Pomalé PC

Zpráva

sobtik · #1 Příspěvek od **sobtik** » 19 srp 2023 12:52

Dobrý den,
PC je strašně pomalé a když najede tak cca 10 min jede v pohodě a potom se sekne a vyskočí modrá obrazovka že došlo k chybě a restartuje se. Po restartu mi napíše (Reboot and Select proper Boot device or Insert Boot Media in selected Boot device and press a key) po několika restartech PC se rozjede normálně a zase chvilku jede bez problému.

Děkuji za pomoc.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 07-05-2023 01 (ATTENTION: ====> FRST version is 104 days old and could be outdated)
Ran by Lukáš (administrator) on LUKÁŠ (MSI MS-7971) (19-08-2023 13:41:45)
Running from C:\Users\Lukáš\Desktop\FRST64.exe
Loaded Profiles: Lukáš
Platform: Microsoft Windows 10 Pro Version 22H2 19045.3324 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <3>
(C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe ->) (Avast Software s.r.o. -> Software Security System) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Ekag20nt.exe
(C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe ->) (Avast Software s.r.o. -> The CefSharp Authors) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe <3>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\BreachGuard\bgui.exe <3>
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe <3>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AntiTrackSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\BreachGuard\bgsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdig.inf_amd64_04ffae6d80cb7adc\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe
(svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102808 2021-09-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [256408 2023-07-31] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Avast BreachGuard] => C:\Program Files\Avast Software\BreachGuard\bgui.exe [7778200 2023-08-18] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4543384 2023-07-26] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476960 2022-09-27] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => D:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3500056 2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\Run: [EPSON Stylus DX4400] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE [211456 2007-03-01] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [4374376 2023-07-28] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41584544 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\Policies\Explorer: []
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\EPSON Stylus DX4400 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMCAE.DLL [108032 2007-12-07] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\115.0.5790.173\Installer\chrmstp.exe [2023-08-18] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\115.0.21984.171\Installer\chrmstp.exe [2023-08-10] (Avast Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2023-08-02]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0C8095F5-F09A-4C8C-936A-D8F78008CB3A} - System32\Tasks\GoogleUpdateTaskMachineUA{D5585994-8415-4F0F-9A8D-D7E32A43FE76} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-05] (Google LLC -> Google LLC)
Task: {1858738A-B5F5-4058-8727-6B47E92E8ACB} - System32\Tasks\GoogleUpdateTaskMachineCore{9A7EBA52-87A3-4C08-BC53-C8AB6316FCF1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-05] (Google LLC -> Google LLC)
Task: {1A66F5DA-960C-4516-A1F2-3A297C53D463} - System32\Tasks\CCleanerSkipUAC - Lukáš => C:\Program Files\CCleaner\CCleaner.exe [34687904 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {1B2B546E-A55D-4B1B-BA20-F45B86C65024} - System32\Tasks\Avast Software\AvastAntiTrackPremiumStart => C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe [813008 2023-01-05] (Avast Software s.r.o. -> AVAST Software)
Task: {217710EB-B043-4F72-A3CA-79F64F1487A5} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [7092120 2023-07-18] (Avast Software s.r.o. -> Avast Software)
Task: {347A4F69-9EB6-441A-A761-020078F4EF5F} - System32\Tasks\Reg Organizer => C:\Program Files\Reg Organizer\RegOrganizer.exe [34802744 2022-12-29] (Konstantin Polyakov -> Chemtable Software)
Task: {38A7DD0C-8BF4-457E-9A1A-76627028878A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {47AB2147-215E-4C42-A407-7E8A32B6D077} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4758936 2023-07-26] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\Avast Software\Cleanup\log" --guid 43fd24af-1866-4e0d-afc5-b9e827d5d1c2
Task: {500C566D-2F9D-411B-85DC-979667305B33} - System32\Tasks\Avast Software\Avast BreachGuard Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-bg\icarus.exe [7212952 2023-08-17] (Avast Software s.r.o. -> Avast Software)
Task: {561ED484-5FC5-4451-8C63-B9E10BA67E8C} - System32\Tasks\Avast Software\Avast BreachGuard Crash Reporter => C:\Program Files\Avast Software\BreachGuard\AvBugReport.exe [4758424 2023-08-18] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 135 --path "C:\ProgramData\Avast Software\BreachGuard\log" --logpath "C:\ProgramData\Avast Software\BreachGuard\log" --configpath "C:\Program Files\Avast Software\BreachGuard\Setup" --programpath "C:\Program Files\Avast Software\BreachGuard" --guid 02b20a95-228f-41e3-b7d4-62663a0ddba4
Task: {5F4B65A8-1904-4621-B2D3-77CB29BF0CE7} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4759448 2023-08-01] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\Avast Software\SecureLine VPN\log" --guid 0f5ed310-8b57-43f7-8fc2-40168aa12fe3
Task: {62E042C2-20C9-4A4E-9156-B03B7A8A3174} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {6979F60E-62CE-4A37-83CB-8DF0EF578E5D} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [609696 2023-08-18] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {81F6E20A-B1FA-4413-90DD-E34E3F4EDAB4} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-01-06] (Avast Software s.r.o. -> AVAST Software)
Task: {841AE254-93E4-47FE-BEEE-B757924AF70D} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-01-06] (Avast Software s.r.o. -> AVAST Software)
Task: {8AF66EA6-E914-4F57-BB3C-6BBA946CB615} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7212952 2023-07-18] (Avast Software s.r.o. -> Avast Software)
Task: {8C99C1EF-02DA-4E67-B06E-94F29A118CDE} - System32\Tasks\DelayedItemsByChemtableSoftware\TuneupUI.exe => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4543384 2023-07-26] (Avast Software s.r.o. -> AVAST Software)
Task: {97733774-C4B0-4EE3-8C43-97763317A7BC} - System32\Tasks\DelayedItemsByChemtableSoftware\AdobeAAMUpdater-1.0 => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {9FFC3C52-649A-47C1-948E-00B66CC7AF94} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4944792 2023-07-31] (Avast Software s.r.o. -> AVAST Software)
Task: {A17BDF3E-BDFE-4925-BA4A-ACB039518767} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(1): %windir%\system32\compattelrunner.exe -> -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc
Task: {A17BDF3E-BDFE-4925-BA4A-ACB039518767} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(2): %windir%\system32\compattelrunner.exe -> -m:appraiser.dll -f:DoScheduledTelemetryRun
Task: {A17BDF3E-BDFE-4925-BA4A-ACB039518767} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(3): %windir%\system32\compattelrunner.exe -> -m:aemarebackup.dll -f:BackupMareData
Task: {B744C9A7-8EC6-48E9-8008-C6E8A8373023} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software)
Task: {BC8C74C7-A657-4482-B5E1-B661E6DBE724} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476960 2022-09-27] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {BE107D24-6FF6-4A83-AFFB-163A47B945C2} - System32\Tasks\DelayedItemsByChemtableSoftware\CCleaner Smart Cleaning => C:\Program Files\CCleaner\CCleaner64.exe [41584544 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {C48CE9A1-4C9A-429A-AF48-749D911A9BBA} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3355424 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
Task: {CC3DAA0C-8AC0-43BC-ACEF-C3B5D329F1D1} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1294232 2023-08-01] (Avast Software s.r.o. -> AVAST Software)
Task: {CEA74434-58FB-499A-A755-482743885D50} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {ED8B7D5C-B53A-4956-B265-604920E08206} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3355424 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
Task: {FED111C5-7334-4DCE-A10E-886CB4AF2CE3} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "d9f0b945-76cc-4851-be73-2f55f7b93847" --version "6.15.10623" --silent

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2bede604-00e3-4178-8657-ace3cc770b0c}: [NameServer] 100.120.242.1
Tcpip\..\Interfaces\{41766173-7453-6f66-7477-617265415357}: [NameServer] 100.126.0.1
Tcpip\..\Interfaces\{ff03a4b9-45ff-4be3-bc33-57f7fcef37e5}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Lukáš\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-01]
Edge Extension: (Avast Online Security & Privacy) - C:\Users\Lukáš\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdgpikaaheckgdijjmepmdjjkbceakif [2023-01-05]

FireFox:
========
FF DefaultProfile: m6u31hwo.default
FF ProfilePath: C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\m6u31hwo.default [2023-05-08]
FF ProfilePath: C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\3ncbf8jp.default-release [2023-08-19]
FF Homepage: Mozilla\Firefox\Profiles\3ncbf8jp.default-release -> www.centrum.cz
FF Extension: (Avast SecureLine VPN) - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\3ncbf8jp.default-release\Extensions\secureline-vpn@avast.com.xpi [2023-03-19]
FF Extension: (Avast Online Security & Privacy) - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\3ncbf8jp.default-release\Extensions\wrc@avast.com.xpi [2023-03-18]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2017-11-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2023-01-06] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2023-01-06] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default [2023-08-09]
CHR Extension: (Adobe Acrobat: nástroje pro úpravu, převod a podpis souborů PDF) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-07-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-24]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2023-01-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-01-05]
CHR Extension: (Avast SecureLine VPN) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\phmegojolgpbbcnhccbfneddlooepbpd [2023-03-19]
CHR Extension: (Avast AntiTrack Premium) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdidpcihajhihmghhhkfnpklgdehold [2023-01-05]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2017-11-01]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-05-2023 01
Ran by Lukáš (19-08-2023 13:39:33)
Running from C:\Users\Lukáš\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.3324 (X64) (2023-01-05 14:44:16)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1425878809-3904051324-2884316882-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1425878809-3904051324-2884316882-503 - Limited - Disabled)
Guest (S-1-5-21-1425878809-3904051324-2884316882-501 - Limited - Disabled)
Lukáš (S-1-5-21-1425878809-3904051324-2884316882-1001 - Administrator - Enabled) => C:\Users\Lukáš
WDAGUtilityAccount (S-1-5-21-1425878809-3904051324-2884316882-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
7-Zip 23.01 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2301-000001000000}) (Version: 23.01.00.0 - Igor Pavlov)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.23 - Adobe Systems)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.1.0.3 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601047}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
AnyMP4 Video Converter Ultimate 8.5.20 (HKLM-x32\...\{B77ACAAE-53EE-43c3-86F1-4AEA52F6CDD5}_is1) (Version: 8.5.20 - AnyMP4 Studio)
Avast AntiTrack Premium (HKLM-x32\...\AvastAntiTrackPremium) (Version: 3.3.983.1074 - Avast Software)
Avast BreachGuard (HKLM\...\AvastBreachGuard) (Version: 23.3.2136.7846 - Avast Software)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.2.13795.13400 - Avast Software)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 23.7.6074 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 115.0.21984.171 - Autoři prohlížeče Avast Secure Browser)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 5.26.8502.8974 - Avast Software)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.15 - Piriform)
CrystalDiskInfo 8.17.12 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.17.12 - Crystal Dew World)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
EPSON Printer Software (HKLM\...\EPSON Printer and Utilities) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
Forza Horizon 5 (HKLM-x32\...\Forza Horizon 5_is1) (Version: 0.0.0 - DODI-Repacks)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 115.0.5790.173 - Google LLC)
IObit Driver Booster 7.3.0.665 (HKLM-x32\...\IObit Driver Booster_is1) (Version: 7.3.0.665 - lrepacks.ru)
Kontrola stavu osobního počítače s Windows (HKLM\...\{95548B78-8547-4E91-B0DA-1CBB82150917}) (Version: 3.7.2204.15001 - Microsoft Corporation)
Malwarebytes version 4.5.32.271 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.32.271 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 115.0.1901.203 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 115.0.1901.203 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\OneDriveSetup.exe) (Version: 23.153.0724.0003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.31.31103 (HKLM-x32\...\{2aaf1df0-eb13-4099-9992-962bb4e596d1}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.31.31103 (HKLM\...\{A977984B-9244-49E3-BD24-43F0A8009667}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.31.31103 (HKLM\...\{A181A302-3F6D-4BAD-97A8-A426A6499D78}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox (x86 cs) (HKLM-x32\...\Mozilla Firefox 116.0.3 (x86 cs)) (Version: 116.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 108.0.2 - Mozilla)
NVIDIA Ovladače grafiky 512.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 512.15 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9235.1 - Realtek Semiconductor Corp.)
Reg Organizer verze 9.10 (HKLM\...\Reg Organizer_is1) (Version: 9.10 - ChemTable Software)
Sniper Ghost Warrior 3 Season Pass Edition (HKLM-x32\...\Sniper Ghost Warrior 3 Season Pass Edition_is1) (Version: - )
Sons Of The Forest (HKLM-x32\...\Sons Of The Forest_is1) (Version: 0.0.0 - DODI-Repacks)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 11.00 - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{8F2D6CEB-BC98-4B69-A5C1-78BED238FE77}) (Version: 2.71.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
WinRAR 6.22 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.22.0 - win.rar GmbH)

Packages:
=========
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-14] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2023-01-05] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2023-01-05] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-03-09] (NVIDIA Corp.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.8040.0_x64__8wekyb3d8bbwe [2023-08-14] (Microsoft Studios) [MS Ad]
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.851.1712.0_x64__8wekyb3d8bbwe [2023-06-08] (Microsoft Corporation)
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.882.2207.0_x64__8wekyb3d8bbwe [2023-06-27] (Microsoft Corporation)
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.934.1904.0_x64__8wekyb3d8bbwe [2023-08-02] (Microsoft Corporation)
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.934.1904.0_x86__8wekyb3d8bbwe [2023-08-02] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1425878809-3904051324-2884316882-1001_Classes\CLSID\{D5C4136A-93E5-4678-A6F8-0B2D9BB10999}\localserver32 -> C:\WINDOWS\System32\RunDll32.exe "C:\Program Files\Reg Organizer\Notifications.dll",Activate -ToastActivated => No File
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-31] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-31] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-31] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-31] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-05-08] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_04ffae6d80cb7adc\nvshext.dll [2023-06-20] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-31] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-05-08] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2012-09-23 21:44 - 2012-09-23 21:44 - 000010240 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\cs_cz\Acrobat Elements\ContextMenuShim64.cze
2023-06-20 13:00 - 2023-06-20 13:00 - 000101376 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2023-01-05 20:31 - 2023-01-05 20:31 - 000180224 _____ (Software Security System) [File not signed] C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Ekc3220.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKLM\...\.scr: => <==== ATTENTION

==================== Internet Explorer (Whitelisted) ==========

BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-07-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-07-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-07-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-07-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-07-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-07-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-03-18 23:03 - 2023-07-31 17:30 - 000000189 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 license.piriform.com
127.0.0.1 www.license.piriform.com
127.0.0.1 ccleaner.piriform.com
127.0.0.1 www.ccleaner.piriform.com
127.0.0.1 license-api.ccleaner.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "TuneupUI.exe"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "GrooveMonitor"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App"
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{C76BCD50-DE55-4ED1-87BB-5F67CA68A7C1}C:\users\lukáš\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lukáš\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{13C322B3-C00B-48E3-B5EF-312A7F9711DD}C:\users\lukáš\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lukáš\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{28C8275D-E1BA-4F7F-8BB2-1FFF37D7ED77}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3CCB8135-4898-42A1-9981-C3A77C8F1E4D}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4CF666F7-6338-400B-8203-3446B064DD5E}] => (Allow) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe (Avast Software s.r.o. -> The CefSharp Authors)
FirewallRules: [{185B47D7-3ACC-4D09-B587-A795C136465A}] => (Allow) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe (Avast Software s.r.o. -> The CefSharp Authors)
FirewallRules: [{A2F98793-92F9-4DC3-8F1E-96443EE709B3}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1B97F967-6419-47FB-B002-4165422BB96B}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{77D9199A-52C6-4184-BED2-C95F416886FB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D9B50D3A-4969-4275-BA48-C3DFE6D24E1E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C0D139BB-5B25-4638-8D24-A635BD35AC43}] => (Allow) C:\Program Files\Avast Software\BreachGuard\bgui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{EDDE7316-3BF0-460B-884A-993928051E67}] => (Allow) C:\Program Files\Avast Software\BreachGuard\bgui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{EBF6AE35-70F6-4CFD-8925-E44A918EBB14}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6C0785C0-53CD-43AD-A201-83080BFCCC6F}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9FA2D93C-E36F-46B2-BD8A-1F3BA51CCDDB}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{BCEB3DA2-1C39-4292-A266-76036B80C724}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D925BA30-5CA6-4EEB-9952-CAA5543873E2}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6F264E5D-286A-472E-B7E2-6ED7D9A9AD8C}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{01CB345A-A4BA-414E-8E63-2FDAF98A7087}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe () [File not signed]
FirewallRules: [{4532C924-6A58-4E86-9B3E-3EB5BC69B0C6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe () [File not signed]
FirewallRules: [{6701FBAB-CA2F-4F42-B1CA-816F171A512C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{2D12B504-A378-40B1-9CDC-1BAB2B5414D5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{CDF42127-1809-466D-8EAF-F0C309B3B2E3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{386A25BC-6E76-40B4-9D69-26939803CD51}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{895D6DC2-B8BC-4638-9CC6-8A2C9E940326}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{B0A6853A-D02F-4EA3-B65D-03C876E9CBE8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{37411446-438C-4AB1-A7A3-7B8C020EA92E}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0B185F59-77FB-4C03-BEB9-5D9D2C440526}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.203\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D6A31A9E-E414-4647-9091-43D4138E37BC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.101.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> )
FirewallRules: [{64236FF1-0438-4894-B460-A13E3BC9AD1E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.101.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> )
FirewallRules: [{DA007547-3267-4A9F-BFF1-073D1C6971BB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.101.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> )
FirewallRules: [{1AAE4D26-EC7D-4905-8141-93D0396C78C8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.101.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> )
FirewallRules: [{F01B9B50-C44C-484D-8787-187607E962DA}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

31-07-2023 20:10:11 Naplánovaný kontrolní bod
09-08-2023 17:56:55 Instalační služba modulů systému Windows
09-08-2023 17:57:37 Instalační služba modulů systému Windows
09-08-2023 17:58:01 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (08/19/2023 01:23:02 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4480,R,98) SRUJet: Při otevírání souboru protokolu C:\WINDOWS\system32\SRU\SRU00075.log došlo k chybě -1811 (0xfffff8ed).

