\MTGAInstaller.msi" AI_SETUPEXEPATH="D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe" SETUPEXEDIR="D:\Games\MTG\MTGA\MTGALauncher\Updates\" ADDLOCAL=MainFeature,MicrosoftVisualC ALLUSERS="1" PRIMARYFOLDER="APPDIR" ROOTDRIVE="D:\ (the data entry has 670 more characters).
Task: {369161D9-2AA3-4A61-82B6-10FAC2913F63} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {F6C0C92D-3E24-4915-85C1-AF49760315C3} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4944792 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
Task: {D2C52D3B-6F29-4116-9AFA-DE2EDAF0816D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-04] (Avast Software s.r.o. -> Avast Software)
Task: {38EAA451-5E7E-4083-8812-B53F55CDD113} - System32\Tasks\CAM.Desktop => C:\Program Files (x86)\NZXT\CAM\CAM.Desktop.exe [344128 2019-07-29] (NZXT, Inc. -> )
Task: {1D29CC8E-63D9-4E3D-8A9B-77C83D9D0412} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {5DB76B24-0F64-4016-8C80-E17EB6E074DD} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "88bbfc47-fb73-425f-9d5c-66c56402e950" --version "6.15.10623" --silent
Task: {0DA94219-897C-4919-8EF0-D188ED1D64B9} - System32\Tasks\CCleanerSkipUAC - tucek => C:\Program Files\CCleaner\CCleaner.exe [34687904 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {CC2A15DB-C068-4586-A713-67CBA0081475} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [31000 2023-06-14] (Garmin International, Inc. -> )
Task: {208DBBEB-5199-414D-B47F-ED165FC3378F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-25] (Google Inc -> Google Inc.)
Task: {196F800F-DDC1-488C-852C-949ADA88D263} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-25] (Google Inc -> Google Inc.)
Task: {A2876E07-1D8E-40D8-AD92-A3E3E9F9EDE5} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4850904 2023-05-24] (Intel Corporation -> Intel Corporation)
Task: {BAFE0778-E04D-48F3-9A51-4161719751C5} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4850904 2023-05-24] (Intel Corporation -> Intel Corporation)
Task: {A9CC8437-5D31-45EC-8F99-93C2548E2D35} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {3829598C-CB8D-4CB9-A953-293DD328732D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26656848 2023-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {0C3AF01B-E4F4-4C5B-B316-A2B5DBF9D92F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26656848 2023-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {904E69FC-5FC7-4B4F-8710-7FB1F5B57FFF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158872 2023-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {FE184BBD-8C10-498B-A025-B40EED6FCF72} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158872 2023-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {3F498CAE-4125-491E-9B3D-D86A9B0B5EB9} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [167864 2023-08-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {4061BB2E-470D-4B89-8540-D4D05C943C62} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {B5EBA81E-3A3D-45C5-9DE0-E38F10F53583} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(1): %windir%\system32\compattelrunner.exe -> -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc
Task: {B5EBA81E-3A3D-45C5-9DE0-E38F10F53583} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(2): %windir%\system32\compattelrunner.exe -> -m:appraiser.dll -f:DoScheduledTelemetryRun
Task: {B5EBA81E-3A3D-45C5-9DE0-E38F10F53583} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(3): %windir%\system32\compattelrunner.exe -> -m:aemarebackup.dll -f:BackupMareData
Task: {80549369-A697-46D5-A68F-9E971D918765} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2463176 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {CF821B16-BCB5-48DF-91E4-F1A0D560C761} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1938368 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {447C4DAE-A8DD-4B03-8722-075A4C1B8AA6} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2323928 2021-02-02] (Microsoft Corporation -> Microsoft)
Task: {23270FDF-4371-4193-B21D-48FEBEF0EC41} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [32704 2021-02-02] (Microsoft Corporation -> Microsoft)
Task: {AAD49347-22C0-4A5D-8C0F-6388C4C29CF6} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2463176 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {33EA6C09-71DC-4B37-A23C-9AAF385623A1} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1938368 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {3DDAF722-DD0F-413C-8823-99B9D7FC7214} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [102712 2021-07-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {8E09E8AC-37AE-406C-A472-F87A6DDC83A9} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [102712 2021-07-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {62AD106E-C31E-4BD7-8197-F42079D2783C} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe [1794360 2022-01-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {3CFF9B5E-FFF5-48A1-BD99-5AA685FB3D43} - System32\Tasks\MSI_Toast_Server => C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe [31904 2019-03-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {AC118FA2-79DF-4B5B-A900-5E8C6015720D} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [3354296 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {6EE4A0E8-0102-4F04-8A4B-444F0AAA55E0} - System32\Tasks\MSILEDKeeper_Host => C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe [1068688 2019-08-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {91A8ECD7-245B-4478-B13A-05C982289565} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {3F492275-04FD-4BF9-A2B7-94995953BE84} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {51FF9AA9-76FC-4EE5-84F2-C03D0A697AA3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {637E5410-7169-469C-A8C1-5A0A2A5AF895} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8C0F046D-B484-4A0F-B550-13E719389CFA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5C464AFB-DE89-4D43-B4DD-0913D4EA5685} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3C56F90D-B8AC-40B2-976D-0DB15053FE9D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6BFB6EB7-D0C1-435A-A68B-713212D34A71} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F5A7EA81-3291-4014-B91C-F242C348AE2F} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E9AD68C5-E857-4146-9A2E-ACF4ECDB7529} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C62183F4-44AE-4194-A6D7-8AE0FF1015AC} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2476376 2021-07-04] (Overwolf Ltd -> Overwolf LTD)
Task: {8E20B5F6-92AE-49DF-B3BA-F8936687B62D} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\WINDOWS\System32\Wscript.exe [170496 2021-09-15] (Microsoft Windows -> Microsoft Corporation) -> //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {9CC4173A-B1FD-4410-9DC4-A9D50CA2FCE4} - System32\Tasks\ViGEmBusUpdater => C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBusUpdater.exe [888344 2019-12-28] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
Task: {69A55308-0EC4-40A9-A091-DC3E4751360A} - System32\Tasks\Vypnuti => C:\WINDOWS\system32\shutdown.exe [28160 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> /s
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe
Task: C:\WINDOWS\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}.job => D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exeϋ/i C:\Users\tucek\AppData\Local\Temp\MTGAinstall\MTGAInstaller.msi AI_SETUPEXEPATH=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe SETUPEXEDIR=D:\Games\MTG\MTGA\MTGALauncher\Updates\ ADDLOCAL=MainFeature,MicrosoftVisualC ALLUSERS=1 PRIMARYFOLDER=APPDIR ROOTDRIVE=D:\ AI_PREREQFILES=C:\Users\tucek\AppData\Roaming\Wizards of the Coast\MTGA Launcher\prerequisites\Visual C++ Redistributable for Visual Studio 2015-2019\VC_redist.x64_14_29_30135.exe AI_PREREQDIRS=C:\Users\tucek\AppData\Roaming AI_MISSING_PREREQS=Visual C++ Redistributable for Visual Studio 2017 x64 AI_SETUPEXEPATH=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe SETUPEXEDIR=D:\Games\MTG\MTGA\MTGALauncher\Updates\ AI_INSTALL=1 BIPROCESSTIME=2021-11-12T17:53:55.8677930Z TARGETLOCKED=TRUE TARGETDIR=D:\ APPDIR=D:\Games\MTG\MTGA\ AI_SETUPEXEPATH_ORIGINAL=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{66fb79a3-1a5f-486e-a833-bf70ff097767}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{e0591b2c-1145-49c4-969f-f0880d26fd7f}: [DhcpNameServer] 10.0.0.138
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\tucek\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-22]
Edge Extension: (Edge relevant text changes) - C:\Users\tucek\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-12]
FireFox:
========
FF DefaultProfile: itv3m1fw.default
FF ProfilePath: C:\Users\tucek\AppData\Roaming\Mozilla\Firefox\Profiles\itv3m1fw.default [2023-08-24]
FF Homepage: Mozilla\Firefox\Profiles\itv3m1fw.default -> hxxps://www.horizon.tv/cs_cz/tv/sledovat-tv.html
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-08-19] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-08-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Users\tucek\AppData\Roaming\mozilla\plugins\npatgpc.dll [2021-03-25]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default [2023-08-24]
CHR Notifications: Default -> hxxps://duo.google.com; hxxps://meet.google.com; hxxps://web.whatsapp.com
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/","hxxps://www.facebook.c ... e.com/maps"
CHR Extension: (Překladač Google) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-24]
CHR Extension: (Unlocker for WakeLockDetector) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgeplmmblegmdackkcemjkpngngocgjp [2018-01-25]
CHR Extension: (Kalendář Google) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2018-01-25]
CHR Extension: (Full Screen Weather) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2018-01-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-24]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-08-12]
CHR Extension: (365Scores) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gocaejggjgdmkhmbinicknpbhagkblop [2018-01-25]
CHR Extension: (Checker Plus for Google Calendar™) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkhggnncdpfibdhinjiegagmopldibha [2023-08-22]
CHR Extension: (Kindle Cloud Reader) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2018-01-25]
CHR Extension: (WME Toolbox) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihebciailciabdiknfomleeccodkdejn [2023-08-07]
CHR Extension: (FormApps Extension) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2022-10-11]
CHR Extension: (Cisco Webex Extension) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2022-07-23]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2018-01-25]
CHR Extension: (Onlive Clock) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\moddbcckaikhdnigidfcmaeelcobchpm [2018-01-25]
CHR Extension: (Selenium IDE) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mooikfkahbdckldjjndioackbalphokd [2022-08-31]
CHR Extension: (Wes Craven) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nahooofggegjbnodalhoibemeabkapop [2018-01-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Profile: C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-09-15]
CHR Profile: C:\Users\tucek\AppData\Local\Google\Chrome\User Data\System Profile [2021-09-15]
CHR HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8901016 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [586136 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [587160 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-27] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9811832 2022-05-27] (BattlEye Innovations e.K. -> )
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [602376 2021-07-29] (cFos Software GmbH -> cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11878368 2023-08-12] (Microsoft Corporation -> Microsoft Corporation)
S2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43272 2023-07-03] (Intel Corporation -> Intel)
S3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [212744 2023-07-03] (Intel Corporation -> Intel)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11504744 2023-07-09] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1136552 2023-08-05] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [935344 2023-06-04] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-12-03] (Epic Games Inc. -> Epic Games, Inc.)