Error: (08/19/2023 01:08:05 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1052,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (08/19/2023 12:59:42 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4364,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (08/19/2023 12:51:42 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8188,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (08/19/2023 12:28:04 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (13292,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (08/19/2023 12:18:05 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2524,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (08/19/2023 12:10:26 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (13120,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (08/19/2023 12:01:59 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5088,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

System errors:
=============
Error: (08/19/2023 01:22:18 PM) (Source: volmgr) (EventID: 161) (User: )
Description: Soubor s výpisem paměti se nepodařilo vytvořit kvůli chybě při vytváření výpisu paměti.

Error: (08/19/2023 01:22:36 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (13:01:33, ‎19.‎08.‎2023) bylo neočekávané.

Error: (08/18/2023 06:55:59 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Avast AntiTrack Service se po přijetí pokynu pro vypnutí neukončila správně.

Error: (08/18/2023 04:52:14 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{FF03A4B9-45FF-4BE3-BC33-57F7FCEF37E5}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (08/18/2023 04:52:14 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{FF03A4B9-45FF-4BE3-BC33-57F7FCEF37E5}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (08/18/2023 04:52:14 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{FF03A4B9-45FF-4BE3-BC33-57F7FCEF37E5}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (08/18/2023 04:52:14 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{FF03A4B9-45FF-4BE3-BC33-57F7FCEF37E5}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (08/18/2023 04:51:47 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby BFE bylo dosaženo časového limitu (30000 ms).

CodeIntegrity:
===============
Date: 2023-08-19 13:29:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. C.70 05/23/2016
Motherboard: MSI B150 PC MATE (MS-7971)
Processor: Intel(R) Core(TM) i5-6500 CPU @ 3.20GHz
Percentage of memory in use: 12%
Total physical RAM: 32731.06 MB
Available physical RAM: 28515.56 MB
Total Virtual: 37595.06 MB
Available Virtual: 31985.07 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:237.41 GB) (Free:145.36 GB) (Model: Verbatim Vi550 S3) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:330.74 GB) (Model: WDC WD10EZEX-21WN4A0) NTFS
Drive e: (My Book) (Fixed) (Total:465.75 GB) (Free:82.6 GB) (Model: WD 5000AAV External USB Device) NTFS

\\?\Volume{2392a49f-b109-4bd7-a2d3-52756bdc2ece}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.43 GB) NTFS
\\?\Volume{8723206d-85a5-4557-89d6-e8af482c7f1d}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS
\\?\Volume{44670832-eab2-4c81-8082-4b18868d3447}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 238.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 475DDCC4)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Size: 465.8 GB) (Disk ID: 6FE8B7D9)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

#2 Příspěvek od **Rudy** » 19 srp 2023 15:08

Zdravím"
Stáhněte nový RSIT (ten, z něhož jste dal log je již po expiraci) a dejte nové logy.

sobtik · #3 Příspěvek od **sobtik** » 19 srp 2023 19:15

Logfile of random's system information tool 1.10 (written by random/random)
Run by Lukáš at 2023-08-19 20:07:06
Microsoft Windows 10 Pro
System drive C: has 149 GB (61%) free of 243 GB
Total RAM: 32731 MB (87% free)

HijackThis download failed

======Listing Processes======

C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-4c07bbad-f3a8-4f80-b6e8-a493430e5bbe -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-8f756074-92fe-4cf8-a58b-5f02e0521655 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-27c374fb-296f-4b77-9109-82216087818e -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-838a65a0-3bad-44b0-846a-f35a32a83c8e -LifetimeId:d89ca6bb-4e64-401f-bf7b-e3e262bf4911 -DeviceGroupId:WpdFsGroup -HostArg:0
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_04ffae6d80cb7adc\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_04ffae6d80cb7adc\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS

C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s fdPHost

C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s FDResPub
"C:\Program Files\Avast Software\Avast\aswToolsSvc.exe" /runassvc
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
"C:\Program Files\Avast Software\Avast\aswEngSrv.exe" /pipename="A4A639CE-E4A3-CE2F-327A-31204985AA10" /binpath="C:\Program Files\Avast Software\Avast" /logpath="C:\ProgramData\Avast Software\Avast\log"

C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
"C:\Program Files\Avast Software\Avast\afwServ.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Avast Software\BreachGuard\bgsvc.exe"
"C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
"C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AntiTrackSvc.exe"
"C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe"
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
"C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
dashost.exe {265d5691-5b5f-4899-9c707e17fa9d7514}
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc

C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
"C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_04ffae6d80cb7adc\Display.NvContainer\NVDisplay.Container.exe" -f %ProgramData%\NVIDIA\DisplaySessionContainer%d.log -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_04ffae6d80cb7adc\Display.NvContainer\plugins\Session -r -l 3 -p 30000 -cfg NVDisplay.ContainerLocalSystem\Session -c
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s NcdAutoSetup
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe USER
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
"C:\Program Files\Avast Software\SecureLine VPN\WireGuard\wireguardtun.exe" connect -endpoint_ip 185.246.210.178 -endpoint_port 41194 -endpoint_pub_key 4VaAbUqz70j7fleQchS+TPXxZhOIuu6luSznnflF4xM= -allowed_ips "0.0.0.0/0, ::/0" -keepalive 90 -iface_priv_key "C:\ProgramData\Avast Software\SecureLine VPN\SecureLine\auth.wireguard" -iface_addr 100.126.10.180/32 -adapter_name "Avast SecureLine VPN WireGuard" -adapter_desc "Avast SecureLine WireGuard Adapter" -dns 100.126.0.1 -shutdown_event "Global\AvastVpnShutdownEvent"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"ctfmon.exe"
"C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe" -ServerName:CortanaUI.AppX8z9r6jm96hw4bsbneegw0kyxx296wr9t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
AvastUI.exe /nogui
"C:\Program Files\Avast Software\BreachGuard\bgui.exe" /nogui
"C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe" /nogui
"C:\Program Files\Avast Software\BreachGuard\bgui.exe" --type=gpu-process --field-trial-handle=2308,12493873336874817208,2113367092764958111,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\Lukáš\AppData\Local\Avast Software\BreachGuard\CEF_ui\log\bg_cef.log" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\Users\Lukáš\AppData\Local\Avast Software\BreachGuard\CEF_ui\log\bg_cef.log" --mojo-platform-channel-handle=2320 /prefetch:2
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.23062.153.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe" -ComServer:Background -Embedding
"C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe" --type=gpu-process --field-trial-handle=7568,2004832206070320264,4757102375032281414,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\ProgramData\Avast Software\SecureLine VPN\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium (22.0)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\ProgramData\Avast Software\SecureLine VPN\log\cef_log.txt" --mojo-platform-channel-handle=7592 /prefetch:2
"C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=7568,2004832206070320264,4757102375032281414,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=en-US --service-sandbox-type=utility --no-sandbox --force-wave-audio --log-file="C:\ProgramData\Avast Software\SecureLine VPN\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium (22.0)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\ProgramData\Avast Software\SecureLine VPN\log\cef_log.txt" --mojo-platform-channel-handle=9676 /prefetch:8
"C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=7568,2004832206070320264,4757102375032281414,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=en-US --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\ProgramData\Avast Software\SecureLine VPN\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium (22.0)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\ProgramData\Avast Software\SecureLine VPN\log\cef_log.txt" --mojo-platform-channel-handle=9684 /prefetch:8
"C:\Program Files\Avast Software\BreachGuard\bgui.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2308,12493873336874817208,2113367092764958111,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=en-US --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\Users\Lukáš\AppData\Local\Avast Software\BreachGuard\CEF_ui\log\bg_cef.log" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Lukáš\AppData\Local\Avast Software\BreachGuard\CEF_ui\log\bg_cef.log" --mojo-platform-channel-handle=2288 /prefetch:8
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe" -minimizedBoot
"C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe" --type=gpu-process --field-trial-handle=3388,2732900490550028794,9769022421422335556,131072 --enable-features=CastMediaRouteProvider --no-sandbox --disable-gpu-driver-bug-workarounds=1 --log-file="C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Support\Log\AppCefLog.log" --log-severity=error --lang=en-US --cefsharpexitsub --gpu-preferences=MAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --use-gl=swiftshader-webgl --log-file="C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Support\Log\AppCefLog.log" --mojo-platform-channel-handle=3436 /prefetch:2 --wcf-enabled --host-process-id=13792
"C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\EKAG20NT.EXE" 02004FCC1CF65A4B 0
"C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=3388,2732900490550028794,9769022421422335556,131072 --enable-features=CastMediaRouteProvider --lang=en-US --service-sandbox-type=network --no-sandbox --force-wave-audio=1 --log-file="C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Support\Log\AppCefLog.log" --log-severity=error --lang=en-US --cefsharpexitsub --log-file="C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Support\Log\AppCefLog.log" --mojo-platform-channel-handle=4936 /prefetch:8 --wcf-enabled --host-process-id=13792
"C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe" --type=renderer --no-sandbox --log-file="C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Support\Log\AppCefLog.log" --field-trial-handle=3388,2732900490550028794,9769022421422335556,131072 --enable-features=CastMediaRouteProvider --disable-gpu-compositing --lang=en-US --log-file="C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Support\Log\AppCefLog.log" --log-severity=error --cefsharpexitsub --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=4 --mojo-platform-channel-handle=5292 /prefetch:1 --wcf-enabled --host-process-id=13792
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=8092,12756255604032978790,16374786266944403020,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\Lukáš\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\Users\Lukáš\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=8464 /prefetch:2
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=8092,12756255604032978790,16374786266944403020,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=cs --service-sandbox-type=utility --no-sandbox --force-wave-audio --log-file="C:\Users\Lukáš\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Lukáš\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=7072 /prefetch:8
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=8092,12756255604032978790,16374786266944403020,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=cs --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\Users\Lukáš\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Lukáš\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=7524 /prefetch:8
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "D:\Torent\Rychle a zběsile 10 2023 CZ DABING.mkv"
C:\WINDOWS\system32\AUDIODG.EXE 0x620
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\Avast Software\Cleanup\TuneupUI.exe" /nogui
"C:\Program Files\Avast Software\Cleanup\TuneupUI.exe" --type=gpu-process --field-trial-handle=2424,7250447023531782067,8777299206298626050,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\Lukáš\AppData\Roaming\Avast Software\Cleanup\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\Users\Lukáš\AppData\Roaming\Avast Software\Cleanup\log\cef_log.txt" --mojo-platform-channel-handle=2468 /prefetch:2
"C:\Program Files\Avast Software\Cleanup\TuneupUI.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2424,7250447023531782067,8777299206298626050,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=en-US --service-sandbox-type=utility --no-sandbox --force-wave-audio --log-file="C:\Users\Lukáš\AppData\Roaming\Avast Software\Cleanup\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Lukáš\AppData\Roaming\Avast Software\Cleanup\log\cef_log.txt" --mojo-platform-channel-handle=3532 /prefetch:8
"C:\Program Files\Avast Software\Cleanup\TuneupUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2424,7250447023531782067,8777299206298626050,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=en-US --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\Users\Lukáš\AppData\Roaming\Avast Software\Cleanup\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Lukáš\AppData\Roaming\Avast Software\Cleanup\log\cef_log.txt" --mojo-platform-channel-handle=3896 /prefetch:8
C:\WINDOWS\System32\svchost.exe -k smphost
"C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe" --type=renderer --no-sandbox --log-file="C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Support\Log\AppCefLog.log" --field-trial-handle=3388,2732900490550028794,9769022421422335556,131072 --enable-features=CastMediaRouteProvider --disable-gpu-compositing --lang=en-US --log-file="C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Support\Log\AppCefLog.log" --log-severity=error --cefsharpexitsub --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=5172 /prefetch:1 --wcf-enabled --host-process-id=13792
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\Windows\System32\smartscreen.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe" -ServerName:ShellFeedsUI.AppX88fpyyrd21w8wqe62wzsjh5agex7tf1e.mca
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe" --type=renderer --no-sandbox --log-file="C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Support\Log\AppCefLog.log" --field-trial-handle=3388,2732900490550028794,9769022421422335556,131072 --enable-features=CastMediaRouteProvider --disable-gpu-compositing --lang=en-US --log-file="C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Support\Log\AppCefLog.log" --log-severity=error --cefsharpexitsub --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=5628 /prefetch:1 --wcf-enabled --host-process-id=13792

C:\WINDOWS\System32\svchost.exe -k netsvcs -p
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1425878809-3904051324-2884316882-10014_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1425878809-3904051324-2884316882-10014 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe" -ServerName:InputApp.AppXjd5de1g66v206tj52m9d0dtpppx4cgpn.mca
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 792 796 804 8192 800 776
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Users\Lukáš\Desktop\RSITx64.exe"
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:Microsoft.MicrosoftOfficeHub.AppX54h2e8jwdm50fj5ha8987vz1etpx7czd.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding

======Scheduled tasks folder======

C:\WINDOWS\tasks\CCleanerCrashReporting.job - C:\Program Files\CCleaner\CCleanerBugReport.exe --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "d9f0b945-76cc-4851-be73-2f55f7b93847" --version "6.15.10623" --silent

=========Mozilla firefox=========

ProfilePath - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\3ncbf8jp.default-release

prefs.js - "browser.startup.homepage" - "www.centrum.cz"

"web2pdfextension.17@acrobat.adobe.com"=C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@update.avastbrowser.com/Avast Browser;version=3]
"Description"=Avast Browser
"Path"=C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@update.avastbrowser.com/Avast Browser;version=9]
"Description"=Avast Browser
"Path"=C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.16]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.17.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.18]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\115.0.1901.203\BHO\ie_to_edge_bho_64.dll [2023-08-10 587816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-07-26 162528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-07-26 162528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\115.0.1901.203\BHO\ie_to_edge_bho.dll [2023-08-10 456128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - D:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe Acrobat Create PDF Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-07-27 140512]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-07-27 140512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-07-26 162528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-07-27 140512]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 86016]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2021-09-23 11102808]
"AvastUI.exe"=C:\Program Files\Avast Software\Avast\AvLaunch.exe [2023-07-31 256408]
"Avast BreachGuard"=C:\Program Files\Avast Software\BreachGuard\bgui.exe [2023-08-18 7778200]
"TuneupUI.exe"=C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [2023-07-26 4543384]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2018-04-11 509936]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2022-09-27 3476960]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Lukáš\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2023-08-14 2609072]
"EPSON Stylus DX4400"=C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE [2007-03-01 211456]
"Steam"=D:\Program Files (x86)\Steam\steam.exe [2023-07-28 4374376]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2023-08-11 41584544]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=D:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Acrobat Assistant 8.0"=C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [2017-11-01 3500056]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Avast SecureLine VPN.lnk - C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=D:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HidSpiCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aswSP.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HidSpiCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
"aux1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv

======File associations======

.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open -
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2023-08-19 20:07:06 ----D---- C:\rsit
2023-08-19 20:07:06 ----D---- C:\Program Files\trend micro
2023-08-19 13:22:34 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2023-08-16 17:27:18 ----D---- C:\Program Files\7-Zip
2023-08-09 18:18:26 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
2023-08-09 18:18:26 ----A---- C:\WINDOWS\system32\WinFax.dll
2023-08-09 18:18:26 ----A---- C:\WINDOWS\system32\FXSTIFF.dll
2023-08-09 18:18:26 ----A---- C:\WINDOWS\system32\FXST30.dll
2023-08-09 18:18:26 ----A---- C:\WINDOWS\system32\FXSRESM.dll
2023-08-09 18:18:26 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2023-08-09 18:18:26 ----A---- C:\WINDOWS\system32\FXSCOM.dll
2023-08-09 18:18:26 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2023-08-09 18:18:11 ----A---- C:\WINDOWS\SYSWOW64\FXSXP32.dll
2023-08-09 18:18:10 ----A---- C:\WINDOWS\system32\wmpps.dll
2023-08-09 18:18:10 ----A---- C:\WINDOWS\system32\FXSCOMPOSE.dll
2023-08-09 18:18:10 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2023-08-09 18:18:10 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2023-08-09 18:18:09 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2023-08-09 18:18:07 ----A---- C:\WINDOWS\system32\cdp.dll
2023-08-09 18:18:01 ----A---- C:\WINDOWS\SYSWOW64\quickassist.exe
2023-08-09 18:18:00 ----A---- C:\WINDOWS\system32\quickassist.exe
2023-08-09 18:17:59 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2023-08-09 18:17:59 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2023-08-09 18:17:59 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2023-08-09 18:17:59 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2023-08-09 18:17:59 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2023-08-09 18:17:57 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2023-08-09 18:17:56 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2023-08-09 18:17:56 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2023-08-09 18:17:55 ----A---- C:\WINDOWS\system32\mfps.dll
2023-08-09 18:17:55 ----A---- C:\WINDOWS\system32\mfcore.dll
2023-08-09 18:17:53 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.AppAgent.dll
2023-08-09 18:17:52 ----A---- C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2023-08-09 18:17:52 ----A---- C:\WINDOWS\system32\AgentService.exe
2023-08-09 18:17:51 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2023-08-09 18:17:51 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2023-08-09 18:17:50 ----A---- C:\WINDOWS\system32\AppVClient.exe
2023-08-09 18:17:46 ----A---- C:\WINDOWS\SYSWOW64\WinSATAPI.dll
2023-08-09 18:17:45 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2023-08-09 18:17:43 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2023-08-09 18:17:43 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2023-08-09 18:17:43 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2023-08-09 18:17:42 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2023-08-09 18:17:42 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2023-08-09 18:17:41 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2023-08-09 18:17:41 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2023-08-09 18:17:41 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2023-08-09 18:17:40 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2023-08-09 18:17:39 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2023-08-09 18:17:39 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2023-08-09 18:17:38 ----A---- C:\WINDOWS\SYSWOW64\wevtfwd.dll
2023-08-09 18:17:38 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2023-08-09 18:17:38 ----A---- C:\WINDOWS\SYSWOW64\GamePanelExternalHook.dll
2023-08-09 18:17:38 ----A---- C:\WINDOWS\SYSWOW64\GamePanel.exe
2023-08-09 18:17:38 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2023-08-09 18:17:16 ----A---- C:\WINDOWS\system32\WinSATAPI.dll
2023-08-09 18:17:16 ----A---- C:\WINDOWS\system32\WinSAT.exe
2023-08-09 18:17:15 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2023-08-09 18:17:14 ----A---- C:\WINDOWS\system32\tsgqec.dll
2023-08-09 18:17:14 ----A---- C:\WINDOWS\system32\termsrv.dll
2023-08-09 18:17:14 ----A---- C:\WINDOWS\system32\rdsdwmdr.dll
2023-08-09 18:17:13 ----A---- C:\WINDOWS\system32\mstscax.dll
2023-08-09 18:17:11 ----A---- C:\WINDOWS\system32\wsp_health.dll
2023-08-09 18:17:10 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2023-08-09 18:17:10 ----A---- C:\WINDOWS\system32\SnippingTool.exe
2023-08-09 18:17:10 ----A---- C:\WINDOWS\system32\rdpudd.dll
2023-08-09 18:17:10 ----A---- C:\WINDOWS\system32\certreq.exe
2023-08-09 18:17:07 ----A---- C:\WINDOWS\system32\McpManagementService.dll
2023-08-09 18:17:07 ----A---- C:\WINDOWS\system32\DAFIPP.dll
2023-08-09 18:17:06 ----A---- C:\WINDOWS\system32\DAFMCP.dll
2023-08-09 18:17:05 ----A---- C:\WINDOWS\system32\DscCore.dll
2023-08-09 18:17:01 ----A---- C:\WINDOWS\system32\odbcconf.dll
2023-08-09 18:16:59 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2023-08-09 18:16:58 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2023-08-09 18:16:56 ----A---- C:\WINDOWS\system32\ieframe.dll
2023-08-09 18:16:55 ----A---- C:\WINDOWS\system32\ieproxy.dll
2023-08-09 18:16:55 ----A---- C:\WINDOWS\system32\Chakra.dll
2023-08-09 18:16:53 ----A---- C:\WINDOWS\system32\mshtml.dll
2023-08-09 18:16:52 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2023-08-09 18:16:51 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2023-08-09 18:16:49 ----A---- C:\WINDOWS\system32\wiatrace.dll
2023-08-09 18:16:49 ----A---- C:\WINDOWS\system32\mshta.exe
2023-08-09 18:16:49 ----A---- C:\WINDOWS\system32\edgehtml.dll
2023-08-09 18:16:48 ----A---- C:\WINDOWS\system32\wiaservc.dll
2023-08-09 18:16:48 ----A---- C:\WINDOWS\system32\wiarpc.dll
2023-08-09 18:16:48 ----A---- C:\WINDOWS\system32\wevtfwd.dll
2023-08-09 18:16:48 ----A---- C:\WINDOWS\system32\wecutil.exe
2023-08-09 18:16:48 ----A---- C:\WINDOWS\system32\wecsvc.dll
2023-08-09 18:16:48 ----A---- C:\WINDOWS\system32\wecapi.dll
2023-08-09 18:16:48 ----A---- C:\WINDOWS\system32\sti.dll
2023-08-09 18:16:48 ----A---- C:\WINDOWS\system32\EsclWiaDriver.dll
2023-08-09 18:16:47 ----A---- C:\WINDOWS\system32\skci.dll
2023-08-09 18:16:46 ----A---- C:\WINDOWS\system32\tcbloader.dll
2023-08-09 18:16:46 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2023-08-09 18:16:46 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2023-08-09 18:16:46 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2023-08-09 18:16:46 ----A---- C:\WINDOWS\system32\securekernel.exe
2023-08-09 18:16:46 ----A---- C:\WINDOWS\system32\hvix64.exe
2023-08-09 18:16:46 ----A---- C:\WINDOWS\system32\hvax64.exe
2023-08-09 18:16:46 ----A---- C:\WINDOWS\system32\GamePanelExternalHook.dll
2023-08-09 18:16:46 ----A---- C:\WINDOWS\system32\GamePanel.exe
2023-08-09 18:16:45 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2023-08-09 18:16:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2023-08-09 18:16:44 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2023-08-09 18:16:44 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2023-08-09 18:16:44 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2023-08-09 18:16:44 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2023-08-09 18:16:44 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2023-08-09 18:16:43 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2023-08-09 18:16:43 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2023-08-09 18:16:43 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2023-08-09 18:16:43 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2023-08-09 18:16:43 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2023-08-09 18:16:43 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2023-08-09 18:16:43 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2023-08-09 18:16:42 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2023-08-09 18:16:42 ----A---- C:\WINDOWS\SYSWOW64\IPHLPAPI.DLL
2023-08-09 18:16:42 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2023-08-09 18:16:41 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2023-08-09 18:16:40 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2023-08-09 18:16:40 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2023-08-09 18:16:39 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2023-08-09 18:16:39 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2023-08-09 18:16:39 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2023-08-09 18:16:39 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe
2023-08-09 18:16:39 ----A---- C:\WINDOWS\SYSWOW64\accessibilitycpl.dll
2023-08-09 18:16:38 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2023-08-09 18:16:38 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2023-08-09 18:16:38 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2023-08-09 18:16:38 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2023-08-09 18:16:38 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2023-08-09 18:16:37 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2023-08-09 18:16:37 ----A---- C:\WINDOWS\SYSWOW64\AppxSip.dll
2023-08-09 18:16:37 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2023-08-09 18:16:37 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2023-08-09 18:16:36 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2023-08-09 18:16:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2023-08-09 18:16:36 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2023-08-09 18:16:36 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2023-08-09 18:16:36 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2023-08-09 18:16:36 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2023-08-09 18:16:35 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2023-08-09 18:16:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2023-08-09 18:16:33 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2023-08-09 18:16:33 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2023-08-09 18:16:33 ----A---- C:\WINDOWS\SYSWOW64\NaturalLanguage6.dll
2023-08-09 18:16:33 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2023-08-09 18:16:33 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2023-08-09 18:16:33 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2023-08-09 18:16:32 ----A---- C:\WINDOWS\SYSWOW64\msobjs.dll
2023-08-09 18:16:32 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2023-08-09 18:16:32 ----A---- C:\WINDOWS\system32\windowsudk.shellcommon.dll
2023-08-09 18:16:32 ----A---- C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2023-08-09 18:16:32 ----A---- C:\WINDOWS\system32\twinui.dll
2023-08-09 18:16:32 ----A---- C:\WINDOWS\system32\lsm.dll
2023-08-09 18:16:32 ----A---- C:\WINDOWS\system32\LsaIso.exe
2023-08-09 18:16:32 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2023-08-09 18:16:32 ----A---- C:\WINDOWS\system32\iumcrypt.dll
2023-08-09 18:16:31 ----A---- C:\WINDOWS\system32\vpnike.dll
2023-08-09 18:16:14 ----A---- C:\WINDOWS\system32\rastlsext.dll
2023-08-09 18:16:14 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2023-08-09 18:16:13 ----A---- C:\WINDOWS\system32\rastls.dll
2023-08-09 18:16:13 ----A---- C:\WINDOWS\system32\APMon.dll
2023-08-09 18:16:12 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2023-08-09 18:16:11 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2023-08-09 18:16:10 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2023-08-09 18:16:10 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2023-08-09 18:16:10 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2023-08-09 18:16:09 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2023-08-09 18:16:09 ----A---- C:\WINDOWS\system32\LockController.dll
2023-08-09 18:16:09 ----A---- C:\WINDOWS\system32\laps.dll
2023-08-09 18:16:09 ----A---- C:\WINDOWS\system32\edgeIso.dll
2023-08-09 18:16:09 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2023-08-09 18:16:09 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2023-08-09 18:16:08 ----A---- C:\WINDOWS\system32\msIso.dll
2023-08-09 18:16:08 ----A---- C:\WINDOWS\system32\iertutil.dll
2023-08-09 18:16:07 ----A---- C:\WINDOWS\system32\urlmon.dll
2023-08-09 18:16:07 ----A---- C:\WINDOWS\system32\gpapi.dll
2023-08-09 18:16:06 ----A---- C:\WINDOWS\system32\LocationFrameworkPS.dll
2023-08-09 18:16:06 ----A---- C:\WINDOWS\system32\gpsvc.dll
2023-08-09 18:16:05 ----A---- C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2023-08-09 18:16:05 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2023-08-09 18:16:04 ----A---- C:\WINDOWS\system32\gdi32full.dll
2023-08-09 18:16:03 ----A---- C:\WINDOWS\system32\sppobjs.dll
2023-08-09 18:16:03 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2023-08-09 18:16:03 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2023-08-09 18:16:03 ----A---- C:\WINDOWS\system32\dmcsps.dll
2023-08-09 18:16:03 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2023-08-09 18:16:02 ----A---- C:\WINDOWS\system32\sppsvc.exe
2023-08-09 18:16:02 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2023-08-09 18:16:02 ----A---- C:\WINDOWS\system32\SCardSvr.dll
2023-08-09 18:16:02 ----A---- C:\WINDOWS\system32\SCardDlg.dll
2023-08-09 18:16:02 ----A---- C:\WINDOWS\system32\SCardBi.dll
2023-08-09 18:16:02 ----A---- C:\WINDOWS\system32\drivers\scfilter.sys
2023-08-09 18:16:02 ----A---- C:\WINDOWS\system32\certprop.dll
2023-08-09 18:16:01 ----A---- C:\WINDOWS\system32\shell32.dll
2023-08-09 18:16:01 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2023-08-09 18:16:00 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2023-08-09 18:15:59 ----A---- C:\WINDOWS\system32\Windows.CloudStore.Schema.DesktopShell.dll
2023-08-09 18:15:59 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2023-08-09 18:15:58 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2023-08-09 18:15:57 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2023-08-09 18:15:57 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2023-08-09 18:15:56 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2023-08-09 18:15:56 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2023-08-09 18:15:55 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2023-08-09 18:15:54 ----A---- C:\WINDOWS\system32\KernelBase.dll
2023-08-09 18:15:54 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2023-08-09 18:15:52 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2023-08-09 18:15:51 ----A---- C:\WINDOWS\system32\ntdll.dll
2023-08-09 18:15:51 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2023-08-09 18:15:51 ----A---- C:\WINDOWS\system32\adtschema.dll
2023-08-09 18:15:50 ----A---- C:\WINDOWS\system32\msobjs.dll
2023-08-09 18:15:50 ----A---- C:\WINDOWS\system32\msaudite.dll
2023-08-09 18:15:49 ----A---- C:\WINDOWS\system32\offlinesam.dll
2023-08-09 18:15:49 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2023-08-09 18:15:49 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2023-08-09 18:15:49 ----A---- C:\WINDOWS\system32\msv1_0.dll
2023-08-09 18:15:49 ----A---- C:\WINDOWS\system32\lsasrv.dll
2023-08-09 18:15:49 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2023-08-09 18:15:48 ----A---- C:\WINDOWS\system32\samsrv.dll
2023-08-09 18:15:48 ----A---- C:\WINDOWS\system32\samlib.dll
2023-08-09 18:15:48 ----A---- C:\WINDOWS\system32\rpcss.dll
2023-08-09 18:15:48 ----A---- C:\WINDOWS\system32\crypt32.dll
2023-08-09 18:15:48 ----A---- C:\WINDOWS\system32\ci.dll
2023-08-09 18:15:47 ----A---- C:\WINDOWS\system32\zipfldr.dll
2023-08-09 18:15:47 ----A---- C:\WINDOWS\system32\winresume.exe
2023-08-09 18:15:47 ----A---- C:\WINDOWS\system32\winload.exe
2023-08-09 18:15:47 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2023-08-09 18:15:47 ----A---- C:\WINDOWS\system32\SndVol.exe
2023-08-09 18:15:47 ----A---- C:\WINDOWS\system32\IPHLPAPI.DLL
2023-08-09 18:15:47 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2023-08-09 18:15:47 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2023-08-09 18:15:47 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2023-08-09 18:15:47 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2023-08-09 18:15:47 ----A---- C:\WINDOWS\system32\cldapi.dll
2023-08-09 18:15:47 ----A---- C:\WINDOWS\system32\browserbroker.dll
2023-08-09 18:15:46 ----A---- C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2023-08-09 18:15:46 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2023-08-09 18:15:46 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2023-08-09 18:15:46 ----A---- C:\WINDOWS\system32\invagent.dll
2023-08-09 18:15:46 ----A---- C:\WINDOWS\system32\InputCloudStore.dll
2023-08-09 18:15:46 ----A---- C:\WINDOWS\system32\DevicesFlowBroker.dll
2023-08-09 18:15:46 ----A---- C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2023-08-09 18:15:46 ----A---- C:\WINDOWS\system32\appraiser.dll
2023-08-09 18:15:46 ----A---- C:\WINDOWS\system32\aemarebackup.dll
2023-08-09 18:15:46 ----A---- C:\WINDOWS\system32\aeinv.dll
2023-08-09 18:15:46 ----A---- C:\WINDOWS\system32\acmigration.dll
2023-08-09 18:15:46 ----A---- C:\WINDOWS\system32\accessibilitycpl.dll
2023-08-09 18:15:45 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2023-08-09 18:15:45 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2023-08-09 18:15:45 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2023-08-09 18:15:45 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2023-08-09 18:15:45 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2023-08-09 18:15:45 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2023-08-09 18:15:44 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2023-08-09 18:15:44 ----A---- C:\WINDOWS\system32\wevtapi.dll
2023-08-09 18:15:44 ----A---- C:\WINDOWS\system32\usosvc.dll
2023-08-09 18:15:44 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2023-08-09 18:15:44 ----A---- C:\WINDOWS\system32\SettingsHandlers_Devices.dll
2023-08-09 18:15:44 ----A---- C:\WINDOWS\system32\MoUsoCoreWorker.exe
2023-08-09 18:15:43 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2023-08-09 18:15:43 ----A---- C:\WINDOWS\system32\drivers\ipnat.sys
2023-08-09 18:15:43 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2023-08-09 18:15:43 ----A---- C:\WINDOWS\system32\CloudDomainJoinAUG.dll
2023-08-09 18:15:42 ----A---- C:\WINDOWS\system32\win32kfull.sys
2023-08-09 18:15:42 ----A---- C:\WINDOWS\system32\win32k.sys
2023-08-09 18:15:24 ----A---- C:\WINDOWS\system32\WpnUserService.dll
2023-08-09 18:15:24 ----A---- C:\WINDOWS\system32\wpnservice.dll
2023-08-09 18:15:24 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2023-08-09 18:15:24 ----A---- C:\WINDOWS\system32\win32u.dll
2023-08-09 18:15:23 ----A---- C:\WINDOWS\system32\wpncore.dll
2023-08-09 18:15:23 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2023-08-09 18:15:23 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2023-08-09 18:15:23 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2023-08-09 18:15:23 ----A---- C:\WINDOWS\system32\BFE.DLL
2023-08-09 18:15:22 ----A---- C:\WINDOWS\system32\wintrust.dll
2023-08-09 18:15:22 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2023-08-09 18:15:21 ----A---- C:\WINDOWS\system32\AppxSip.dll
2023-08-09 18:15:21 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2023-08-09 18:15:20 ----A---- C:\WINDOWS\system32\windows.storage.dll
2023-08-09 18:15:19 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2023-08-09 18:15:19 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2023-08-09 18:15:19 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2023-08-09 18:15:19 ----A---- C:\WINDOWS\system32\ISM.dll
2023-08-09 18:15:19 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2023-08-09 18:15:19 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2023-08-09 18:15:18 ----A---- C:\WINDOWS\system32\InputService.dll
2023-08-09 18:15:17 ----A---- C:\WINDOWS\system32\win32kbase.sys
2023-08-09 18:15:17 ----A---- C:\WINDOWS\system32\mssrch.dll
2023-08-09 18:15:17 ----A---- C:\WINDOWS\system32\mssprxy.dll
2023-08-09 18:15:17 ----A---- C:\WINDOWS\system32\FntCache.dll
2023-08-09 18:15:17 ----A---- C:\WINDOWS\system32\dosvc.dll
2023-08-09 18:15:17 ----A---- C:\WINDOWS\system32\domgmt.dll
2023-08-09 18:15:17 ----A---- C:\WINDOWS\system32\DafDnsSd.dll
2023-08-09 18:15:17 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2023-08-09 18:15:13 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2023-08-09 18:15:13 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2023-08-09 18:15:13 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2023-08-09 18:15:13 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2023-08-09 18:15:13 ----A---- C:\WINDOWS\system32\certcli.dll
2023-08-09 18:15:13 ----A---- C:\WINDOWS\system32\cdd.dll
2023-08-09 18:15:12 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2023-08-09 18:15:10 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2023-08-09 18:15:09 ----A---- C:\WINDOWS\system32\cloudAP.dll
2023-08-09 18:15:08 ----A---- C:\WINDOWS\system32\GameInput.dll
2023-08-09 18:15:08 ----A---- C:\WINDOWS\system32\aadtb.dll
2023-08-09 18:15:08 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2023-08-09 18:15:07 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2023-08-09 18:15:07 ----A---- C:\WINDOWS\system32\aadauthhelper.dll
2023-08-09 18:15:05 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2023-08-09 18:15:05 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2023-08-09 18:15:05 ----A---- C:\WINDOWS\system32\ShareHost.dll
2023-08-09 18:15:04 ----A---- C:\WINDOWS\system32\cdprt.dll
2023-08-09 18:15:03 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2023-08-09 18:15:03 ----A---- C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2023-08-09 18:15:03 ----A---- C:\WINDOWS\system32\StartTileData.dll
2023-08-09 18:15:03 ----A---- C:\WINDOWS\system32\NaturalLanguage6.dll
2023-08-09 18:15:03 ----A---- C:\WINDOWS\system32\localui.dll
2023-08-09 18:15:03 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2023-08-09 18:15:02 ----A---- C:\WINDOWS\system32\usbmon.dll
2023-08-09 18:15:01 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2023-08-09 18:15:01 ----A---- C:\WINDOWS\system32\dsreg.dll
2023-08-09 18:15:01 ----A---- C:\WINDOWS\explorer.exe
2023-08-09 18:15:00 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2023-08-09 18:15:00 ----A---- C:\WINDOWS\system32\win32spl.dll
2023-08-09 18:15:00 ----A---- C:\WINDOWS\system32\Win32_DeviceGuard.dll
2023-08-09 18:15:00 ----A---- C:\WINDOWS\system32\framedynos.dll
2023-08-09 18:15:00 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2023-08-09 18:15:00 ----A---- C:\WINDOWS\system32\CloudRestoreLauncher.dll
2023-08-09 18:14:59 ----A---- C:\WINDOWS\system32\Windows.Management.ModernDeployment.ConfigProviders.dll
2023-08-09 18:14:59 ----A---- C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2023-08-09 18:14:59 ----A---- C:\WINDOWS\system32\Windows.Internal.System.UserProfile.dll
2023-08-09 18:14:58 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2023-08-09 18:14:58 ----A---- C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2023-08-09 18:14:58 ----A---- C:\WINDOWS\system32\autopilot.dll
2023-08-09 18:14:57 ----A---- C:\WINDOWS\system32\wwanprotdim.dll
2023-08-09 18:14:57 ----A---- C:\WINDOWS\system32\ManageCI.dll
2023-08-09 18:14:57 ----A---- C:\WINDOWS\system32\drivers\KNetPwrDepBroker.sys
2023-08-09 18:14:57 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2023-08-09 18:14:57 ----A---- C:\WINDOWS\system32\drivers\exfat.sys
2023-08-09 18:14:56 ----A---- C:\WINDOWS\system32\wwansvc.dll
2023-08-09 18:14:55 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2023-08-09 18:14:54 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2023-08-09 18:14:54 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2023-08-09 18:14:54 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2023-08-09 18:14:54 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2023-08-09 18:14:54 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2023-08-09 17:57:51 ----HD---- C:\$WinREAgent
2023-08-09 17:57:46 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2023-08-09 17:57:46 ----A---- C:\WINDOWS\system32\poqexec.exe
2023-08-01 18:35:15 ----A---- C:\WINDOWS\system32\drivers\aswVpnRdr.sys
2023-07-31 17:22:25 ----D---- C:\WINDOWS\Panther
2023-07-31 17:21:09 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2023-07-31 17:21:09 ----A---- C:\WINDOWS\system32\aswBoot.exe

======List of files/folders modified in the last 1 month======

2023-08-19 20:07:06 ----RD---- C:\Program Files
2023-08-19 20:06:38 ----D---- C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-08-19 20:06:33 ----D---- C:\Program Files\CCleaner
2023-08-19 20:05:46 ----D---- C:\WINDOWS\system32\sru
2023-08-19 20:03:19 ----D---- C:\WINDOWS\Temp
2023-08-19 19:50:39 ----D---- C:\WINDOWS\SystemTemp
2023-08-19 19:50:12 ----D---- C:\WINDOWS\system32\config
2023-08-19 19:49:49 ----D---- C:\Users\Lukáš\AppData\Roaming\vlc
2023-08-19 19:48:45 ----D---- C:\Program Files (x86)\Google
2023-08-19 14:39:15 ----D---- C:\ProgramData\NVIDIA
2023-08-19 14:39:10 ----D---- C:\WINDOWS\Prefetch
2023-08-19 14:24:24 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2023-08-19 14:23:41 ----D---- C:\WINDOWS\INF
2023-08-19 14:22:24 ----D---- C:\WINDOWS\system32\Tasks
2023-08-19 14:21:24 ----D---- C:\WINDOWS\system32\SleepStudy
2023-08-19 14:21:24 ----ASH---- C:\DumpStack.log.tmp
2023-08-19 14:13:33 ----D---- C:\Users\Lukáš\AppData\Roaming\uTorrent
2023-08-19 13:43:20 ----D---- C:\FRST
2023-08-19 13:41:55 ----SHD---- C:\System Volume Information
2023-08-19 13:22:34 ----D---- C:\WINDOWS\System32
2023-08-19 13:22:34 ----D---- C:\WINDOWS\debug
2023-08-19 13:22:25 ----D---- C:\Windows
2023-08-19 12:02:00 ----D---- C:\WINDOWS\AppReadiness
2023-08-19 11:52:08 ----D---- C:\WINDOWS\Logs
2023-08-19 11:51:51 ----RD---- C:\WINDOWS\Microsoft.NET
2023-08-19 11:43:47 ----SHD---- C:\WINDOWS\Installer
2023-08-19 11:43:47 ----D---- C:\WINDOWS\system32\catroot2
2023-08-19 11:43:46 ----D---- C:\Program Files\Defraggler
2023-08-19 11:41:51 ----D---- C:\ProgramData\Avast Software
2023-08-18 18:04:20 ----HD---- C:\Program Files\WindowsApps
2023-08-18 17:11:04 ----D---- C:\WINDOWS\system32\drivers
2023-08-18 17:05:33 ----D---- C:\Program Files (x86)\Mozilla Firefox
2023-08-16 17:38:20 ----D---- C:\Program Files (x86)\Common Files
2023-08-16 17:28:44 ----D---- C:\WINDOWS\Tasks
2023-08-14 17:35:23 ----D---- C:\WINDOWS\CbsTemp
2023-08-09 19:44:53 ----D---- C:\WINDOWS\WinSxS
2023-08-09 19:29:52 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2023-08-09 19:25:32 ----D---- C:\WINDOWS\system32\DriverStore
2023-08-09 19:19:35 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2023-08-09 19:19:35 ----D---- C:\WINDOWS\SYSWOW64\wbem
2023-08-09 19:19:35 ----D---- C:\WINDOWS\SYSWOW64\ja-JP
2023-08-09 19:19:35 ----D---- C:\WINDOWS\SysWOW64
2023-08-09 19:19:26 ----D---- C:\WINDOWS\SystemResources
2023-08-09 19:19:25 ----D---- C:\WINDOWS\system32\WinMetadata
2023-08-09 19:19:24 ----D---- C:\WINDOWS\system32\wbem
2023-08-09 19:19:23 ----D---- C:\WINDOWS\system32\setup
2023-08-09 19:19:23 ----D---- C:\WINDOWS\system32\migwiz
2023-08-09 19:19:23 ----D---- C:\WINDOWS\system32\migration
2023-08-09 19:19:22 ----D---- C:\WINDOWS\system32\ja-jp
2023-08-09 19:19:22 ----D---- C:\WINDOWS\system32\en-US
2023-08-09 19:19:22 ----D---- C:\WINDOWS\system32\cs-CZ
2023-08-09 19:19:22 ----D---- C:\WINDOWS\system32\Boot
2023-08-09 19:19:21 ----D---- C:\WINDOWS\system32\appraiser
2023-08-09 19:19:12 ----D---- C:\WINDOWS\bcastdvr
2023-08-09 19:19:12 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2023-08-09 19:19:04 ----D---- C:\WINDOWS\system32\CodeIntegrity
2023-08-09 19:19:04 ----D---- C:\WINDOWS\appcompat
2023-08-09 18:14:55 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2023-08-09 17:56:52 ----D---- C:\WINDOWS\system32\MRT
2023-08-09 17:54:48 ----AC---- C:\WINDOWS\system32\MRT.exe
2023-07-31 17:23:31 ----D---- C:\ProgramData\FLEXnet
2023-07-31 17:21:09 ----HD---- C:\WINDOWS\ELAMBKUP
2023-07-24 17:36:48 ----SD---- C:\Users\Lukáš\AppData\Roaming\Microsoft
2023-07-24 17:34:07 ----HD---- C:\ProgramData
2023-07-24 17:23:12 ----RD---- C:\Program Files (x86)
2023-07-24 17:12:04 ----D---- C:\Program Files\Common Files
2023-07-24 17:11:10 ----D---- C:\Program Files\Common Files\Autodesk Shared
2023-07-24 17:10:07 ----D---- C:\ProgramData\Package Cache
2023-07-24 17:04:56 ----RD---- C:\WINDOWS\assembly
2023-07-24 17:04:37 ----RSD---- C:\WINDOWS\Fonts