S2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [46776 2018-09-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2027192 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 Immersed-Service; C:\Program Files\Immersed\Immersed-service.exe [22016 2023-04-13] (Immersed) [File not signed]
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10676992 2023-08-24] (Logitech Inc -> Logitech, Inc.)
S2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [86776 2020-12-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 LogiFacecamService; C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe [497568 2021-10-25] (Logitech Inc -> Logitech)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService_x64.exe [2669240 2018-01-12] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2343600 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService_x64.exe [2725048 2017-12-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2255544 2018-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2507952 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2136248 2018-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [2740912 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [86688 2018-07-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 MSI_AppManager_Service; C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe [2055352 2019-01-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S2 MSI_Companion_Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe [143160 2021-03-31] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 MSI_DPCLTSERVICE; C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe [2167440 2019-04-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [113336 2017-12-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2210616 2021-08-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 MSI_RAMDisk_Service; C:\Program Files (x86)\MSI\RAMDisk\MSI_RAMDisk_Service.exe [71840 2018-07-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [183472 2020-03-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S2 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe [36152 2021-08-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MySQL80; C:\Program Files\MySQL\MySQL Server 8.0\bin\mysqld.exe [52037776 2022-07-06] (Oracle America, Inc. -> )
S2 MysticLight2_Service; C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe [34976 2018-12-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [39760 2021-05-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2476376 2021-07-04] (Overwolf Ltd -> Overwolf LTD)
S2 QMEmulatorService; D:\TxGameAssistant\AppMarket\QMEmulatorService.exe [166384 2019-11-08] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
S2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-06-23] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-06-23] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 TeamViewer; D:\Programs\TW\TeamViewer_Service.exe [17845048 2023-07-31] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 ViGEmBusUpdater; C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBusUpdater.exe [888344 2019-12-28] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_6444f5939bb26330\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_6444f5939bb26330\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aow_drv; D:\TxGameAssistant\UI\2.0.13166.123\aow_drv_x64_ev.sys [863616 2019-11-14] (Tencent Technology (Shenzhen) Company Limited -> Tencent)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31416 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237984 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392880 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297880 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95960 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [272568 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [559136 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105240 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [946048 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [705376 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212632 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319512 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 cFosSpeed; C:\WINDOWS\system32\DRIVERS\cfosspeed6.sys [1695016 2021-07-29] (cFos Software GmbH -> cFos Software GmbH)
S3 CMUAC; C:\WINDOWS\System32\drivers\CMUAC.sys [613888 2014-10-09] (C-MEDIA ELECTRONICS INC. -> C-MEDIA)
R1 CTIIO; C:\WINDOWS\system32\drivers\CtiIo64.sys [29208 2022-08-01] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159760 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
R3 DroidCamVideo; C:\WINDOWS\System32\drivers\droidcamvideo.sys [33784 2020-10-04] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2021-09-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2022-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-21] (Intel Corporation -> Intel Corporation)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2023-08-04] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2023-08-04] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2023-08-04] (Logitech Inc -> Logitech)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 NTIOLib_CC_Clock; C:\Program Files (x86)\MSI\One Dragon Center\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\One Dragon Center\Lib\SYS\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_DPC; C:\Program Files (x86)\MSI\DPC Latency Tuner\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S4 NTIOLib_LiveUpdate; C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys [14288 2017-08-24] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MBAPI; C:\Program Files (x86)\MSI\Gaming APP\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MysticLight\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167432 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
S3 tesrsdt; C:\WINDOWS\system32\drivers\tesrsdt.sys [442128 2019-10-16] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 TesSafe; C:\WINDOWS\system32\TesSafe.sys [555064 2019-11-16] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
R3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]
S3 WinRing0_1_2_0; \??\C:\Users\tucek\AppData\Local\Temp\Rar$EXa23484.49216\OpenHardwareMonitor\OpenHardwareMonitorLib.sys [X] <==== ATTENTION
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-24 19:28 - 2023-08-24 19:28 - 000000000 ____D C:\Users\tucek\AppData\Roaming\G HUB
2023-08-24 19:28 - 2023-08-24 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2023-08-24 19:28 - 2023-08-24 19:28 - 000000000 ____D C:\Program Files\LGHUB
2023-08-09 01:06 - 2023-08-09 01:06 - 000000000 ___HD C:\$WinREAgent
2023-08-09 00:29 - 2023-08-09 00:29 - 000000000 ____D C:\Users\tucek\AppData\Roaming\DaciaAutomotive
2023-08-09 00:29 - 2023-08-09 00:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DaciaAutomotive
2023-08-09 00:29 - 2023-08-09 00:29 - 000000000 ____D C:\Program Files (x86)\DaciaAutomotive
2023-08-06 00:39 - 2023-08-06 00:39 - 000000000 ____D C:\Users\tucek\AppData\LocalLow\Awesome Games Studio
2023-08-05 10:46 - 2023-08-05 10:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2023-08-04 23:08 - 2023-08-24 19:41 - 000000000 ____D C:\Users\tucek\AppData\Local\LGHUB
2023-08-04 23:08 - 2023-08-24 19:28 - 000000000 ____D C:\Users\tucek\AppData\Roaming\lghub
2023-08-04 23:08 - 2023-08-04 23:08 - 000073040 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2023-08-04 23:08 - 2023-08-04 23:08 - 000044880 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2023-08-04 23:08 - 2023-08-04 23:08 - 000032080 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys
2023-08-04 23:08 - 2023-08-04 23:08 - 000000000 ____D C:\ProgramData\Logishrd
2023-08-04 23:08 - 2023-08-04 23:08 - 000000000 ____D C:\ProgramData\LGHUB
2023-08-04 21:21 - 2023-08-04 21:21 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-24 20:12 - 2018-12-03 21:25 - 000000000 ____D C:\FRST
2023-08-24 20:12 - 2018-09-23 12:42 - 000000000 ____D C:\Users\tucek\AppData\Local\AVAST Software
2023-08-24 20:08 - 2023-07-22 10:13 - 000002678 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2023-08-24 20:08 - 2022-12-21 21:36 - 000003062 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2706176904-198997732-1839745789-1001
2023-08-24 20:08 - 2022-09-21 14:32 - 000003046 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-08-24 20:08 - 2022-09-21 14:32 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-08-24 20:08 - 2022-08-01 23:37 - 000002280 _____ C:\WINDOWS\system32\Tasks\MSIGH_Host