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2023-07-31 297880]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2023-07-31 95960]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2023-01-05 25576]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2023-07-31 80416]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2023-07-31 319512]
R0 iaStorAC;@oem31.inf,%iaStorAC.DeviceDesc%;Intel(R) Chipset SATA/PCIe RST Premium Controller; C:\WINDOWS\System32\drivers\iaStorAC.sys [2023-01-05 1094848]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2023-01-05 57168]
R0 MsSecCore;@%SystemRoot%\System32\Drivers\msseccore.sys,-1001; C:\WINDOWS\system32\drivers\msseccore.sys [2023-07-12 26496]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2023-01-05 44032]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2023-07-31 237984]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2023-07-31 392880]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2023-07-31 39600]
R1 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2023-07-31 272568]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2023-07-31 559136]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2023-07-31 105240]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2023-07-31 946048]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2023-07-31 705376]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 78136]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2023-02-16 95232]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8704]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [2023-01-05 27552]
R1 netfilter2;netfilter2; C:\WINDOWS\system32\drivers\netfilter2.sys [2023-01-05 124952]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2023-07-31 212632]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2023-01-11 145760]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2023-08-09 497664]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2023-01-05 53248]
R3 aswVpnRdr;Avast SecureLine VPN Driver; C:\WINDOWS\system32\drivers\aswVpnRdr.sys [2023-08-01 76568]
R3 aswWintun;@oem3.inf,%aswWintun.Name%;aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [2023-01-05 51112]
R3 aswWireGuard;@oem17.inf,%aswWireGuard.Name%;aswWireGuard; C:\WINDOWS\System32\drivers\aswWireguard.sys [2023-01-05 498992]
R3 ETDSMBus;ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [2023-01-05 53632]
R3 iaLPSS2_GPIO2;@oem46.inf,%iaLPSS2_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2.inf_amd64_42bd8bb784c1d369\iaLPSS2_GPIO2.sys [2022-01-31 143512]
R3 iaLPSS2_I2C;@oem43.inf,%iaLPSS2_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c.inf_amd64_77fd3be5a5990cbc\iaLPSS2_I2C.sys [2022-01-31 160944]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2021-09-23 6521392]
R3 MEIx64;@oem49.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_cf249bf95c3b8dcb\x64\TeeDriverW10x64.sys [2023-05-22 320096]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2023-01-05 322376]
R3 NVHDA;@oem9.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2023-03-10 121880]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_04ffae6d80cb7adc\nvlddmkm.sys [2023-06-20 59008024]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-12-07 43832]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-12-07 319800]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 884752]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 172344]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 124216]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 135992]
S0 MbamElam;MbamElam; C:\WINDOWS\system32\DRIVERS\MbamElam.sys [2023-05-08 21480]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 81720]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 105480]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-12-07 168464]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 58680]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 68408]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2023-01-05 142176]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 42296]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 23040]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2023-01-05 694272]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-12-07 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-12-07 45568]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2023-03-16 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2023-07-12 140160]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2023-07-12 175432]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2023-07-12 155992]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-12-07 279040]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2023-05-10 113664]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2023-01-05 106496]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2023-05-10 45568]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2023-05-10 1565696]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2023-05-10 110592]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 44032]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 66576]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [2019-12-07 23040]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 55824]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2023-06-14 104448]
S3 HidSpiCx;HidSpi KMDF Class Extension; C:\WINDOWS\system32\drivers\HidSpiCx.sys [2023-06-14 98304]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2023-03-16 96112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 30208]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-12-07 1853752]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-12-07 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-12-07 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-12-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-12-07 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-12-07 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-12-07 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-12-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-12-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-12-07 558904]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2023-01-05 47104]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 30720]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 59704]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 537608]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 64016]
S3 MBAMSwissArmy;MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [2023-05-08 239544]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2023-01-05 386048]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 65024]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-12-07 1131320]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2023-07-12 406848]
S3 MsSecWfp;@%SystemRoot%\System32\Drivers\mssecwfp.sys,-1001; C:\WINDOWS\system32\drivers\mssecwfp.sys [2023-07-12 66944]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-12-07 146232]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-12-07 72720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2023-01-05 210944]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2023-07-12 131392]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 27136]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2023-01-05 990536]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 213504]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 115712]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-12-07 35128]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2023-04-03 173040]
R2 Avast BreachGuard Service;Avast BreachGuard; C:\Program Files\Avast Software\BreachGuard\bgsvc.exe [2023-08-18 8098200]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [2023-07-31 586136]
R2 avast! Firewall;Avast Firewall Service; C:\Program Files\Avast Software\Avast\afwServ.exe [2023-07-31 2102168]
R2 avast! Tools;Avast Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [2023-07-31 587160]
R2 AvastAntiTrackSvc;Avast AntiTrack Service; C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AntiTrackSvc.exe [2023-01-05 5779160]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [2023-01-05 56912]
R2 CCleanerPerformanceOptimizerService;CCleaner Performance Optimizer Service; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [2023-08-11 1074080]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
R2 CDPUserSvc_616865;Uživatelská služba platformy připojených zařízení_616865; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
R2 CleanupPSvc;Avast Cleanup; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [2023-07-26 17765272]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe [2021-06-16 628616]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_04ffae6d80cb7adc\Display.NvContainer\NVDisplay.Container.exe [2023-06-20 1014792]
R2 OneSyncSvc_616865;Hostitel synchronizace_616865; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [2023-07-31 8901016]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
R3 cbdhsvc_616865;Uživatelská služba schránky_616865; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
S2 avast;Služba Avast Browser Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2023-01-06 191120]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S2 edgeupdate;Microsoft Edge Update Service (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2021-08-06 214952]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2023-01-05 171480]
S2 Intel(R) TPM Provisioning Service;@oem15.inf,%TPMProvisioningServiceName%;Intel(R) TPM Provisioning Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\TPMProvisioningService.exe [2021-09-15 729944]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 AarSvc_616865;Agent Activation Runtime_616865; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 avastm;Služba Avast Browser Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2023-01-06 191120]
S3 AvastSecureBrowserElevationService;Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService); C:\Program Files (x86)\AVAST Software\Browser\Application\115.0.21984.171\elevation_service.exe [2023-08-04 2037280]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 BcastDVRUserService_616865;Uživatelská služba pro GameDVR a vysílání her_616865; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 BluetoothUserService_616865;Služba pro podporu uživatelů Bluetooth_616865; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 CaptureService_616865;CaptureService_616865; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
S3 cloudidsvc;@%SystemRoot%\system32\cloudidsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 ConsentUxUserSvc_616865;ConsentUX_616865; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2023-01-05 382696]
S3 CredentialEnrollmentManagerUserSvc_616865;CredentialEnrollmentManagerUserSvc_616865; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2023-01-05 382696]
S3 dcsvc;@%systemroot%\system32\dcsvc,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 DeviceAssociationBrokerSvc_616865;DeviceAssociationBroker_616865; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 DevicePickerUserSvc_616865;DevicePicker_616865; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 DevicesFlowUserSvc_616865;Tok zařízení_616865; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2023-01-05 94208]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
S3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
S3 edgeupdatem;Microsoft Edge Update Service (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2021-08-06 214952]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
S3 GoogleChromeElevationService;Google Chrome Elevation Service (GoogleChromeElevationService); C:\Program Files\Google\Chrome\Application\115.0.5790.173\elevation_service.exe [2023-08-02 1745688]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2023-01-05 171480]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 Intel(R) Capability Licensing Service TCP IP Interface;@oem15.inf,%SocketHECIServiceName%;Intel(R) Capability Licensing Service TCP IP Interface; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\SocketHeciServer.exe [2021-09-15 785240]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [2023-07-24 9266864]
S3 McpManagementService;@%SystemRoot%\system32\McpManagementService.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 MessagingService_616865;Služba zasílání zpráv_616865; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service (MicrosoftEdgeElevationService); C:\Program Files (x86)\Microsoft\Edge\Application\115.0.1901.203\elevation_service.exe [2023-08-10 1750480]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2023-01-05 106496]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 PimIndexMaintenanceSvc_616865;Data kontaktů_616865; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 PrintWorkflowUserSvc_616865;PrintWorkflow_616865; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
S4 AGMService;Adobe Genuine Monitor Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2022-09-27 3866592]
S4 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2022-09-27 3702240]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2023-08-09 777088]
S4 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2023-01-05 55320]
S4 DialogBlockingService;@%SystemRoot%\system32\DialogBlockingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2023-01-05 55320]
S4 Chemtable Startup Checking;Chemtable Startup Checking; C:\Program Files\Reg Organizer\StartupCheckingService.exe [2020-12-09 11893552]
S4 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; D:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2023-04-18 224160]
S4 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]

-----------------EOF-----------------

sobtik · #4 Příspěvek od **sobtik** » 19 srp 2023 19:15

info.txt logfile of random's system information tool 1.10 2023-08-19 20:07:41

======MBR======

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

======Uninstall list======

7-Zip 22.01 (x64)-->"D:\Program Files\7-Zip\Uninstall.exe"
7-Zip 23.01 (x64 edition)-->MsiExec.exe /I{23170F69-40C1-2702-2301-000001000000}
Adobe Acrobat XI Pro-->MsiExec.exe /I{AC76BA86-1033-FFFF-7760-000000000006}
Adobe Genuine Service-->"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeCleanUpUtility.exe"
Adobe Refresh Manager-->MsiExec.exe /I{AC76BA86-0804-1033-1959-018244601047}
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0405-0000-0000000FF1CE} /uninstall {0A1FAC46-B899-421D-B1A2-470896DC45DB}
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0405-0000-0000000FF1CE} /uninstall {5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0405-0000-0000000FF1CE} /uninstall {E68DD413-B834-4923-8181-0A03B7555187}
AnyMP4 Video Converter Ultimate 8.5.20-->"D:\Program Files (x86)\AnyMP4 Studio\AnyMP4 Video Converter Ultimate\unins000.exe"
Avast AntiTrack Premium-->"C:\Program Files\Common Files\Avast Software\Icarus\avast-atrk\icarus.exe" /uninstall:avast-atrk
Avast BreachGuard-->"C:\Program Files\Common Files\Avast Software\Icarus\avast-bg\icarus.exe" /manual_update /uninstall:avast-bg
Avast Cleanup Premium-->"C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe" /manual_update /uninstall:avast-tu
Avast Premium Security-->"C:\Program Files\Avast Software\Avast\setup\Instup.exe" /control_panel
Avast Secure Browser-->"C:\Program Files (x86)\AVAST Software\Browser\AvastBrowserUninstall.exe" /run_source=cp
Avast SecureLine VPN-->"C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe" /manual_update /uninstall:avast-vpn
Avast Update Helper-->MsiExec.exe /I{19C3AB22-3718-4E4D-B203-242F5001565B}
Business Tour - Online Multiplayer Board Game-->"D:\Program Files (x86)\Steam\steam.exe" steam://uninstall/397900
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Counter-Strike: Global Offensive-->"D:\Program Files (x86)\Steam\steam.exe" steam://uninstall/730
CrystalDiskInfo 8.17.12-->"C:\Program Files\CrystalDiskInfo\unins000.exe"
Defraggler-->"C:\Program Files\Defraggler\uninst.exe"
EPSON Printer Software-->C:\WINDOWS\system32\spool\DRIVERS\x64\3\EPUPDATE.EXE /R
EPSON Scan-->C:\Program Files (x86)\epson\escndv\setup\setup.exe /r
Euro Truck Simulator 2-->"D:\Program Files (x86)\Steam\steam.exe" steam://uninstall/227300
Forza Horizon 5-->"D:\Program Files (x86)\DODI-Repacks\Forza Horizon 5\Uninstall\unins000.exe"
Google Chrome-->"C:\Program Files\Google\Chrome\Application\115.0.5790.173\Installer\setup.exe" --uninstall --channel=stable --system-level --verbose-logging
IObit Driver Booster 7.3.0.665-->"D:\Program Files (x86)\IObit\Driver Booster\unins000.exe"
Kontrola stavu osobního počítače s Windows-->MsiExec.exe /X{95548B78-8547-4E91-B0DA-1CBB82150917}
Malwarebytes version 4.5.32.271-->"C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mb4uns.exe"
Microsoft Edge WebView2 Runtime-->"C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.203\Installer\setup.exe" --uninstall --msedgewebview --system-level --verbose-logging
Microsoft Edge-->"C:\Program Files (x86)\Microsoft\Edge\Application\115.0.1901.203\Installer\setup.exe" --uninstall --msedge --channel=stable --system-level --verbose-logging
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0015-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0016-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0018-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0019-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001A-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001B-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-002A-0000-1000-0000000FF1CE} /uninstall {664655D8-B9BB-455D-8A58-7EAF7B0B2862}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-002A-0405-1000-0000000FF1CE} /uninstall {A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6E107EB7-8B55-48BF-ACCB-199F86A2CD93}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0044-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-006E-0405-0000-0000000FF1CE} /uninstall {A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-00A1-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-00BA-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
Microsoft Office Access MUI (Czech) 2007-->MsiExec.exe /X{90120000-0015-0405-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Czech) 2007-->MsiExec.exe /X{90120000-0016-0405-0000-0000000FF1CE}
Microsoft Office File Validation Add-In-->MsiExec.exe /I{90140000-2005-0000-0000-0000000FF1CE}
Microsoft Office Groove MUI (Czech) 2007-->MsiExec.exe /X{90120000-00BA-0405-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Czech) 2007-->MsiExec.exe /X{90120000-0044-0405-0000-0000000FF1CE}
Microsoft Office Office 64-bit Components 2007-->MsiExec.exe /X{90120000-002A-0000-1000-0000000FF1CE}
Microsoft Office OneNote MUI (Czech) 2007-->MsiExec.exe /X{90120000-00A1-0405-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Czech) 2007-->MsiExec.exe /X{90120000-001A-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2007-->MsiExec.exe /X{90120000-0018-0405-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2007-->MsiExec.exe /X{90120000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2007-->MsiExec.exe /X{90120000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Czech) 2007-->MsiExec.exe /X{90120000-002C-0405-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0405-0000-0000000FF1CE} /uninstall {0B7A4B67-2A38-42B1-9857-662FAB361E08}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {928D7B99-2BEA-49F9-83B8-20FA57860643}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {1FF96026-A04A-4C3E-B50A-BB7022654D0F}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-041B-0000-0000000FF1CE} /uninstall {FDF9A959-241A-4662-A8DE-7DED9C22D160}
Microsoft Office Publisher MUI (Czech) 2007-->MsiExec.exe /X{90120000-0019-0405-0000-0000000FF1CE}
Microsoft Office Shared 64-bit MUI (Czech) 2007-->MsiExec.exe /X{90120000-002A-0405-1000-0000000FF1CE}
Microsoft Office Shared MUI (Czech) 2007-->MsiExec.exe /X{90120000-006E-0405-0000-0000000FF1CE}
Microsoft Office Word MUI (Czech) 2007-->MsiExec.exe /X{90120000-001B-0405-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Update Health Tools-->MsiExec.exe /X{BB052C53-34CB-42DE-AF41-66FDFCEEC868}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148-->MsiExec.exe /X{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161-->MsiExec.exe /X{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030-->"C:\ProgramData\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030-->"C:\ProgramData\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030-->MsiExec.exe /X{37B8F9C7-03FB-3253-8781-2517C99D7C00}
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030-->MsiExec.exe /X{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030-->MsiExec.exe /X{B175520C-86A2-35A7-8619-86DC379688B9}
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030-->MsiExec.exe /X{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660-->"C:\ProgramData\Package Cache\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660-->"C:\ProgramData\Package Cache\{61087a79-ac85-455c-934d-1fa22cc64f36}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660-->MsiExec.exe /X{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660-->MsiExec.exe /X{CB0836EC-B072-368D-82B2-D3470BF95707}
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660-->MsiExec.exe /X{7DAD0258-515C-3DD4-8964-BD714199E0F7}
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660-->MsiExec.exe /X{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.31.31103-->"C:\ProgramData\Package Cache\{2aaf1df0-eb13-4099-9992-962bb4e596d1}\VC_redist.x64.exe" /uninstall
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103-->"C:\ProgramData\Package Cache\{41d7b770-418a-43b7-95a5-f925fff05789}\VC_redist.x86.exe" /uninstall
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.31.31103-->MsiExec.exe /I{A977984B-9244-49E3-BD24-43F0A8009667}
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.31.31103-->MsiExec.exe /I{A181A302-3F6D-4BAD-97A8-A426A6499D78}
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103-->MsiExec.exe /I{5720EC03-F26F-40B7-980C-50B5D420B5DE}
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103-->MsiExec.exe /I{799E3FFF-705C-461F-B400-6DE27398B3E5}
Microsoft XNA Framework Redistributable 4.0 Refresh-->MsiExec.exe /I{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}
Mozilla Firefox (x86 cs)-->"C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service-->"C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
NVIDIA Ovladače grafiky 512.15-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA Systémový software PhysX 9.21.0713-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.PhysX
OpenAL-->"C:\Program Files (x86)\OpenAL\oalinst.exe" /U
Realtek High Definition Audio Driver-->"C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe" -r -m -nrg2709
Reg Organizer verze 9.10-->"C:\Program Files\Reg Organizer\unins000.exe"
Security Update for Microsoft Office 2007 suites (KB2596650) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {DF2F5DAC-93D7-434B-96B1-EAF4D891AD24}
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B145DBBB-7778-4A5D-9D2B-DA6569F02391}
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E34960DB-2A93-45DB-A208-02650F7AB09C}
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B7727B4D-5EA3-4C11-9D30-15E47616DCAF}
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {293FB6BE-D3EB-4162-B522-F9108040B9FE}
Security Update for Microsoft Office 2007 suites (KB2596904) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {5BF3F29E-C924-48BB-AA3C-EA2BA14B7027}
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {2B3C041A-A7F2-4A24-968D-4BEB6A123D15}
Security Update for Microsoft Office 2007 suites (KB2825645) 32-Bit Edition -->msiexec /package {90120000-002A-0000-1000-0000000FF1CE} /uninstall {BF11577A-6876-45AA-86C9-2BA4CFB8B019}
Security Update for Microsoft Office 2007 suites (KB2825645) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {BF11577A-6876-45AA-86C9-2BA4CFB8B019}
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6B4A3804-666A-4DD8-84A7-B97701416784}
Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {36842896-D83B-4C92-8261-6312B7DEB562}
Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {4C1BE82B-9AC0-4AB9-B76D-5467131955E1}
Security Update for Microsoft Office 2007 suites (KB2881067) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {08F2015D-61E9-4252-9355-AB8D15C73C96}
Security Update for Microsoft Office 2007 suites (KB2956110) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {488CDF0A-098C-4CF5-8552-DA5F2F7B7829}
Security Update for Microsoft Office 2007 suites (KB2984938) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E359D786-B101-4545-B8AB-8652323CF3CA}
Security Update for Microsoft Office 2007 suites (KB2984943) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {800D1A82-D1B0-4ED4-89B4-C666B570ABA5}
Security Update for Microsoft Office 2007 suites (KB2986253) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {1EBDB402-7B61-4224-994D-6882DC69F493}
Security Update for Microsoft Office 2007 suites (KB3085549) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {8D2CDFAB-0079-43CC-A289-2F7A67F0A4DE}
Security Update for Microsoft Office 2007 suites (KB4011656) 32-Bit Edition -->msiexec /package {90120000-006E-0405-0000-0000000FF1CE} /uninstall {57DF346A-74EF-4049-9DBE-8E035C2FCB27}
Security Update for Microsoft Office Access 2007 (KB2596614) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {7F774C8A-B1CE-486C-A64E-EA96AE48B813}
Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB4011717) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {5C007116-E724-483B-BE67-870B5DB121A5}
Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB4018354) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {60463207-1C72-43FF-BE7E-E8E3A23FB756}
Security Update for Microsoft Office Excel 2007 (KB4018353) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {59859CCA-ECF5-407F-801A-99C0AA65DD92}
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {8F311D6C-D8DD-4C32-9457-1A129CABD1A5}
Security Update for Microsoft Office InfoPath 2007 (KB3114426) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {26C5C75F-E1FD-4F95-AA29-CA221C3AFEEE}
Security Update for Microsoft Office OneNote 2007 (KB3114456) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E0F25378-0690-4F53-998A-F5D63412BBD7}
Security Update for Microsoft Office OneNote 2007 (KB3191829) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {0FC61568-EC6B-4C62-ACAB-CA311D7A91FC}
Security Update for Microsoft Office Outlook 2007 (KB4011200) 32-Bit Edition -->msiexec /package {90120000-001A-0405-0000-0000000FF1CE} /uninstall {56AC5DA6-AF80-4B4D-BA80-82DB2434A621}
Security Update for Microsoft Office Outlook 2007 (KB4011200) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6612D084-0180-4A86-B2B3-FDFA4E7F9DF9}
Security Update for Microsoft Office PowerPoint 2007 (KB3213642) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {81769578-260D-428A-90BD-BDC1AD58061A}
Security Update for Microsoft Office Visio Viewer 2007 (KB2596915) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {7FE99CC2-FBE5-422F-A6FB-49E0D8AFE919}
Security Update for Microsoft Office Word 2007 (KB4018355) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6C57A6AB-7AEC-47A2-BDA9-B157361F37DE}
Sniper Ghost Warrior 3 Season Pass Edition-->"D:\Program Files (x86)\Sniper Ghost Warrior 3\unins000.exe"
Sons Of The Forest-->"D:\Program Files (x86)\DODI-Repacks\Sons Of The Forest\Uninstall\unins000.exe"
Steam-->D:\Program Files (x86)\Steam\uninstall.exe
Total Commander (Remove or Repair)-->D:\totalcmd\tcuninst.exe
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {A024FC7B-77DE-45DE-A058-1C049A17BFB3}
Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {02206DCC-0CAF-46BB-8EDC-6C281AA21EFA}
Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition-->msiexec /package {90120000-006E-0405-0000-0000000FF1CE} /uninstall {02206DCC-0CAF-46BB-8EDC-6C281AA21EFA}
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}
Update for Microsoft Office 2007 suites (KB2965286) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {7C3337E5-1294-4270-A64F-DCEF812159E5}
Update for Microsoft Office 2007 suites (KB3213646) 32-Bit Edition-->msiexec /package {90120000-006E-0405-0000-0000000FF1CE} /uninstall {A10BE5CB-C704-4085-832B-8DCA2827CDFB}
Update for Microsoft Office 2007 suites (KB3213649) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E39085A9-74AC-465D-8240-E7AF57F3BA44}
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB3115461) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {8C829BE5-F60C-417A-89E3-9A1B427320F2}
Update for Microsoft Office Publisher 2007 (KB4011203) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {962B4B3F-E8E5-4E11-B64B-1885D7F41BAA}
Update for Windows 10 for x64-based Systems (KB4023057)-->MsiExec.exe /X{8F2D6CEB-BC98-4B69-A5C1-78BED238FE77}
Update for Windows 10 for x64-based Systems (KB4480730)-->MsiExec.exe /X{0746492E-47B6-4251-940C-44462DFD74BB}
VLC media player-->"C:\Program Files\VideoLAN\VLC\uninstall.exe"
WinRAR 6.22 (64-bit)-->C:\Program Files\WinRAR\uninstall.exe

======Hosts File======

127.0.0.1 localhost
127.0.0.1 license.piriform.com
127.0.0.1 www.license.piriform.com
127.0.0.1 ccleaner.piriform.com
127.0.0.1 www.ccleaner.piriform.com
127.0.0.1 license-api.ccleaner.com

======System event log======

Computer Name: DESKTOP-B0TOJMF
Event Code: 26
Message: Při spouštění byla použita jednorázová spouštěcí sekvence.
Record Number: 5
Source Name: Microsoft-Windows-Kernel-Boot
Time Written: 20230105143603.761412-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: DESKTOP-B0TOJMF
Event Code: 153
Message: Zabezpečení založené na virtualizaci (zásady: 0) je disabled.
Record Number: 4
Source Name: Microsoft-Windows-Kernel-Boot
Time Written: 20230105143603.761355-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: DESKTOP-B0TOJMF
Event Code: 12
Message: Operační systém se spustil v systémovém čase ‎2023‎-‎01‎-‎05T14:36:03.500000000Z.
Record Number: 3
Source Name: Microsoft-Windows-Kernel-General
Time Written: 20230105143603.761281-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: DESKTOP-B0TOJMF
Event Code: 6005
Message: Služba Event Log byla spuštěna.
Record Number: 2
Source Name: EventLog
Time Written: 20230105143654.185187-000
Event Type: Informace
User:

Computer Name: DESKTOP-B0TOJMF
Event Code: 6009
Message: Microsoft (R) Windows (R) 10.00. 19045 Multiprocessor Free.
Record Number: 1
Source Name: EventLog
Time Written: 20230105143654.185187-000
Event Type: Informace
User:

=====Application event log=====

Computer Name: DESKTOP-B0TOJMF
Event Code: 63
Message: Pro zprostředkovatele DMWmiBridgeProv bylo v oboru názvů ROOT\CIMV2\mdm\dmmap rozhraní WMI (Windows Management Instrumentation) zaregistrováno používání účtu LocalSystem. Tento účet má nastavena vyšší oprávnění a zprostředkovatel může způsobovat narušení zabezpečení, pokud nebude správně zosobňovat žádosti uživatelů.
Record Number: 5
Source Name: Microsoft-Windows-WMI
Time Written: 20230105143632.361104-000
Event Type: Upozornění
User: NT AUTHORITY\SYSTEM

Computer Name: DESKTOP-B0TOJMF
Event Code: 63
Message: Pro zprostředkovatele DMWmiBridgeProv1 bylo v oboru názvů ROOT\CIMV2\mdm\dmmap rozhraní WMI (Windows Management Instrumentation) zaregistrováno používání účtu LocalSystem. Tento účet má nastavena vyšší oprávnění a zprostředkovatel může způsobovat narušení zabezpečení, pokud nebude správně zosobňovat žádosti uživatelů.
Record Number: 4
Source Name: Microsoft-Windows-WMI
Time Written: 20230105143632.327560-000
Event Type: Upozornění
User: NT AUTHORITY\SYSTEM

Computer Name: DESKTOP-B0TOJMF
Event Code: 63
Message: Pro zprostředkovatele DMWmiBridgeProv1 bylo v oboru názvů ROOT\CIMV2\mdm\dmmap rozhraní WMI (Windows Management Instrumentation) zaregistrováno používání účtu LocalSystem. Tento účet má nastavena vyšší oprávnění a zprostředkovatel může způsobovat narušení zabezpečení, pokud nebude správně zosobňovat žádosti uživatelů.
Record Number: 3
Source Name: Microsoft-Windows-WMI
Time Written: 20230105143632.322764-000
Event Type: Upozornění
User: NT AUTHORITY\SYSTEM

Computer Name: DESKTOP-B0TOJMF
Event Code: 5617
Message: Subsystémy služby WMI (Windows Management Instrumentation) byly úspěšně inicializovány.
Record Number: 2
Source Name: Microsoft-Windows-WMI
Time Written: 20230105143632.168757-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: DESKTOP-B0TOJMF
Event Code: 5615
Message: Služba WMI (Windows Management Instrumentation) byla úspěšně spuštěna.
Record Number: 1
Source Name: Microsoft-Windows-WMI
Time Written: 20230105143631.892028-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

=====Security event log=====

Computer Name: Lukáš
Event Code: 4907
Message: Nastavení auditu objektu se změnila.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: LUKÁŠ$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7

Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: C:\Windows\SysWOW64\logoncli.dll
ID popisovače: 0x64

Informace o procesu:
ID procesu: 0x2da4
Název procesu: C:\Windows\System32\poqexec.exe

Nastavení auditu:
Původní popisovač zabezpečení: S:AINO_ACCESS_CONTROL
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 158802
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20230712155941.044452-000
Event Type: Úspěšný audit
User:

Computer Name: Lukáš
Event Code: 4907
Message: Nastavení auditu objektu se změnila.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: LUKÁŠ$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7

Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: C:\Windows\SysWOW64\LaunchWinApp.exe
ID popisovače: 0x64

Informace o procesu:
ID procesu: 0x2da4
Název procesu: C:\Windows\System32\poqexec.exe

Nastavení auditu:
Původní popisovač zabezpečení: S:AINO_ACCESS_CONTROL
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 158801
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20230712155941.043081-000
Event Type: Úspěšný audit
User:

Computer Name: Lukáš
Event Code: 4907
Message: Nastavení auditu objektu se změnila.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: LUKÁŠ$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7

Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: C:\Windows\SysWOW64\keyiso.dll
ID popisovače: 0x64

Informace o procesu:
ID procesu: 0x2da4
Název procesu: C:\Windows\System32\poqexec.exe

Nastavení auditu:
Původní popisovač zabezpečení: S:AINO_ACCESS_CONTROL
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 158800
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20230712155941.041984-000
Event Type: Úspěšný audit
User:

Computer Name: Lukáš
Event Code: 4907
Message: Nastavení auditu objektu se změnila.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: LUKÁŠ$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7

Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: C:\Windows\SysWOW64\KernelBase.dll
ID popisovače: 0x64

Informace o procesu:
ID procesu: 0x2da4
Název procesu: C:\Windows\System32\poqexec.exe

Nastavení auditu:
Původní popisovač zabezpečení: S:AINO_ACCESS_CONTROL
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 158799
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20230712155941.040890-000
Event Type: Úspěšný audit
User:

Computer Name: Lukáš
Event Code: 4907
Message: Nastavení auditu objektu se změnila.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: LUKÁŠ$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7

Objekt:
Server objektu: Security
Typ objektu: File
Název objektu: C:\Windows\SysWOW64\kernel32.dll
ID popisovače: 0x64

Informace o procesu:
ID procesu: 0x2da4
Název procesu: C:\Windows\System32\poqexec.exe

Nastavení auditu:
Původní popisovač zabezpečení: S:AINO_ACCESS_CONTROL
Nový popisovač zabezpečení: S:ARAI(AU;SAFA;DCLCRPCRSDWDWO;;;WD)
Record Number: 158798
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20230712155941.038568-000
Event Type: Úspěšný audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"DriverData"=C:\Windows\System32\Drivers\DriverData
"OS"=Windows_NT
"Path"=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"PSModulePath"=%ProgramFiles%\WindowsPowerShell\Modules;%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 94 Stepping 3, GenuineIntel
"PROCESSOR_REVISION"=5e03
"PROGF81DEF27053"=1

-----------------EOF-----------------

#5 Příspěvek od **Rudy** » 19 srp 2023 20:46

Pardon, já to spletl. Chtěl jsem po vás nové FRST+Addition z nově staženénho FRST. RSIT je už dnes víceméně off. Omlouvám se.

sobtik · #6 Příspěvek od **sobtik** » 19 srp 2023 20:53

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-08-2023 01
Ran by Lukáš (administrator) on LUKÁŠ (MSI MS-7971) (19-08-2023 21:50:04)
Running from C:\Users\Lukáš\Desktop\FRST64.exe
Loaded Profiles: Lukáš
Platform: Microsoft Windows 10 Pro Version 22H2 19045.3324 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe ->) (Avast Software s.r.o. -> Software Security System) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Ekag20nt.exe
(C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe ->) (Avast Software s.r.o. -> The CefSharp Authors) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe <5>
(C:\Program Files (x86)\Avast Software\Browser\Application\AvastBrowser.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe ->) (Avast Software s.r.o. -> Avast Software) C:\Program Files\Avast Software\SecureLine VPN\WireGuard\wireguardtun.exe
(cmd.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastNM.exe
(cmd.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\VpnNM.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\Avast Software\Browser\Application\AvastBrowser.exe <14>
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\BreachGuard\bgui.exe <3>
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe <4>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AntiTrackSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\BreachGuard\bgsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdig.inf_amd64_04ffae6d80cb7adc\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe
(svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe <4>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102808 2021-09-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [256408 2023-07-31] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Avast BreachGuard] => C:\Program Files\Avast Software\BreachGuard\bgui.exe [7778200 2023-08-18] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4543384 2023-07-26] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476960 2022-09-27] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => D:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3500056 2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\Run: [EPSON Stylus DX4400] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE [211456 2007-03-01] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\Run: [Steam] => D:\Program Files (x86)\Steam\steam.exe [4374376 2023-07-28] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41584544 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\Policies\Explorer: []
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [55432 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc)
HKLM\...\Print\Monitors\EPSON Stylus DX4400 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMCAE.DLL [108032 2007-12-07] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\115.0.5790.173\Installer\chrmstp.exe [2023-08-18] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\115.0.21984.171\Installer\chrmstp.exe [2023-08-10] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2023-08-02]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {62E042C2-20C9-4A4E-9156-B03B7A8A3174} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {BC8C74C7-A657-4482-B5E1-B661E6DBE724} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3476960 2022-09-27] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {9FFC3C52-649A-47C1-948E-00B66CC7AF94} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4944792 2023-07-31] (Avast Software s.r.o. -> AVAST Software)
Task: {C48CE9A1-4C9A-429A-AF48-749D911A9BBA} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3355424 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
Task: {ED8B7D5C-B53A-4956-B265-604920E08206} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3355424 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
Task: {5FE9F4BA-B8C9-4EFC-AC33-FC8E4FE92F23} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1294232 2023-08-01] (Avast Software s.r.o. -> AVAST Software)
Task: {561ED484-5FC5-4451-8C63-B9E10BA67E8C} - System32\Tasks\Avast Software\Avast BreachGuard Crash Reporter => C:\Program Files\Avast Software\BreachGuard\AvBugReport.exe [4758424 2023-08-18] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 135 --path "C:\ProgramData\Avast Software\BreachGuard\log" --logpath "C:\ProgramData\Avast Software\BreachGuard\log" --configpath "C:\Program Files\Avast Software\BreachGuard\Setup" --programpath "C:\Program Files\Avast Software\BreachGuard" --guid 02b20a95-2 (the data entry has 26 more characters).
Task: {500C566D-2F9D-411B-85DC-979667305B33} - System32\Tasks\Avast Software\Avast BreachGuard Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-bg\icarus.exe [7212952 2023-08-17] (Avast Software s.r.o. -> Avast Software)
Task: {47AB2147-215E-4C42-A407-7E8A32B6D077} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4758936 2023-07-26] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters).
Task: {8AF66EA6-E914-4F57-BB3C-6BBA946CB615} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7212952 2023-07-18] (Avast Software s.r.o. -> Avast Software)
Task: {5F4B65A8-1904-4621-B2D3-77CB29BF0CE7} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4759448 2023-08-01] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {217710EB-B043-4F72-A3CA-79F64F1487A5} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [7092120 2023-07-18] (Avast Software s.r.o. -> Avast Software)
Task: {1B2B546E-A55D-4B1B-BA20-F45B86C65024} - System32\Tasks\Avast Software\AvastAntiTrackPremiumStart => C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe [813008 2023-01-05] (Avast Software s.r.o. -> AVAST Software)
Task: {B744C9A7-8EC6-48E9-8008-C6E8A8373023} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software)
Task: {841AE254-93E4-47FE-BEEE-B757924AF70D} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-01-06] (Avast Software s.r.o. -> AVAST Software)
Task: {81F6E20A-B1FA-4413-90DD-E34E3F4EDAB4} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-01-06] (Avast Software s.r.o. -> AVAST Software)
Task: {38A7DD0C-8BF4-457E-9A1A-76627028878A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {FED111C5-7334-4DCE-A10E-886CB4AF2CE3} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "d9f0b945-76cc-4851-be73-2f55f7b93847" --version "6.15.10623" --silent
Task: {1A66F5DA-960C-4516-A1F2-3A297C53D463} - System32\Tasks\CCleanerSkipUAC - Lukáš => C:\Program Files\CCleaner\CCleaner.exe [34687904 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {97733774-C4B0-4EE3-8C43-97763317A7BC} - System32\Tasks\DelayedItemsByChemtableSoftware\AdobeAAMUpdater-1.0 => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {BE107D24-6FF6-4A83-AFFB-163A47B945C2} - System32\Tasks\DelayedItemsByChemtableSoftware\CCleaner Smart Cleaning => C:\Program Files\CCleaner\CCleaner64.exe [41584544 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {8C99C1EF-02DA-4E67-B06E-94F29A118CDE} - System32\Tasks\DelayedItemsByChemtableSoftware\TuneupUI.exe => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4543384 2023-07-26] (Avast Software s.r.o. -> AVAST Software)
Task: {1858738A-B5F5-4058-8727-6B47E92E8ACB} - System32\Tasks\GoogleUpdateTaskMachineCore{9A7EBA52-87A3-4C08-BC53-C8AB6316FCF1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-05] (Google LLC -> Google LLC)
Task: {0C8095F5-F09A-4C8C-936A-D8F78008CB3A} - System32\Tasks\GoogleUpdateTaskMachineUA{D5585994-8415-4F0F-9A8D-D7E32A43FE76} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-05] (Google LLC -> Google LLC)
Task: {CEA74434-58FB-499A-A755-482743885D50} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {A17BDF3E-BDFE-4925-BA4A-ACB039518767} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(1): %windir%\system32\compattelrunner.exe -> -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc
Task: {A17BDF3E-BDFE-4925-BA4A-ACB039518767} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(2): %windir%\system32\compattelrunner.exe -> -m:appraiser.dll -f:DoScheduledTelemetryRun
Task: {A17BDF3E-BDFE-4925-BA4A-ACB039518767} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(3): %windir%\system32\compattelrunner.exe -> -m:aemarebackup.dll -f:BackupMareData
Task: {6979F60E-62CE-4A37-83CB-8DF0EF578E5D} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [609696 2023-08-18] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {347A4F69-9EB6-441A-A761-020078F4EF5F} - System32\Tasks\Reg Organizer => C:\Program Files\Reg Organizer\RegOrganizer.exe [34802744 2022-12-29] (Konstantin Polyakov -> Chemtable Software) -> -Minimize