2023-08-24 20:08 - 2022-08-01 23:37 - 000002136 _____ C:\WINDOWS\system32\Tasks\MSILEDKeeper_Host
2023-08-24 20:08 - 2022-08-01 23:34 - 000002374 _____ C:\WINDOWS\system32\Tasks\MSI Task Host - Detect_Monitor
2023-08-24 20:08 - 2022-08-01 23:34 - 000002358 _____ C:\WINDOWS\system32\Tasks\MSI Task Host - DisplayID
2023-08-24 20:08 - 2022-08-01 23:34 - 000002280 _____ C:\WINDOWS\system32\Tasks\MSI Task Host - LEDKeeper2_Host
2023-08-24 20:08 - 2022-08-01 21:47 - 000002402 _____ C:\WINDOWS\system32\Tasks\MSI_Toast_Server
2023-08-24 20:08 - 2022-07-28 12:23 - 000003042 _____ C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2023-08-24 20:08 - 2022-07-28 12:17 - 000002970 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2023-08-24 20:08 - 2022-07-28 12:17 - 000002604 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2023-08-24 20:08 - 2021-11-12 19:54 - 000004304 _____ C:\WINDOWS\system32\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}
2023-08-24 20:08 - 2021-11-12 19:54 - 000002270 ____H C:\WINDOWS\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}.job
2023-08-24 20:08 - 2021-08-22 16:30 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - tucek
2023-08-24 20:08 - 2020-08-20 20:53 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-08-24 20:08 - 2020-08-20 20:53 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-08-24 20:08 - 2020-08-20 20:53 - 000003410 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-08-24 20:08 - 2020-08-20 20:53 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-08-24 20:08 - 2020-08-20 20:53 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-08-24 20:08 - 2020-08-20 20:53 - 000003186 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-08-24 20:08 - 2020-08-20 20:53 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2706176904-198997732-1839745789-1001
2023-08-24 20:08 - 2020-08-20 20:53 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002702 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2023-08-24 20:08 - 2020-08-20 20:53 - 000002148 _____ C:\WINDOWS\system32\Tasks\MSISW_Host
2023-08-24 20:08 - 2018-01-25 17:11 - 000000000 ____D C:\Users\tucek\AppData\Roaming\Spotify
2023-08-24 19:56 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-08-24 19:42 - 2018-01-25 17:11 - 000000000 ____D C:\Users\tucek\AppData\Local\Spotify
2023-08-24 19:41 - 2021-12-16 01:16 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-08-24 19:41 - 2021-10-01 21:07 - 000000000 ____D C:\Users\tucek\AppData\Local\Discord
2023-08-24 19:41 - 2018-11-29 00:02 - 000000000 ____D C:\Users\tucek\AppData\Roaming\CAM
2023-08-24 19:41 - 2018-01-30 15:14 - 000000000 ___RD C:\Users\tucek\Disk Google
2023-08-24 19:41 - 2018-01-25 17:51 - 000000000 ____D C:\Users\tucek\AppData\Roaming\discord
2023-08-24 19:41 - 2018-01-25 17:25 - 000000000 ____D C:\Program Files\CCleaner
2023-08-24 19:41 - 2018-01-25 16:32 - 000000000 ____D C:\Program Files (x86)\Google
2023-08-24 19:41 - 2018-01-25 15:38 - 000000000 ____D C:\ProgramData\NVIDIA
2023-08-24 19:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-08-24 19:32 - 2020-08-20 21:36 - 000760666 _____ C:\WINDOWS\system32\perfh019.dat
2023-08-24 19:32 - 2020-08-20 21:36 - 000151374 _____ C:\WINDOWS\system32\perfc019.dat
2023-08-24 19:32 - 2020-08-20 20:55 - 002605486 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-08-24 19:32 - 2019-12-07 16:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2023-08-24 19:32 - 2019-12-07 16:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2023-08-24 19:32 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-08-24 19:27 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-08-24 19:27 - 2018-01-25 17:40 - 000000000 ____D C:\Users\tucek\AppData\Local\CrashDumps
2023-08-24 19:27 - 2018-01-25 15:35 - 000000000 ___SD C:\Users\tucek\AppData\Roaming\Microsoft\Credentials
2023-08-24 19:26 - 2020-08-20 20:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-08-24 19:26 - 2020-08-20 20:45 - 000008192 ___SH C:\DumpStack.log.tmp
2023-08-24 19:26 - 2018-01-25 17:25 - 000000000 ____D C:\ProgramData\AVAST Software
2023-08-22 21:45 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-08-22 21:29 - 2020-08-20 20:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-08-22 20:19 - 2022-10-27 16:12 - 000079464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2023-08-22 20:19 - 2022-10-27 16:12 - 000063072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2023-08-22 20:19 - 2021-11-19 00:15 - 000169576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2023-08-22 20:19 - 2020-09-28 23:04 - 002807400 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2023-08-22 20:19 - 2020-09-28 23:04 - 000493160 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2023-08-22 20:19 - 2020-09-28 23:04 - 000247400 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2023-08-22 20:19 - 2020-09-28 23:04 - 000202344 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2023-08-22 20:19 - 2020-09-28 23:04 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2023-08-22 20:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-08-22 19:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-08-22 19:36 - 2022-10-13 20:54 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-08-22 19:36 - 2020-06-10 22:02 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-08-22 19:35 - 2020-08-20 20:46 - 000002377 _____ C:\Users\tucek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-08-22 19:35 - 2018-12-31 13:05 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-08-14 20:46 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-08-13 10:55 - 2018-05-14 19:13 - 000000000 ____D C:\Users\tucek\AppData\Local\D3DSCache
2023-08-12 00:48 - 2018-01-30 15:54 - 000000000 ____D C:\Program Files\Microsoft Office
2023-08-12 00:30 - 2018-01-26 18:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-08-12 00:27 - 2021-02-01 21:13 - 000002017 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-08-12 00:25 - 2018-01-26 18:23 - 175983240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-08-09 02:06 - 2020-08-20 20:46 - 000440288 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
2023-08-09 01:12 - 2020-08-20 20:48 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-08-07 17:54 - 2018-01-30 15:57 - 000000000 ____D C:\Users\tucek\AppData\Roaming\Microsoft\Excel
2023-08-07 00:38 - 2022-02-08 18:07 - 000000000 ____D C:\Users\tucek\AppData\Roaming\Microsoft\Teams
2023-08-05 12:41 - 2018-04-15 15:53 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2023-08-05 10:46 - 2022-09-02 11:09 - 000000000 ____D C:\Users\tucek\AppData\Local\Logitech
2023-08-05 10:46 - 2022-09-02 11:00 - 000000000 ____D C:\Program Files\Logitech
2023-08-04 21:22 - 2020-08-20 20:53 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-08-04 21:21 - 2020-10-13 23:11 - 000272568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-08-04 21:21 - 2020-04-15 18:37 - 000559136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-08-04 21:21 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-08-04 21:21 - 2019-01-14 18:25 - 000392880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-08-04 21:21 - 2019-01-05 22:25 - 000297880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-08-04 21:21 - 2019-01-05 22:25 - 000095960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-08-04 21:21 - 2019-01-05 22:25 - 000031416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-08-04 21:21 - 2018-10-29 10:38 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000946048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000705376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000319512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000237984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000105240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000080416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-07-30 21:05 - 2020-08-20 20:46 - 000000000 ____D C:\Users\tucek
2023-07-30 00:03 - 2019-04-20 00:05 - 000000000 ____D C:\Users\tucek\AppData\Roaming\FiraxisLive
2023-07-30 00:03 - 2018-01-25 18:26 - 000000000 ____D C:\Users\tucek\OneDrive\Dokumenty\My Games
2023-07-30 00:02 - 2019-04-20 00:05 - 000000000 ____D C:\Users\tucek\AppData\Roaming\ModLauncherWPF
2023-07-29 23:00 - 2019-11-08 11:17 - 000000000 ____D C:\Users\tucek\AppData\Roaming\qBittorrent
==================== Files in the root of some directories ========
2018-02-17 19:05 - 2018-02-17 19:06 - 000000099 _____ () C:\Users\tucek\AppData\Roaming\LauncherSettings_live.cfg
2022-01-05 19:21 - 2022-01-05 19:21 - 000332800 _____ () C:\Users\tucek\AppData\Roaming\patcher.dll
2022-02-17 09:49 - 2022-02-17 09:49 - 000004990 _____ () C:\Users\tucek\AppData\Local\2405905061
2022-03-02 23:02 - 2022-03-02 23:02 - 000004990 _____ () C:\Users\tucek\AppData\Local\71739615
2020-03-29 14:50 - 2020-03-29 14:50 - 000003584 _____ () C:\Users\tucek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-11-10 11:15 - 2018-11-10 11:15 - 000010272 _____ () C:\Users\tucek\AppData\Local\recently-used.xbel
2018-01-25 20:14 - 2019-11-06 10:59 - 000007667 _____ () C:\Users\tucek\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by tucek (administrator) on DESKTOP-HMDAOB9 (Micro-Star International Co., Ltd. MS-7B47) (24-08-2023 20:11:52)
Running from C:\Users\tucek\OneDrive\Plocha\FRST64 (1).exe
Loaded Profiles: tucek
Platform: Microsoft Windows 10 Home Version 22H2 19045.3324 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\MSIMon.exe
(A225F3B5-240D-4EE9-BCF4-697A07F5E93E -> Micro-Star INT'L CO., LTD.) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.126.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(C:\Program Files (x86)\Garmin\Express\express.exe ->) (The CefSharp Authors) [File not signed] C:\Program Files (x86)\Garmin\Express\CefSharp.BrowserSubprocess.exe <2>
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(D:\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6>
(Discord Inc. -> Discord Inc.) C:\Users\tucek\AppData\Local\Discord\app-1.0.9016\Discord.exe <6>
(explorer.exe ->) () [File not signed] C:\Program Files\DS502 GAMING Headset\CPL\DS_502_Headset.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(explorer.exe ->) (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\79.0.2.0\crashpad_handler.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <28>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\79.0.2.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (NZXT, Inc. -> NZXT) C:\Program Files (x86)\NZXT\CAM\Launcher\CAM.exe <3>
(explorer.exe ->) (Spotify AB -> Spotify Ltd) C:\Users\tucek\AppData\Roaming\Spotify\Spotify.exe <6>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\Steam\steam.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI\Command Center\RemoteMedia.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\APP Manager\AppManager.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Power Software Limited -> Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Software Development Products -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(services.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_6444f5939bb26330\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Oracle America, Inc. -> ) C:\Program Files\MySQL\MySQL Server 8.0\bin\mysqld.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe <2>
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) D:\Programs\TW\TeamViewer_Service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Cm108BSound] => C:\Program Files\DS502 GAMING Headset\CPL\DS_502_Headset.exe [2836992 2014-11-10] () [File not signed]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [256408 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_9b2689b4e3586127\RtkAudUService64.exe [1673008 2023-05-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [MsiDS200gmmouseRun] => C:\Program Files (x86)\MSI Gaming Series\Interceptor DS200\msimon.exe [3712512 2016-03-03] () [File not signed]
HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [759120 2015-04-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [456160 2018-06-17] (Power Software Limited -> Power Software Ltd)
HKLM-x32\...\Run: [RemoteMedia] => C:\Program Files (x86)\MSI\Command Center\RemoteMedia.exe [1144272 2015-06-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1028280 2017-11-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835760 2019-11-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [APP Manager] => C:\Program Files (x86)\MSI\APP Manager\AppManager.exe [3705520 2019-05-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [X_Boost] => C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe [4260000 2018-08-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26327864 2021-08-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\79.0.2.0\GoogleDriveFS.exe [147244312 2023-08-12] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\79.0.2.0\GoogleDriveFS.exe [147244312 2023-08-12] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [Steam] => D:\Steam\steam.exe [4374376 2023-07-28] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [Discord] => C:\Users\tucek\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2192152 2023-08-24] (Wargaming Group Limited -> Wargaming.net)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41584544 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [CAM] => C:\Program Files (x86)\NZXT\CAM\Launcher\CAM.exe [67662912 2019-07-29] (NZXT, Inc. -> NZXT)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\79.0.2.0\GoogleDriveFS.exe [147244312 2023-08-12] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\tucek\AppData\Local\WebEx\ciscowebexstart.exe [4934984 2021-10-29] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [Spotify] => C:\Users\tucek\AppData\Roaming\Spotify\Spotify.exe [28551544 2023-08-22] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31325464 2023-06-14] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [44161792 2023-08-24] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: H - "H:\Autorun.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {1b1019da-4990-11ed-8476-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {4aca7351-827b-11ec-844c-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {4ca43534-590e-11eb-8410-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {8a37cb78-7776-11ec-844b-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {da856389-dc43-11eb-8420-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {e7cb1fad-0833-11ee-84bc-309c2365f4f3} - "J:\DUB-E250_Win_Driver_Installer.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {feef4ed6-9312-11eb-8415-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\79.0.2.0\GoogleDriveFS.exe [147244312 2023-08-12] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2020-10-05] (pdfforge GmbH) [File not signed]
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\WINDOWS\system32\602localmon.dll [54864 2018-05-31] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\116.0.5845.97\Installer\chrmstp.exe [2023-08-22] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
IFEO\lotrbfme.exe: [Debugger]
IFEO\lotrbfme2.exe: [Debugger]
IFEO\lotrbfme2ep1.exe: [Debugger]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {EFF02996-F935-445E-9048-CA4107A9C8CF} - System32\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A} => D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe -> /i "C:\Users\tucek\AppData\Local\Temp\MTGAinstall\MTGAInstaller.msi" AI_SETUPEXEPATH="D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe" SETUPEXEDIR="D:\Games\MTG\MTGA\MTGALauncher\Updates\" ADDLOCAL=MainFeature,MicrosoftVisualC ALLUSERS="1" PRIMARYFOLDER="APPDIR" ROOTDRIVE="D:\ (the data entry has 670 more characters).
Task: {369161D9-2AA3-4A61-82B6-10FAC2913F63} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {F6C0C92D-3E24-4915-85C1-AF49760315C3} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4944792 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
Task: {D2C52D3B-6F29-4116-9AFA-DE2EDAF0816D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-04] (Avast Software s.r.o. -> Avast Software)
Task: {38EAA451-5E7E-4083-8812-B53F55CDD113} - System32\Tasks\CAM.Desktop => C:\Program Files (x86)\NZXT\CAM\CAM.Desktop.exe [344128 2019-07-29] (NZXT, Inc. -> )
Task: {1D29CC8E-63D9-4E3D-8A9B-77C83D9D0412} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {5DB76B24-0F64-4016-8C80-E17EB6E074DD} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "88bbfc47-fb73-425f-9d5c-66c56402e950" --version "6.15.10623" --silent
Task: {0DA94219-897C-4919-8EF0-D188ED1D64B9} - System32\Tasks\CCleanerSkipUAC - tucek => C:\Program Files\CCleaner\CCleaner.exe [34687904 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {CC2A15DB-C068-4586-A713-67CBA0081475} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [31000 2023-06-14] (Garmin International, Inc. -> )
Task: {208DBBEB-5199-414D-B47F-ED165FC3378F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-25] (Google Inc -> Google Inc.)
Task: {196F800F-DDC1-488C-852C-949ADA88D263} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-25] (Google Inc -> Google Inc.)
Task: {A2876E07-1D8E-40D8-AD92-A3E3E9F9EDE5} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4850904 2023-05-24] (Intel Corporation -> Intel Corporation)
Task: {BAFE0778-E04D-48F3-9A51-4161719751C5} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4850904 2023-05-24] (Intel Corporation -> Intel Corporation)
Task: {A9CC8437-5D31-45EC-8F99-93C2548E2D35} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {3829598C-CB8D-4CB9-A953-293DD328732D} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26656848 2023-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {0C3AF01B-E4F4-4C5B-B316-A2B5DBF9D92F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26656848 2023-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {904E69FC-5FC7-4B4F-8710-7FB1F5B57FFF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158872 2023-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {FE184BBD-8C10-498B-A025-B40EED6FCF72} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158872 2023-08-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {3F498CAE-4125-491E-9B3D-D86A9B0B5EB9} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [167864 2023-08-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {4061BB2E-470D-4B89-8540-D4D05C943C62} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {B5EBA81E-3A3D-45C5-9DE0-E38F10F53583} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(1): %windir%\system32\compattelrunner.exe -> -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc
Task: {B5EBA81E-3A3D-45C5-9DE0-E38F10F53583} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(2): %windir%\system32\compattelrunner.exe -> -m:appraiser.dll -f:DoScheduledTelemetryRun
Task: {B5EBA81E-3A3D-45C5-9DE0-E38F10F53583} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(3): %windir%\system32\compattelrunner.exe -> -m:aemarebackup.dll -f:BackupMareData
Task: {80549369-A697-46D5-A68F-9E971D918765} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2463176 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {CF821B16-BCB5-48DF-91E4-F1A0D560C761} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1938368 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {447C4DAE-A8DD-4B03-8722-075A4C1B8AA6} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2323928 2021-02-02] (Microsoft Corporation -> Microsoft)
Task: {23270FDF-4371-4193-B21D-48FEBEF0EC41} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [32704 2021-02-02] (Microsoft Corporation -> Microsoft)
Task: {AAD49347-22C0-4A5D-8C0F-6388C4C29CF6} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2463176 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {33EA6C09-71DC-4B37-A23C-9AAF385623A1} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1938368 2021-02-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {3DDAF722-DD0F-413C-8823-99B9D7FC7214} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [102712 2021-07-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {8E09E8AC-37AE-406C-A472-F87A6DDC83A9} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [102712 2021-07-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {62AD106E-C31E-4BD7-8197-F42079D2783C} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe [1794360 2022-01-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {3CFF9B5E-FFF5-48A1-BD99-5AA685FB3D43} - System32\Tasks\MSI_Toast_Server => C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe [31904 2019-03-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {AC118FA2-79DF-4B5B-A900-5E8C6015720D} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [3354296 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {6EE4A0E8-0102-4F04-8A4B-444F0AAA55E0} - System32\Tasks\MSILEDKeeper_Host => C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe [1068688 2019-08-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {91A8ECD7-245B-4478-B13A-05C982289565} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {3F492275-04FD-4BF9-A2B7-94995953BE84} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {51FF9AA9-76FC-4EE5-84F2-C03D0A697AA3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {637E5410-7169-469C-A8C1-5A0A2A5AF895} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8C0F046D-B484-4A0F-B550-13E719389CFA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5C464AFB-DE89-4D43-B4DD-0913D4EA5685} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3C56F90D-B8AC-40B2-976D-0DB15053FE9D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6BFB6EB7-D0C1-435A-A68B-713212D34A71} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F5A7EA81-3291-4014-B91C-F242C348AE2F} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E9AD68C5-E857-4146-9A2E-ACF4ECDB7529} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C62183F4-44AE-4194-A6D7-8AE0FF1015AC} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2476376 2021-07-04] (Overwolf Ltd -> Overwolf LTD)
Task: {8E20B5F6-92AE-49DF-B3BA-F8936687B62D} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\WINDOWS\System32\Wscript.exe [170496 2021-09-15] (Microsoft Windows -> Microsoft Corporation) -> //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {9CC4173A-B1FD-4410-9DC4-A9D50CA2FCE4} - System32\Tasks\ViGEmBusUpdater => C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBusUpdater.exe [888344 2019-12-28] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
Task: {69A55308-0EC4-40A9-A091-DC3E4751360A} - System32\Tasks\Vypnuti => C:\WINDOWS\system32\shutdown.exe [28160 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> /s
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe
Task: C:\WINDOWS\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}.job => D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exeϋ/i C:\Users\tucek\AppData\Local\Temp\MTGAinstall\MTGAInstaller.msi AI_SETUPEXEPATH=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe SETUPEXEDIR=D:\Games\MTG\MTGA\MTGALauncher\Updates\ ADDLOCAL=MainFeature,MicrosoftVisualC ALLUSERS=1 PRIMARYFOLDER=APPDIR ROOTDRIVE=D:\ AI_PREREQFILES=C:\Users\tucek\AppData\Roaming\Wizards of the Coast\MTGA Launcher\prerequisites\Visual C++ Redistributable for Visual Studio 2015-2019\VC_redist.x64_14_29_30135.exe AI_PREREQDIRS=C:\Users\tucek\AppData\Roaming AI_MISSING_PREREQS=Visual C++ Redistributable for Visual Studio 2017 x64 AI_SETUPEXEPATH=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe SETUPEXEDIR=D:\Games\MTG\MTGA\MTGALauncher\Updates\ AI_INSTALL=1 BIPROCESSTIME=2021-11-12T17:53:55.8677930Z TARGETLOCKED=TRUE TARGETDIR=D:\ APPDIR=D:\Games\MTG\MTGA\ AI_SETUPEXEPATH_ORIGINAL=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{66fb79a3-1a5f-486e-a833-bf70ff097767}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{e0591b2c-1145-49c4-969f-f0880d26fd7f}: [DhcpNameServer] 10.0.0.138
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\tucek\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-22]
Edge Extension: (Edge relevant text changes) - C:\Users\tucek\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-12]
FireFox:
========
FF DefaultProfile: itv3m1fw.default
FF ProfilePath: C:\Users\tucek\AppData\Roaming\Mozilla\Firefox\Profiles\itv3m1fw.default [2023-08-24]
FF Homepage: Mozilla\Firefox\Profiles\itv3m1fw.default -> hxxps://www.horizon.tv/cs_cz/tv/sledovat-tv.html
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-08-19] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-08-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Users\tucek\AppData\Roaming\mozilla\plugins\npatgpc.dll [2021-03-25]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default [2023-08-24]
CHR Notifications: Default -> hxxps://duo.google.com; hxxps://meet.google.com; hxxps://web.whatsapp.com
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/","hxxps://www.facebook.c ... e.com/maps"
CHR Extension: (Překladač Google) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-24]
CHR Extension: (Unlocker for WakeLockDetector) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgeplmmblegmdackkcemjkpngngocgjp [2018-01-25]
CHR Extension: (Kalendář Google) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2018-01-25]
CHR Extension: (Full Screen Weather) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2018-01-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-24]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-08-12]
CHR Extension: (365Scores) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gocaejggjgdmkhmbinicknpbhagkblop [2018-01-25]
CHR Extension: (Checker Plus for Google Calendar™) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkhggnncdpfibdhinjiegagmopldibha [2023-08-22]
CHR Extension: (Kindle Cloud Reader) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2018-01-25]
CHR Extension: (WME Toolbox) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihebciailciabdiknfomleeccodkdejn [2023-08-07]
CHR Extension: (FormApps Extension) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2022-10-11]
CHR Extension: (Cisco Webex Extension) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2022-07-23]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2018-01-25]
CHR Extension: (Onlive Clock) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\moddbcckaikhdnigidfcmaeelcobchpm [2018-01-25]
CHR Extension: (Selenium IDE) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\mooikfkahbdckldjjndioackbalphokd [2022-08-31]
CHR Extension: (Wes Craven) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nahooofggegjbnodalhoibemeabkapop [2018-01-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Profile: C:\Users\tucek\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-09-15]
CHR Profile: C:\Users\tucek\AppData\Local\Google\Chrome\User Data\System Profile [2021-09-15]
CHR HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8901016 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [586136 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [587160 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-27] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [9811832 2022-05-27] (BattlEye Innovations e.K. -> )
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [602376 2021-07-29] (cFos Software GmbH -> cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11878368 2023-08-12] (Microsoft Corporation -> Microsoft Corporation)
S2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43272 2023-07-03] (Intel Corporation -> Intel)
S3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [212744 2023-07-03] (Intel Corporation -> Intel)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [11504744 2023-07-09] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1136552 2023-08-05] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [935344 2023-06-04] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2022-12-03] (Epic Games Inc. -> Epic Games, Inc.)
S2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [46776 2018-09-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2027192 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 Immersed-Service; C:\Program Files\Immersed\Immersed-service.exe [22016 2023-04-13] (Immersed) [File not signed]
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10676992 2023-08-24] (Logitech Inc -> Logitech, Inc.)
S2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [86776 2020-12-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 LogiFacecamService; C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe [497568 2021-10-25] (Logitech Inc -> Logitech)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService_x64.exe [2669240 2018-01-12] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2343600 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService_x64.exe [2725048 2017-12-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2255544 2018-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2507952 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2136248 2018-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [2740912 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [86688 2018-07-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 MSI_AppManager_Service; C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe [2055352 2019-01-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S2 MSI_Companion_Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe [143160 2021-03-31] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 MSI_DPCLTSERVICE; C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe [2167440 2019-04-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [113336 2017-12-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2210616 2021-08-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 MSI_RAMDisk_Service; C:\Program Files (x86)\MSI\RAMDisk\MSI_RAMDisk_Service.exe [71840 2018-07-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [183472 2020-03-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S2 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe [36152 2021-08-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MySQL80; C:\Program Files\MySQL\MySQL Server 8.0\bin\mysqld.exe [52037776 2022-07-06] (Oracle America, Inc. -> )
S2 MysticLight2_Service; C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe [34976 2018-12-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [39760 2021-05-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2476376 2021-07-04] (Overwolf Ltd -> Overwolf LTD)
S2 QMEmulatorService; D:\TxGameAssistant\AppMarket\QMEmulatorService.exe [166384 2019-11-08] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
S2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2021-06-23] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [920768 2021-06-23] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 TeamViewer; D:\Programs\TW\TeamViewer_Service.exe [17845048 2023-07-31] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 ViGEmBusUpdater; C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBusUpdater.exe [888344 2019-12-28] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_6444f5939bb26330\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_6444f5939bb26330\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aow_drv; D:\TxGameAssistant\UI\2.0.13166.123\aow_drv_x64_ev.sys [863616 2019-11-14] (Tencent Technology (Shenzhen) Company Limited -> Tencent)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31416 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237984 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392880 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297880 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95960 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [272568 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [559136 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105240 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [946048 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [705376 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212632 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319512 2023-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 cFosSpeed; C:\WINDOWS\system32\DRIVERS\cfosspeed6.sys [1695016 2021-07-29] (cFos Software GmbH -> cFos Software GmbH)
S3 CMUAC; C:\WINDOWS\System32\drivers\CMUAC.sys [613888 2014-10-09] (C-MEDIA ELECTRONICS INC. -> C-MEDIA)
R1 CTIIO; C:\WINDOWS\system32\drivers\CtiIo64.sys [29208 2022-08-01] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159760 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
R3 DroidCamVideo; C:\WINDOWS\System32\drivers\droidcamvideo.sys [33784 2020-10-04] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2021-09-11] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-02-09] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2022-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-21] (Intel Corporation -> Intel Corporation)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2023-08-04] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2023-08-04] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2023-08-04] (Logitech Inc -> Logitech)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 NTIOLib_CC_Clock; C:\Program Files (x86)\MSI\One Dragon Center\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\One Dragon Center\Lib\SYS\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_DPC; C:\Program Files (x86)\MSI\DPC Latency Tuner\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S4 NTIOLib_LiveUpdate; C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys [14288 2017-08-24] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MBAPI; C:\Program Files (x86)\MSI\Gaming APP\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MysticLight\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167432 2021-06-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
S3 tesrsdt; C:\WINDOWS\system32\drivers\tesrsdt.sys [442128 2019-10-16] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 TesSafe; C:\WINDOWS\system32\TesSafe.sys [555064 2019-11-16] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
R3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]
S3 WinRing0_1_2_0; \??\C:\Users\tucek\AppData\Local\Temp\Rar$EXa23484.49216\OpenHardwareMonitor\OpenHardwareMonitorLib.sys [X] <==== ATTENTION
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-24 19:28 - 2023-08-24 19:28 - 000000000 ____D C:\Users\tucek\AppData\Roaming\G HUB
2023-08-24 19:28 - 2023-08-24 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2023-08-24 19:28 - 2023-08-24 19:28 - 000000000 ____D C:\Program Files\LGHUB
2023-08-09 01:06 - 2023-08-09 01:06 - 000000000 ___HD C:\$WinREAgent
2023-08-09 00:29 - 2023-08-09 00:29 - 000000000 ____D C:\Users\tucek\AppData\Roaming\DaciaAutomotive
2023-08-09 00:29 - 2023-08-09 00:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DaciaAutomotive
2023-08-09 00:29 - 2023-08-09 00:29 - 000000000 ____D C:\Program Files (x86)\DaciaAutomotive
2023-08-06 00:39 - 2023-08-06 00:39 - 000000000 ____D C:\Users\tucek\AppData\LocalLow\Awesome Games Studio
2023-08-05 10:46 - 2023-08-05 10:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2023-08-04 23:08 - 2023-08-24 19:41 - 000000000 ____D C:\Users\tucek\AppData\Local\LGHUB
2023-08-04 23:08 - 2023-08-24 19:28 - 000000000 ____D C:\Users\tucek\AppData\Roaming\lghub
2023-08-04 23:08 - 2023-08-04 23:08 - 000073040 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2023-08-04 23:08 - 2023-08-04 23:08 - 000044880 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2023-08-04 23:08 - 2023-08-04 23:08 - 000032080 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys
2023-08-04 23:08 - 2023-08-04 23:08 - 000000000 ____D C:\ProgramData\Logishrd
2023-08-04 23:08 - 2023-08-04 23:08 - 000000000 ____D C:\ProgramData\LGHUB
2023-08-04 21:21 - 2023-08-04 21:21 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-24 20:12 - 2018-12-03 21:25 - 000000000 ____D C:\FRST
2023-08-24 20:12 - 2018-09-23 12:42 - 000000000 ____D C:\Users\tucek\AppData\Local\AVAST Software
2023-08-24 20:08 - 2023-07-22 10:13 - 000002678 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2023-08-24 20:08 - 2022-12-21 21:36 - 000003062 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2706176904-198997732-1839745789-1001
2023-08-24 20:08 - 2022-09-21 14:32 - 000003046 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-08-24 20:08 - 2022-09-21 14:32 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-08-24 20:08 - 2022-08-01 23:37 - 000002280 _____ C:\WINDOWS\system32\Tasks\MSIGH_Host
2023-08-24 20:08 - 2022-08-01 23:37 - 000002136 _____ C:\WINDOWS\system32\Tasks\MSILEDKeeper_Host
2023-08-24 20:08 - 2022-08-01 23:34 - 000002374 _____ C:\WINDOWS\system32\Tasks\MSI Task Host - Detect_Monitor
2023-08-24 20:08 - 2022-08-01 23:34 - 000002358 _____ C:\WINDOWS\system32\Tasks\MSI Task Host - DisplayID
2023-08-24 20:08 - 2022-08-01 23:34 - 000002280 _____ C:\WINDOWS\system32\Tasks\MSI Task Host - LEDKeeper2_Host
2023-08-24 20:08 - 2022-08-01 21:47 - 000002402 _____ C:\WINDOWS\system32\Tasks\MSI_Toast_Server
2023-08-24 20:08 - 2022-07-28 12:23 - 000003042 _____ C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2023-08-24 20:08 - 2022-07-28 12:17 - 000002970 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2023-08-24 20:08 - 2022-07-28 12:17 - 000002604 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2023-08-24 20:08 - 2021-11-12 19:54 - 000004304 _____ C:\WINDOWS\system32\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}
2023-08-24 20:08 - 2021-11-12 19:54 - 000002270 ____H C:\WINDOWS\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}.job
2023-08-24 20:08 - 2021-08-22 16:30 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - tucek
2023-08-24 20:08 - 2020-08-20 20:53 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-08-24 20:08 - 2020-08-20 20:53 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-08-24 20:08 - 2020-08-20 20:53 - 000003410 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-08-24 20:08 - 2020-08-20 20:53 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-08-24 20:08 - 2020-08-20 20:53 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-08-24 20:08 - 2020-08-20 20:53 - 000003186 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-08-24 20:08 - 2020-08-20 20:53 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2706176904-198997732-1839745789-1001
2023-08-24 20:08 - 2020-08-20 20:53 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-08-24 20:08 - 2020-08-20 20:53 - 000002702 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2023-08-24 20:08 - 2020-08-20 20:53 - 000002148 _____ C:\WINDOWS\system32\Tasks\MSISW_Host
2023-08-24 20:08 - 2018-01-25 17:11 - 000000000 ____D C:\Users\tucek\AppData\Roaming\Spotify
2023-08-24 19:56 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-08-24 19:42 - 2018-01-25 17:11 - 000000000 ____D C:\Users\tucek\AppData\Local\Spotify
2023-08-24 19:41 - 2021-12-16 01:16 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-08-24 19:41 - 2021-10-01 21:07 - 000000000 ____D C:\Users\tucek\AppData\Local\Discord
2023-08-24 19:41 - 2018-11-29 00:02 - 000000000 ____D C:\Users\tucek\AppData\Roaming\CAM
2023-08-24 19:41 - 2018-01-30 15:14 - 000000000 ___RD C:\Users\tucek\Disk Google
2023-08-24 19:41 - 2018-01-25 17:51 - 000000000 ____D C:\Users\tucek\AppData\Roaming\discord
2023-08-24 19:41 - 2018-01-25 17:25 - 000000000 ____D C:\Program Files\CCleaner
2023-08-24 19:41 - 2018-01-25 16:32 - 000000000 ____D C:\Program Files (x86)\Google
2023-08-24 19:41 - 2018-01-25 15:38 - 000000000 ____D C:\ProgramData\NVIDIA
2023-08-24 19:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-08-24 19:32 - 2020-08-20 21:36 - 000760666 _____ C:\WINDOWS\system32\perfh019.dat
2023-08-24 19:32 - 2020-08-20 21:36 - 000151374 _____ C:\WINDOWS\system32\perfc019.dat
2023-08-24 19:32 - 2020-08-20 20:55 - 002605486 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-08-24 19:32 - 2019-12-07 16:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2023-08-24 19:32 - 2019-12-07 16:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2023-08-24 19:32 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-08-24 19:27 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-08-24 19:27 - 2018-01-25 17:40 - 000000000 ____D C:\Users\tucek\AppData\Local\CrashDumps
2023-08-24 19:27 - 2018-01-25 15:35 - 000000000 ___SD C:\Users\tucek\AppData\Roaming\Microsoft\Credentials
2023-08-24 19:26 - 2020-08-20 20:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-08-24 19:26 - 2020-08-20 20:45 - 000008192 ___SH C:\DumpStack.log.tmp
2023-08-24 19:26 - 2018-01-25 17:25 - 000000000 ____D C:\ProgramData\AVAST Software
2023-08-22 21:45 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-08-22 21:29 - 2020-08-20 20:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-08-22 20:19 - 2022-10-27 16:12 - 000079464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2023-08-22 20:19 - 2022-10-27 16:12 - 000063072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2023-08-22 20:19 - 2021-11-19 00:15 - 000169576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2023-08-22 20:19 - 2020-09-28 23:04 - 002807400 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2023-08-22 20:19 - 2020-09-28 23:04 - 000493160 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2023-08-22 20:19 - 2020-09-28 23:04 - 000247400 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2023-08-22 20:19 - 2020-09-28 23:04 - 000202344 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2023-08-22 20:19 - 2020-09-28 23:04 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2023-08-22 20:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-08-22 19:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-08-22 19:36 - 2022-10-13 20:54 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-08-22 19:36 - 2020-06-10 22:02 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-08-22 19:35 - 2020-08-20 20:46 - 000002377 _____ C:\Users\tucek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-08-22 19:35 - 2018-12-31 13:05 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-08-14 20:46 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-08-13 10:55 - 2018-05-14 19:13 - 000000000 ____D C:\Users\tucek\AppData\Local\D3DSCache
2023-08-12 00:48 - 2018-01-30 15:54 - 000000000 ____D C:\Program Files\Microsoft Office
2023-08-12 00:30 - 2018-01-26 18:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-08-12 00:27 - 2021-02-01 21:13 - 000002017 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-08-12 00:25 - 2018-01-26 18:23 - 175983240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-08-09 02:06 - 2020-08-20 20:46 - 000440288 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-08-09 02:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
2023-08-09 01:12 - 2020-08-20 20:48 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-08-07 17:54 - 2018-01-30 15:57 - 000000000 ____D C:\Users\tucek\AppData\Roaming\Microsoft\Excel
2023-08-07 00:38 - 2022-02-08 18:07 - 000000000 ____D C:\Users\tucek\AppData\Roaming\Microsoft\Teams
2023-08-05 12:41 - 2018-04-15 15:53 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2023-08-05 10:46 - 2022-09-02 11:09 - 000000000 ____D C:\Users\tucek\AppData\Local\Logitech
2023-08-05 10:46 - 2022-09-02 11:00 - 000000000 ____D C:\Program Files\Logitech
2023-08-04 21:22 - 2020-08-20 20:53 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-08-04 21:21 - 2020-10-13 23:11 - 000272568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-08-04 21:21 - 2020-04-15 18:37 - 000559136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-08-04 21:21 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-08-04 21:21 - 2019-01-14 18:25 - 000392880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-08-04 21:21 - 2019-01-05 22:25 - 000297880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-08-04 21:21 - 2019-01-05 22:25 - 000095960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-08-04 21:21 - 2019-01-05 22:25 - 000031416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-08-04 21:21 - 2018-10-29 10:38 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000946048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000705376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000319512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000237984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000105240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-08-04 21:21 - 2018-09-29 11:02 - 000080416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-07-30 21:05 - 2020-08-20 20:46 - 000000000 ____D C:\Users\tucek
2023-07-30 00:03 - 2019-04-20 00:05 - 000000000 ____D C:\Users\tucek\AppData\Roaming\FiraxisLive
2023-07-30 00:03 - 2018-01-25 18:26 - 000000000 ____D C:\Users\tucek\OneDrive\Dokumenty\My Games
2023-07-30 00:02 - 2019-04-20 00:05 - 000000000 ____D C:\Users\tucek\AppData\Roaming\ModLauncherWPF
2023-07-29 23:00 - 2019-11-08 11:17 - 000000000 ____D C:\Users\tucek\AppData\Roaming\qBittorrent
==================== Files in the root of some directories ========
2018-02-17 19:05 - 2018-02-17 19:06 - 000000099 _____ () C:\Users\tucek\AppData\Roaming\LauncherSettings_live.cfg
2022-01-05 19:21 - 2022-01-05 19:21 - 000332800 _____ () C:\Users\tucek\AppData\Roaming\patcher.dll
2022-02-17 09:49 - 2022-02-17 09:49 - 000004990 _____ () C:\Users\tucek\AppData\Local\2405905061
2022-03-02 23:02 - 2022-03-02 23:02 - 000004990 _____ () C:\Users\tucek\AppData\Local\71739615
2020-03-29 14:50 - 2020-03-29 14:50 - 000003584 _____ () C:\Users\tucek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-11-10 11:15 - 2018-11-10 11:15 - 000010272 _____ () C:\Users\tucek\AppData\Local\recently-used.xbel
2018-01-25 20:14 - 2019-11-06 10:59 - 000007667 _____ () C:\Users\tucek\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
- Přílohy
-
- Addition.rar
- (29.4 KiB) Staženo 30 x
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Odpojování LAN portu
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\tucek\OneDrive\Plocha jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: H - "H:\Autorun.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {1b1019da-4990-11ed-8476-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {4aca7351-827b-11ec-844c-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {4ca43534-590e-11eb-8410-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {8a37cb78-7776-11ec-844b-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {da856389-dc43-11eb-8420-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {e7cb1fad-0833-11ee-84bc-309c2365f4f3} - "J:\DUB-E250_Win_Driver_Installer.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {feef4ed6-9312-11eb-8415-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
IFEO\lotrbfme.exe: [Debugger]
IFEO\lotrbfme2.exe: [Debugger]
IFEO\lotrbfme2ep1.exe: [Debugger]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {208DBBEB-5199-414D-B47F-ED165FC3378F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-25] (Google Inc -> Google Inc.)
Task: {196F800F-DDC1-488C-852C-949ADA88D263} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-25] (Google Inc -> Google Inc.)
Task: {A9CC8437-5D31-45EC-8F99-93C2548E2D35} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: C:\WINDOWS\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}.job => D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exeϋ/i C:\Users\tucek\AppData\Local\Temp\MTGAinstall\MTGAInstaller.msi AI_SETUPEXEPATH=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe SETUPEXEDIR=D:\Games\MTG\MTGA\MTGALauncher\Updates\ ADDLOCAL=MainFeature,MicrosoftVisualC ALLUSERS=1 PRIMARYFOLDER=APPDIR ROOTDRIVE=D:\ AI_PREREQFILES=C:\Users\tucek\AppData\Roaming\Wizards of the Coast\MTGA Launcher\prerequisites\Visual C++ Redistributable for Visual Studio 2015-2019\VC_redist.x64_14_29_30135.exe AI_PREREQDIRS=C:\Users\tucek\AppData\Roaming AI_MISSING_PREREQS=Visual C++ Redistributable for Visual Studio 2017 x64 AI_SETUPEXEPATH=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe SETUPEXEDIR=D:\Games\MTG\MTGA\MTGALauncher\Updates\ AI_INSTALL=1 BIPROCESSTIME=2021-11-12T17:53:55.8677930Z TARGETLOCKED=TRUE TARGETDIR=D:\ APPDIR=D:\Games\MTG\MTGA\ AI_SETUPEXEPATH_ORIGINAL=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe <==== ATTENTION
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
S3 WinRing0_1_2_0; \??\C:\Users\tucek\AppData\Local\Temp\Rar$EXa23484.49216\OpenHardwareMonitor\OpenHardwareMonitorLib.sys [X] <==== ATTENTION
C:\WINDOWS\system32\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}
C:\Users\tucek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Odpojování LAN portu
Fix result of Farbar Recovery Scan Tool (x64) Version: 23-08-2023
Ran by tucek (25-08-2023 09:50:07) Run:2
Running from C:\Users\tucek\OneDrive\Plocha
Loaded Profiles: tucek
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: H - "H:\Autorun.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {1b1019da-4990-11ed-8476-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {4aca7351-827b-11ec-844c-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {4ca43534-590e-11eb-8410-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {8a37cb78-7776-11ec-844b-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {da856389-dc43-11eb-8420-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {e7cb1fad-0833-11ee-84bc-309c2365f4f3} - "J:\DUB-E250_Win_Driver_Installer.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {feef4ed6-9312-11eb-8415-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
IFEO\lotrbfme.exe: [Debugger]
IFEO\lotrbfme2.exe: [Debugger]
IFEO\lotrbfme2ep1.exe: [Debugger]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {208DBBEB-5199-414D-B47F-ED165FC3378F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-25] (Google Inc -> Google Inc.)
Task: {196F800F-DDC1-488C-852C-949ADA88D263} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-25] (Google Inc -> Google Inc.)
Task: {A9CC8437-5D31-45EC-8F99-93C2548E2D35} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: C:\WINDOWS\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}.job => D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exeϋ/i C:\Users\tucek\AppData\Local\Temp\MTGAinstall\MTGAInstaller.msi AI_SETUPEXEPATH=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe SETUPEXEDIR=D:\Games\MTG\MTGA\MTGALauncher\Updates\ ADDLOCAL=MainFeature,MicrosoftVisualC ALLUSERS=1 PRIMARYFOLDER=APPDIR ROOTDRIVE=D:\ AI_PREREQFILES=C:\Users\tucek\AppData\Roaming\Wizards of the Coast\MTGA Launcher\prerequisites\Visual C++ Redistributable for Visual Studio 2015-2019\VC_redist.x64_14_29_30135.exe AI_PREREQDIRS=C:\Users\tucek\AppData\Roaming AI_MISSING_PREREQS=Visual C++ Redistributable for Visual Studio 2017 x64 AI_SETUPEXEPATH=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe SETUPEXEDIR=D:\Games\MTG\MTGA\MTGALauncher\Updates\ AI_INSTALL=1 BIPROCESSTIME=2021-11-12T17:53:55.8677930Z TARGETLOCKED=TRUE TARGETDIR=D:\ APPDIR=D:\Games\MTG\MTGA\ AI_SETUPEXEPATH_ORIGINAL=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe <==== ATTENTION
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
S3 WinRing0_1_2_0; \??\C:\Users\tucek\AppData\Local\Temp\Rar$EXa23484.49216\OpenHardwareMonitor\OpenHardwareMonitorLib.sys [X] <==== ATTENTION
C:\WINDOWS\system32\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}
C:\Users\tucek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\H => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1b1019da-4990-11ed-8476-309c2365f4f3} => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4aca7351-827b-11ec-844c-309c2365f4f3} => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4ca43534-590e-11eb-8410-309c2365f4f3} => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8a37cb78-7776-11ec-844b-309c2365f4f3} => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{da856389-dc43-11eb-8420-309c2365f4f3} => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e7cb1fad-0833-11ee-84bc-309c2365f4f3} => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{feef4ed6-9312-11eb-8415-309c2365f4f3} => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\lotrbfme.exe => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\lotrbfme2.exe => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\lotrbfme2ep1.exe => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{208DBBEB-5199-414D-B47F-ED165FC3378F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{208DBBEB-5199-414D-B47F-ED165FC3378F}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{196F800F-DDC1-488C-852C-949ADA88D263}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{196F800F-DDC1-488C-852C-949ADA88D263}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A9CC8437-5D31-45EC-8F99-93C2548E2D35}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A9CC8437-5D31-45EC-8F99-93C2548E2D35}" => removed successfully
C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" => removed successfully
C:\WINDOWS\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}.job => moved successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
HKLM\System\CurrentControlSet\Services\WinRing0_1_2_0 => removed successfully
WinRing0_1_2_0 => service removed successfully
C:\WINDOWS\system32\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A} => moved successfully
C:\Users\tucek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 86501027 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 792823685 B
Windows/system/drivers => 105762788 B
Edge => 13850 B
Chrome => 1028113482 B
Firefox => 6393254 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 289434 B
LocalService => 580886 B
NetworkService => 580886 B
tucek => 92957549 B
RecycleBin => 3794055257 B
EmptyTemp: => 5.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 09:50:45 ====
Ran by tucek (25-08-2023 09:50:07) Run:2
Running from C:\Users\tucek\OneDrive\Plocha
Loaded Profiles: tucek
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: H - "H:\Autorun.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {1b1019da-4990-11ed-8476-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {4aca7351-827b-11ec-844c-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {4ca43534-590e-11eb-8410-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {8a37cb78-7776-11ec-844b-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {da856389-dc43-11eb-8420-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {e7cb1fad-0833-11ee-84bc-309c2365f4f3} - "J:\DUB-E250_Win_Driver_Installer.exe"
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\...\MountPoints2: {feef4ed6-9312-11eb-8415-309c2365f4f3} - "J:\HiSuiteDownLoader.exe"
IFEO\lotrbfme.exe: [Debugger]
IFEO\lotrbfme2.exe: [Debugger]
IFEO\lotrbfme2ep1.exe: [Debugger]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {208DBBEB-5199-414D-B47F-ED165FC3378F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-25] (Google Inc -> Google Inc.)
Task: {196F800F-DDC1-488C-852C-949ADA88D263} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-01-25] (Google Inc -> Google Inc.)
Task: {A9CC8437-5D31-45EC-8F99-93C2548E2D35} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: C:\WINDOWS\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}.job => D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exeϋ/i C:\Users\tucek\AppData\Local\Temp\MTGAinstall\MTGAInstaller.msi AI_SETUPEXEPATH=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe SETUPEXEDIR=D:\Games\MTG\MTGA\MTGALauncher\Updates\ ADDLOCAL=MainFeature,MicrosoftVisualC ALLUSERS=1 PRIMARYFOLDER=APPDIR ROOTDRIVE=D:\ AI_PREREQFILES=C:\Users\tucek\AppData\Roaming\Wizards of the Coast\MTGA Launcher\prerequisites\Visual C++ Redistributable for Visual Studio 2015-2019\VC_redist.x64_14_29_30135.exe AI_PREREQDIRS=C:\Users\tucek\AppData\Roaming AI_MISSING_PREREQS=Visual C++ Redistributable for Visual Studio 2017 x64 AI_SETUPEXEPATH=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe SETUPEXEDIR=D:\Games\MTG\MTGA\MTGALauncher\Updates\ AI_INSTALL=1 BIPROCESSTIME=2021-11-12T17:53:55.8677930Z TARGETLOCKED=TRUE TARGETDIR=D:\ APPDIR=D:\Games\MTG\MTGA\ AI_SETUPEXEPATH_ORIGINAL=D:\Games\MTG\MTGA\MTGALauncher\Updates\MTGAInstaller_1.0.95.809059.exe <==== ATTENTION
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
S3 WinRing0_1_2_0; \??\C:\Users\tucek\AppData\Local\Temp\Rar$EXa23484.49216\OpenHardwareMonitor\OpenHardwareMonitorLib.sys [X] <==== ATTENTION
C:\WINDOWS\system32\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}
C:\Users\tucek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\H => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1b1019da-4990-11ed-8476-309c2365f4f3} => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4aca7351-827b-11ec-844c-309c2365f4f3} => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4ca43534-590e-11eb-8410-309c2365f4f3} => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8a37cb78-7776-11ec-844b-309c2365f4f3} => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{da856389-dc43-11eb-8420-309c2365f4f3} => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e7cb1fad-0833-11ee-84bc-309c2365f4f3} => removed successfully
HKU\S-1-5-21-2706176904-198997732-1839745789-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{feef4ed6-9312-11eb-8415-309c2365f4f3} => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\lotrbfme.exe => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\lotrbfme2.exe => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\lotrbfme2ep1.exe => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{208DBBEB-5199-414D-B47F-ED165FC3378F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{208DBBEB-5199-414D-B47F-ED165FC3378F}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{196F800F-DDC1-488C-852C-949ADA88D263}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{196F800F-DDC1-488C-852C-949ADA88D263}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A9CC8437-5D31-45EC-8F99-93C2548E2D35}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A9CC8437-5D31-45EC-8F99-93C2548E2D35}" => removed successfully
C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" => removed successfully
C:\WINDOWS\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A}.job => moved successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
HKLM\System\CurrentControlSet\Services\WinRing0_1_2_0 => removed successfully
WinRing0_1_2_0 => service removed successfully
C:\WINDOWS\system32\Tasks\{5E9C47D5-C2A3-4B5B-9646-23F9F5362F1A} => moved successfully
C:\Users\tucek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 86501027 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 792823685 B
Windows/system/drivers => 105762788 B
Edge => 13850 B
Chrome => 1028113482 B
Firefox => 6393254 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 289434 B
LocalService => 580886 B
NetworkService => 580886 B
tucek => 92957549 B
RecycleBin => 3794055257 B
EmptyTemp: => 5.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 09:50:45 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Odpojování LAN portu
Smazáno. Změnilo se něco k lepšímu?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Odpojování LAN portu
Budu seledovat během pár dnů a uvidíme. Zatím moc děkuji 
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Odpojování LAN portu
OK, zatím není zač a nechám to tu otevřené.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Odpojování LAN portu
Zdravím,
vypadá to, že to pomohlo Moc děkuji za pomoc
vypadá to, že to pomohlo
Moc děkuji za pomoc -
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Odpojování LAN portu
To jsem rád. Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?