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2bede604-00e3-4178-8657-ace3cc770b0c}: [NameServer] 100.120.236.1
Tcpip\..\Interfaces\{41766173-7453-6f66-7477-617265415357}: [NameServer] 100.126.0.1
Tcpip\..\Interfaces\{ff03a4b9-45ff-4be3-bc33-57f7fcef37e5}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Lukáš\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-19]
Edge Extension: (Avast Online Security & Privacy) - C:\Users\Lukáš\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fdgpikaaheckgdijjmepmdjjkbceakif [2023-01-05]

FireFox:
========
FF DefaultProfile: m6u31hwo.default
FF ProfilePath: C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\m6u31hwo.default [2023-05-08]
FF ProfilePath: C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\3ncbf8jp.default-release [2023-08-19]
FF Homepage: Mozilla\Firefox\Profiles\3ncbf8jp.default-release -> www.centrum.cz
FF Extension: (Avast SecureLine VPN) - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\3ncbf8jp.default-release\Extensions\secureline-vpn@avast.com.xpi [2023-03-19]
FF Extension: (Avast Online Security & Privacy) - C:\Users\Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\3ncbf8jp.default-release\Extensions\wrc@avast.com.xpi [2023-03-18]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2017-11-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2023-01-06] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2023-01-06] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems Incorporated -> Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default [2023-08-09]
CHR Extension: (Adobe Acrobat: nástroje pro úpravu, převod a podpis souborů PDF) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-07-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-24]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2023-01-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-01-05]
CHR Extension: (Avast SecureLine VPN) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\phmegojolgpbbcnhccbfneddlooepbpd [2023-03-19]
CHR Extension: (Avast AntiTrack Premium) - C:\Users\Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdidpcihajhihmghhhkfnpklgdehold [2023-01-05]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2017-11-01]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3866592 2022-09-27] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3702240 2022-09-27] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8901016 2023-07-31] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-01-06] (Avast Software s.r.o. -> AVAST Software)
R2 Avast BreachGuard Service; C:\Program Files\Avast Software\BreachGuard\bgsvc.exe [8098200 2023-08-18] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [586136 2023-07-31] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2102168 2023-07-31] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [587160 2023-07-31] (Avast Software s.r.o. -> AVAST Software)
R2 AvastAntiTrackSvc; C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AntiTrackSvc.exe [5779160 2023-01-05] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2023-01-06] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\115.0.21984.171\elevation_service.exe [2037280 2023-08-04] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-01-05] (Avast Software s.r.o. -> AVAST Software)
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-08-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
S4 Chemtable Startup Checking; C:\Program Files\Reg Organizer\StartupCheckingService.exe [ ]
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [17765272 2023-07-26] (Avast Software s.r.o. -> AVAST Software)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9266864 2023-07-24] (Malwarebytes Inc. -> Malwarebytes)
S4 Microsoft Office Groove Audit Service; D:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [64856 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [10781080 2023-08-01] (Avast Software s.r.o. -> AVAST Software)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [402200 2023-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2211.5-0\NisSrv.exe [3191264 2023-01-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2211.5-0\MsMpEng.exe [133592 2023-01-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_04ffae6d80cb7adc\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_04ffae6d80cb7adc\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237984 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392880 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297880 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95960 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2023-01-05] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [272568 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [559136 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105240 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [946048 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [705376 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212632 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319512 2023-07-31] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [76568 2023-08-01] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
R3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [51112 2023-01-05] (Avast Software s.r.o. -> AVAST Software)
R3 aswWireGuard; C:\WINDOWS\System32\drivers\aswWireguard.sys [498992 2023-01-05] (Avast Software s.r.o. -> WireGuard LLC)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2023-01-05] (Martin Malik - REALiX -> REALiX(tm))
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-05-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-05-08] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [124952 2023-01-05] (Avast Software s.r.o. -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2023-01-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [473376 2023-01-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2023-01-05] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-08-19 21:50 - 2023-08-19 21:50 - 000030758 _____ C:\Users\Lukáš\Desktop\FRST.txt
2023-08-19 21:48 - 2023-08-19 21:48 - 002385408 _____ (Farbar) C:\Users\Lukáš\Desktop\FRST64.exe
2023-08-19 20:07 - 2023-08-19 20:07 - 000000000 ____D C:\rsit
2023-08-19 20:07 - 2023-08-19 20:07 - 000000000 ____D C:\Program Files\trend micro
2023-08-19 13:22 - 2023-08-19 13:22 - 000443840 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-08-19 13:16 - 2023-08-19 13:16 - 000012812 _____ C:\Users\Lukáš\Downloads\[SkT]Rychle a zběsile 10 _ Fast X (2023)(CZ)[WEB-DL][1080p] = CSFD 57%.torrent
2023-08-16 17:27 - 2023-08-16 17:27 - 000000000 ____D C:\Program Files\7-Zip
2023-08-14 17:40 - 2023-08-14 17:40 - 000031004 _____ C:\Users\Lukáš\Downloads\289492949_20230731_7_MCZB.pdf
2023-08-09 17:57 - 2023-08-09 17:57 - 000000000 ___HD C:\$WinREAgent
2023-08-02 18:49 - 2023-08-02 18:49 - 000243071 _____ C:\Users\Lukáš\Downloads\zpo_8860674013_6523VB010383_153512 (1).pdf
2023-08-02 18:38 - 2023-08-02 18:38 - 000247636 _____ C:\Users\Lukáš\Downloads\zpo_8830749012_6523VB007555_153512.pdf
2023-08-01 18:50 - 2023-08-01 18:50 - 000249932 _____ C:\Users\Lukáš\Downloads\zpo_8820596014_6523VB009318_153512.pdf
2023-08-01 18:00 - 2023-08-01 18:00 - 000252806 _____ C:\Users\Lukáš\Downloads\zpo_8810663015_6523VB009162_153512.pdf
2023-07-31 17:22 - 2023-07-31 17:22 - 000000000 ____D C:\WINDOWS\Panther
2023-07-31 17:21 - 2023-07-31 17:21 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-07-28 17:28 - 2023-07-28 17:28 - 000243071 _____ C:\Users\Lukáš\Downloads\zpo_8860674013_6523VB010383_153512.pdf
2023-07-28 15:00 - 2023-07-28 15:00 - 001019235 _____ C:\Users\Lukáš\Downloads\IK - Nováka.zip
2023-07-26 20:33 - 2023-07-26 20:33 - 000243685 _____ C:\Users\Lukáš\Downloads\zpo_8602261N0023_6523VB006744_153512.pdf
2023-07-26 20:29 - 2023-07-26 20:29 - 000013736 _____ C:\Users\Lukáš\Desktop\Objednání_RZ_-_Porubská.xlsx
2023-07-26 20:26 - 2023-07-26 20:26 - 000250867 _____ C:\Users\Lukáš\Downloads\zpo_8840709024_6523VB005405_153512.pdf
2023-07-26 20:26 - 2023-07-26 20:26 - 000013739 _____ C:\Users\Lukáš\Downloads\Objednání_RZ_-_Výhradní.xlsx
2023-07-26 20:22 - 2023-07-26 20:22 - 000247734 _____ C:\Users\Lukáš\Downloads\zpo_8810466012_6523VB006572_153512.pdf
2023-07-26 20:11 - 2023-07-26 20:11 - 000259945 _____ C:\Users\Lukáš\Downloads\zpo_8750474002_6523VB006548_153512.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-08-19 21:50 - 2023-05-08 09:25 - 000000000 ____D C:\FRST
2023-08-19 21:50 - 2023-01-05 21:18 - 000000000 ____D C:\Program Files (x86)\Google
2023-08-19 21:50 - 2023-01-05 16:31 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-08-19 21:43 - 2023-01-05 17:38 - 000000000 ____D C:\Users\Lukáš\AppData\Roaming\vlc
2023-08-19 21:36 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-08-19 20:06 - 2023-07-10 17:33 - 000000000 ____D C:\Program Files\CCleaner
2023-08-19 20:06 - 2023-01-05 21:01 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-08-19 19:49 - 2023-01-05 20:32 - 000000000 ____D C:\Users\Lukáš\AppData\Local\AvastAntiTrackPremium
2023-08-19 14:39 - 2023-01-05 16:38 - 000000000 ____D C:\Users\Lukáš
2023-08-19 14:39 - 2023-01-05 14:25 - 000000000 ____D C:\ProgramData\NVIDIA
2023-08-19 14:23 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-08-19 14:22 - 2023-01-05 20:32 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2023-08-19 14:21 - 2023-01-05 16:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-08-19 14:21 - 2023-01-05 16:36 - 000008192 ___SH C:\DumpStack.log.tmp
2023-08-19 14:21 - 2023-01-05 16:36 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-08-19 14:13 - 2023-01-05 17:37 - 000000000 ____D C:\Users\Lukáš\AppData\Roaming\uTorrent
2023-08-19 12:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-08-19 11:43 - 2023-05-08 10:08 - 000000000 ____D C:\Program Files\Defraggler
2023-08-19 11:41 - 2023-07-10 17:33 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-08-19 11:41 - 2023-01-05 20:27 - 000000000 ____D C:\ProgramData\Avast Software
2023-08-18 18:56 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-08-18 18:36 - 2023-07-10 17:33 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-08-18 18:36 - 2023-07-10 17:33 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-08-18 18:36 - 2023-07-10 17:33 - 000002254 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Lukáš
2023-08-18 18:36 - 2023-05-18 19:26 - 000003486 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{D5585994-8415-4F0F-9A8D-D7E32A43FE76}
2023-08-18 18:36 - 2023-05-18 19:26 - 000003262 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{9A7EBA52-87A3-4C08-BC53-C8AB6316FCF1}
2023-08-18 18:36 - 2023-01-06 18:14 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-08-18 18:36 - 2023-01-05 20:55 - 000003644 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{4ED34372-586B-4F32-B1D8-C0F163F59826}
2023-08-18 18:36 - 2023-01-05 20:55 - 000003420 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{14D1D0EB-2AAB-447B-B940-2E7506141A6A}
2023-08-18 18:36 - 2023-01-05 20:54 - 000003220 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2023-08-18 18:36 - 2023-01-05 20:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-08-18 18:36 - 2023-01-05 16:43 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1425878809-3904051324-2884316882-1001
2023-08-18 18:36 - 2023-01-05 16:43 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1425878809-3904051324-2884316882-1001
2023-08-18 18:04 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-08-18 17:05 - 2023-01-05 21:01 - 000001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-08-18 17:05 - 2023-01-05 21:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2023-08-18 17:04 - 2023-01-05 21:19 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-08-18 17:04 - 2023-01-05 21:19 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-08-18 16:59 - 2023-01-05 20:30 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-08-18 16:55 - 2023-05-20 19:56 - 000000000 ____D C:\Users\Lukáš\AppData\Local\Malwarebytes
2023-08-16 17:27 - 2023-01-11 19:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2023-08-14 17:35 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-08-14 17:08 - 2023-01-05 16:38 - 000002381 _____ C:\Users\Lukáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-08-12 19:33 - 2023-01-05 16:37 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-08-12 19:33 - 2023-01-05 16:37 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-08-10 15:52 - 2023-01-06 15:25 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2023-08-10 15:52 - 2023-01-06 15:25 - 000002463 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2023-08-09 19:29 - 2023-01-05 16:44 - 001605602 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-08-09 19:29 - 2019-12-07 16:43 - 000682184 _____ C:\WINDOWS\system32\perfh005.dat
2023-08-09 19:29 - 2019-12-07 16:43 - 000137000 _____ C:\WINDOWS\system32\perfc005.dat
2023-08-09 19:19 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-08-09 19:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-08-09 19:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-08-09 19:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-08-09 19:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-08-09 19:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-08-09 19:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-08-09 19:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-08-09 19:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
2023-08-09 18:14 - 2023-01-05 16:39 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-08-09 17:56 - 2023-01-05 14:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-08-09 17:54 - 2023-01-05 14:38 - 175983240 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-08-01 19:03 - 2023-01-09 18:11 - 000000000 ____D C:\Users\Lukáš\Desktop\Kostky
2023-08-01 19:00 - 2023-01-09 18:11 - 000000000 ____D C:\Users\Lukáš\Desktop\Excel
2023-08-01 17:40 - 2023-07-13 20:36 - 000003206 _____ C:\WINDOWS\system32\Tasks\Reg Organizer
2023-08-01 17:35 - 2023-03-19 11:57 - 000000000 ____D C:\WINDOWS\system32\Tasks\DelayedItemsByChemtableSoftware
2023-07-31 17:23 - 2023-06-21 15:06 - 000000000 ____D C:\ProgramData\FLEXnet
2023-07-31 17:21 - 2023-01-05 20:30 - 000946048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-07-31 17:21 - 2023-01-05 20:30 - 000705376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-07-31 17:21 - 2023-01-05 20:30 - 000559136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-07-31 17:21 - 2023-01-05 20:30 - 000392880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-07-31 17:21 - 2023-01-05 20:30 - 000319512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-07-31 17:21 - 2023-01-05 20:30 - 000297880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-07-31 17:21 - 2023-01-05 20:30 - 000272568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-07-31 17:21 - 2023-01-05 20:30 - 000237984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-07-31 17:21 - 2023-01-05 20:30 - 000105240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-07-31 17:21 - 2023-01-05 20:30 - 000095960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-07-31 17:21 - 2023-01-05 20:30 - 000080416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-07-31 17:21 - 2023-01-05 20:30 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-07-31 17:21 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-07-26 20:36 - 2023-01-27 20:40 - 000000000 ____D C:\Users\Lukáš\AppData\Local\Steam
2023-07-24 17:24 - 2023-06-21 15:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2023-07-24 17:11 - 2023-06-21 15:02 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared
2023-07-24 17:10 - 2023-01-05 20:31 - 000000000 ____D C:\ProgramData\Package Cache
2023-07-23 21:39 - 2023-01-05 21:53 - 000000000 ____D C:\Users\Lukáš\AppData\Local\CrashDumps
2023-07-23 21:18 - 2023-01-05 16:46 - 000000000 ____D C:\Users\Lukáš\AppData\Local\D3DSCache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

sobtik · #7 Příspěvek od **sobtik** » 19 srp 2023 20:54

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-08-2023 01
Ran by Lukáš (19-08-2023 21:52:06)
Running from C:\Users\Lukáš\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.3324 (X64) (2023-01-05 14:44:16)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1425878809-3904051324-2884316882-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1425878809-3904051324-2884316882-503 - Limited - Disabled)
Guest (S-1-5-21-1425878809-3904051324-2884316882-501 - Limited - Disabled)
Lukáš (S-1-5-21-1425878809-3904051324-2884316882-1001 - Administrator - Enabled) => C:\Users\Lukáš
WDAGUtilityAccount (S-1-5-21-1425878809-3904051324-2884316882-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
7-Zip 23.01 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2301-000001000000}) (Version: 23.01.00.0 - Igor Pavlov)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.23 - Adobe Systems)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.1.0.3 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601047}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
AnyMP4 Video Converter Ultimate 8.5.20 (HKLM-x32\...\{B77ACAAE-53EE-43c3-86F1-4AEA52F6CDD5}_is1) (Version: 8.5.20 - AnyMP4 Studio)
Avast AntiTrack Premium (HKLM-x32\...\AvastAntiTrackPremium) (Version: 3.3.983.1074 - Avast Software)
Avast BreachGuard (HKLM\...\AvastBreachGuard) (Version: 23.3.2136.7846 - Avast Software)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.2.13795.13400 - Avast Software)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 23.7.6074 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 115.0.21984.171 - Autoři prohlížeče Avast Secure Browser)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 5.26.8502.8974 - Avast Software)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.15 - Piriform)
CrystalDiskInfo 8.17.12 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.17.12 - Crystal Dew World)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
EPSON Printer Software (HKLM\...\EPSON Printer and Utilities) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
Forza Horizon 5 (HKLM-x32\...\Forza Horizon 5_is1) (Version: 0.0.0 - DODI-Repacks)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 115.0.5790.173 - Google LLC)
IObit Driver Booster 7.3.0.665 (HKLM-x32\...\IObit Driver Booster_is1) (Version: 7.3.0.665 - lrepacks.ru)
Kontrola stavu osobního počítače s Windows (HKLM\...\{95548B78-8547-4E91-B0DA-1CBB82150917}) (Version: 3.7.2204.15001 - Microsoft Corporation)
Malwarebytes version 4.5.32.271 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.32.271 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 115.0.1901.203 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 115.0.1901.203 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\OneDriveSetup.exe) (Version: 23.153.0724.0003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.31.31103 (HKLM-x32\...\{2aaf1df0-eb13-4099-9992-962bb4e596d1}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.31.31103 (HKLM\...\{A977984B-9244-49E3-BD24-43F0A8009667}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.31.31103 (HKLM\...\{A181A302-3F6D-4BAD-97A8-A426A6499D78}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox (x86 cs) (HKLM-x32\...\Mozilla Firefox 116.0.3 (x86 cs)) (Version: 116.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 108.0.2 - Mozilla)
NVIDIA Ovladače grafiky 512.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 512.15 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9235.1 - Realtek Semiconductor Corp.)
Reg Organizer verze 9.10 (HKLM\...\Reg Organizer_is1) (Version: 9.10 - ChemTable Software)
Sniper Ghost Warrior 3 Season Pass Edition (HKLM-x32\...\Sniper Ghost Warrior 3 Season Pass Edition_is1) (Version: - )
Sons Of The Forest (HKLM-x32\...\Sons Of The Forest_is1) (Version: 0.0.0 - DODI-Repacks)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 11.00 - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{8F2D6CEB-BC98-4B69-A5C1-78BED238FE77}) (Version: 2.71.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
WinRAR 6.22 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.22.0 - win.rar GmbH)

Packages:
=========
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-14] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2023-01-05] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2023-01-05] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-03-09] (NVIDIA Corp.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.8040.0_x64__8wekyb3d8bbwe [2023-08-14] (Microsoft Studios) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1425878809-3904051324-2884316882-1001_Classes\CLSID\{D5C4136A-93E5-4678-A6F8-0B2D9BB10999}\localserver32 -> C:\WINDOWS\System32\RunDll32.exe "C:\Program Files\Reg Organizer\Notifications.dll",Activate -ToastActivated => No File
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-31] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-31] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-31] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-31] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-05-08] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdig.inf_amd64_04ffae6d80cb7adc\nvshext.dll [2023-06-20] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-31] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-05-08] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2012-09-23 21:44 - 2012-09-23 21:44 - 000010240 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\cs_cz\Acrobat Elements\ContextMenuShim64.cze
2023-06-20 13:00 - 2023-06-20 13:00 - 000101376 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2023-01-05 20:31 - 2023-01-05 20:31 - 000180224 _____ (Software Security System) [File not signed] C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Ekc3220.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKLM\...\.scr: => <==== ATTENTION

==================== Internet Explorer (Whitelisted) ==========

BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-07-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-07-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-07-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-07-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2017-07-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2017-07-27] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-03-18 23:03 - 2023-07-31 17:30 - 000000189 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 license.piriform.com
127.0.0.1 www.license.piriform.com
127.0.0.1 ccleaner.piriform.com
127.0.0.1 www.ccleaner.piriform.com
127.0.0.1 license-api.ccleaner.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 100.126.0.1 - 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "TuneupUI.exe"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "GrooveMonitor"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App"
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{C76BCD50-DE55-4ED1-87BB-5F67CA68A7C1}C:\users\lukáš\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lukáš\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{13C322B3-C00B-48E3-B5EF-312A7F9711DD}C:\users\lukáš\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lukáš\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{28C8275D-E1BA-4F7F-8BB2-1FFF37D7ED77}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3CCB8135-4898-42A1-9981-C3A77C8F1E4D}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4CF666F7-6338-400B-8203-3446B064DD5E}] => (Allow) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe (Avast Software s.r.o. -> The CefSharp Authors)
FirewallRules: [{185B47D7-3ACC-4D09-B587-A795C136465A}] => (Allow) C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe (Avast Software s.r.o. -> The CefSharp Authors)
FirewallRules: [{A2F98793-92F9-4DC3-8F1E-96443EE709B3}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1B97F967-6419-47FB-B002-4165422BB96B}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{77D9199A-52C6-4184-BED2-C95F416886FB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D9B50D3A-4969-4275-BA48-C3DFE6D24E1E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C0D139BB-5B25-4638-8D24-A635BD35AC43}] => (Allow) C:\Program Files\Avast Software\BreachGuard\bgui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{EDDE7316-3BF0-460B-884A-993928051E67}] => (Allow) C:\Program Files\Avast Software\BreachGuard\bgui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{EBF6AE35-70F6-4CFD-8925-E44A918EBB14}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6C0785C0-53CD-43AD-A201-83080BFCCC6F}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9FA2D93C-E36F-46B2-BD8A-1F3BA51CCDDB}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{BCEB3DA2-1C39-4292-A266-76036B80C724}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D925BA30-5CA6-4EEB-9952-CAA5543873E2}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6F264E5D-286A-472E-B7E2-6ED7D9A9AD8C}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{01CB345A-A4BA-414E-8E63-2FDAF98A7087}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe () [File not signed]
FirewallRules: [{4532C924-6A58-4E86-9B3E-3EB5BC69B0C6}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe () [File not signed]
FirewallRules: [{6701FBAB-CA2F-4F42-B1CA-816F171A512C}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{2D12B504-A378-40B1-9CDC-1BAB2B5414D5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [{CDF42127-1809-466D-8EAF-F0C309B3B2E3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{386A25BC-6E76-40B4-9D69-26939803CD51}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{895D6DC2-B8BC-4638-9CC6-8A2C9E940326}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{B0A6853A-D02F-4EA3-B65D-03C876E9CBE8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{37411446-438C-4AB1-A7A3-7B8C020EA92E}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0B185F59-77FB-4C03-BEB9-5D9D2C440526}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.203\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D6A31A9E-E414-4647-9091-43D4138E37BC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.101.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{64236FF1-0438-4894-B460-A13E3BC9AD1E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.101.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DA007547-3267-4A9F-BFF1-073D1C6971BB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.101.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1AAE4D26-EC7D-4905-8141-93D0396C78C8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.101.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F01B9B50-C44C-484D-8787-187607E962DA}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

09-08-2023 17:56:55 Instalační služba modulů systému Windows
09-08-2023 17:57:37 Instalační služba modulů systému Windows
09-08-2023 17:58:01 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (08/19/2023 09:47:29 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7780,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (08/19/2023 09:34:41 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1600,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (08/19/2023 09:23:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7588,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (08/19/2023 09:14:11 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8392,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (08/19/2023 09:04:41 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (13380,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (08/19/2023 08:55:40 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11152,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (08/19/2023 08:47:11 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9664,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (08/19/2023 08:33:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (12404,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

System errors:
=============
Error: (08/19/2023 07:48:01 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{FF03A4B9-45FF-4BE3-BC33-57F7FCEF37E5}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (08/19/2023 07:48:01 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{FF03A4B9-45FF-4BE3-BC33-57F7FCEF37E5}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (08/19/2023 07:48:01 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{FF03A4B9-45FF-4BE3-BC33-57F7FCEF37E5}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (08/19/2023 07:48:01 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{FF03A4B9-45FF-4BE3-BC33-57F7FCEF37E5}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (08/19/2023 02:23:41 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{FF03A4B9-45FF-4BE3-BC33-57F7FCEF37E5}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (08/19/2023 02:23:41 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{FF03A4B9-45FF-4BE3-BC33-57F7FCEF37E5}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (08/19/2023 02:23:41 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{FF03A4B9-45FF-4BE3-BC33-57F7FCEF37E5}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (08/19/2023 02:23:41 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{FF03A4B9-45FF-4BE3-BC33-57F7FCEF37E5}, protože jiný počítač v síti má stejný název. Server nelze spustit.

CodeIntegrity:
===============
Date: 2023-08-19 14:24:33
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2023-08-19 14:23:20
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. C.70 05/23/2016
Motherboard: MSI B150 PC MATE (MS-7971)
Processor: Intel(R) Core(TM) i5-6500 CPU @ 3.20GHz
Percentage of memory in use: 16%
Total physical RAM: 32731.06 MB
Available physical RAM: 27372.04 MB
Total Virtual: 37595.06 MB
Available Virtual: 30940.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:237.41 GB) (Free:151.83 GB) (Model: Verbatim Vi550 S3) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:330.74 GB) (Model: WDC WD10EZEX-21WN4A0) NTFS
Drive e: (My Book) (Fixed) (Total:465.75 GB) (Free:82.6 GB) (Model: WD 5000AAV External USB Device) NTFS

\\?\Volume{2392a49f-b109-4bd7-a2d3-52756bdc2ece}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.43 GB) NTFS
\\?\Volume{8723206d-85a5-4557-89d6-e8af482c7f1d}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS
\\?\Volume{44670832-eab2-4c81-8082-4b18868d3447}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 238.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 475DDCC4)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Size: 465.8 GB) (Disk ID: 6FE8B7D9)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

#8 Příspěvek od **Rudy** » 20 srp 2023 10:32

OK. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM\...\.scr: => <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\Policies\Explorer: []
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {1858738A-B5F5-4058-8727-6B47E92E8ACB} - System32\Tasks\GoogleUpdateTaskMachineCore{9A7EBA52-87A3-4C08-BC53-C8AB6316FCF1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-05] (Google LLC -> Google LLC)
Task: {0C8095F5-F09A-4C8C-936A-D8F78008CB3A} - System32\Tasks\GoogleUpdateTaskMachineUA{D5585994-8415-4F0F-9A8D-D7E32A43FE76} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-05] (Google LLC -> Google LLC)

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

sobtik · #9 Příspěvek od **sobtik** » 20 srp 2023 11:12

Fix result of Farbar Recovery Scan Tool (x64) Version: 17-08-2023 01
Ran by Lukáš (20-08-2023 11:58:07) Run:3
Running from C:\Users\Lukáš\Desktop
Loaded Profiles: Lukáš
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\...\.scr: => <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\...\Policies\Explorer: []
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {1858738A-B5F5-4058-8727-6B47E92E8ACB} - System32\Tasks\GoogleUpdateTaskMachineCore{9A7EBA52-87A3-4C08-BC53-C8AB6316FCF1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-05] (Google LLC -> Google LLC)
Task: {0C8095F5-F09A-4C8C-936A-D8F78008CB3A} - System32\Tasks\GoogleUpdateTaskMachineUA{D5585994-8415-4F0F-9A8D-D7E32A43FE76} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2023-01-05] (Google LLC -> Google LLC)

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Classes\.scr\\"Default"="scrfile" => value restored successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
"HKU\S-1-5-21-1425878809-3904051324-2884316882-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1858738A-B5F5-4058-8727-6B47E92E8ACB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1858738A-B5F5-4058-8727-6B47E92E8ACB}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore{9A7EBA52-87A3-4C08-BC53-C8AB6316FCF1} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore{9A7EBA52-87A3-4C08-BC53-C8AB6316FCF1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0C8095F5-F09A-4C8C-936A-D8F78008CB3A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0C8095F5-F09A-4C8C-936A-D8F78008CB3A}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA{D5585994-8415-4F0F-9A8D-D7E32A43FE76} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA{D5585994-8415-4F0F-9A8D-D7E32A43FE76}" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 25348397 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 54376185 B
Windows/system/drivers => 91722089 B
Edge => 0 B
Chrome => 536824 B
Firefox => 87279245 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 13454 B
NetworkService => 13454 B
Lukáš => 252625308 B

RecycleBin => 83055 B
EmptyTemp: => 488.3 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 11:59:53 ====

#10 Příspěvek od **Rudy** » 20 srp 2023 11:47

Smazáno. Zrychlil se chod?

sobtik · #11 Příspěvek od **sobtik** » 20 srp 2023 12:35

Skoro žádné zlepšení. Fixnutí mi trvalo skoro 10 min často se zobrazovalo že program neodpovídá a když to skončilo tak se PC restartovat a zase dlouho najížděl.

#12 Příspěvek od **JaRon** » 20 srp 2023 13:10

Opravedlnujem sa za vstup
Otestuj disky d: a e: programom Hdtune free - obrazky benchmark vloz sem

sobtik · #13 Příspěvek od **sobtik** » 20 srp 2023 13:37

: D.jpg (35.67 KiB) Zobrazeno 579 x

sobtik · #14 Příspěvek od **sobtik** » 20 srp 2023 13:37

: E.jpg (35.74 KiB) Zobrazeno 579 x

#15 Příspěvek od **JaRon** » 20 srp 2023 13:44

Skus otestovat PC s odpojenym diskom e: - jeho vysledky su podpriemerne

VIRY.CZ

Pomalé PC

Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC