Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-10-2022
Ran by linco (administrator) on DESKTOP-J0PJPO6 (ASUSTeK COMPUTER INC. FX502VE) (19-10-2022 21:39:46)
Running from C:\Users\linco\OneDrive\Počítač
Loaded Profiles: defaultuser0 & linco
Platform: Microsoft Windows 10 Home Version 21H1 19043.2130 (X64) Language: Čeština (Česká republika) -> Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <15>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Huawei Technologies Co.,Ltd. -> ) C:\Program Files (x86)\MobileBrServ\mbbService.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c2ac023763d5d3ad\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a63b95fe6e6a1712\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a63b95fe6e6a1712\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_7ed3bacbb0a8cc67\RstMwService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_ab82c08bd4d2bb6c\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [212184 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [292120 2022-10-14] (Intel Corporation -> Intel)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\64.0.4.0\GoogleDriveFS.exe [53005592 2022-10-01] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\64.0.4.0\GoogleDriveFS.exe [53005592 2022-10-01] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1000\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\64.0.4.0\GoogleDriveFS.exe [53005592 2022-10-01] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123150712 2022-10-04] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [com.squirrel.WhatsApp.WhatsApp] => C:\Users\linco\AppData\Local\WhatsApp\Update.exe [2254048 2022-10-15] (WhatsApp LLC -> )
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\64.0.4.0\GoogleDriveFS.exe [53005592 2022-10-01] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [com.messenger] => "C:\Users\linco\AppData\Local\Programs\Messenger\Messenger.exe" messenger://openAtLogin (No File)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\linco\AppData\Local\slack\slack.exe [309040 2022-10-04] (Slack Technologies, Inc. -> Slack Technologies Inc.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\64.0.4.0\GoogleDriveFS.exe [53005592 2022-10-01] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5100 series: CNMLMAD.DLL
HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
GroupPolicy-Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0649FB83-DE3C-4C54-8A33-BFF095AAF365} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {09F67DE2-EED1-4A0A-8219-D29235D0734A} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "898fcde7-98a2-4c5c-adb8-abf5fcde5749" --version "6.04.10044" --silent
Task: {0D4FFF2D-9A82-4983-9D66-82F740EA0894} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\linco\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007456 2021-05-13] (ESET, spol. s r.o. -> ESET)
Task: {188876BF-EDEE-4E8A-9387-CE265DA9046E} - System32\Tasks\ASUS Battery Health Charging Notification => C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe [2478776 2016-11-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {2564D4DF-C850-4D58-9434-90FCAFD96E67} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2250576 2022-05-25] (Avast Software s.r.o. -> Avast Software)
Task: {2ABFDA4D-A770-4344-A669-79720BE07563} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {2E811C2F-CD58-4DAE-B932-799C51C1FA8E} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3231104 2022-05-02] (Intel Corporation -> Intel Corporation)
Task: {36535DC6-14B1-42EB-A962-BD22196A1949} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {386EA9E0-1271-495E-BA95-46B48CDBF6AC} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {42D5785A-35ED-43AA-AFA0-D6A8E6793A5A} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {489FCCBB-FEDE-4975-B848-E4D921F44922} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2298117505-976418258-3832342613-1001 => C:\Users\linco\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {4FE10946-A7FF-4118-B9A9-310A4EB98032} - System32\Tasks\ASUS HotfixChecker => C:\Program Files (x86)\ASUS\HotfixChecker\HotfixChecker.exe [153808 2021-09-29] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {57FFBBE0-7380-46A4-85E3-8B9BDE039D9D} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\ASUS HotfixChecker" /ENABLE
Task: {57FFBBE0-7380-46A4-85E3-8B9BDE039D9D} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\CCleanerCrashReporting" /ENABLE
Task: {57FFBBE0-7380-46A4-85E3-8B9BDE039D9D} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\CCleanerSkipUAC - linco" /ENABLE
Task: {57FFBBE0-7380-46A4-85E3-8B9BDE039D9D} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\Update Checker" /ENABLE
Task: {57FFBBE0-7380-46A4-85E3-8B9BDE039D9D} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {60CF28D1-8BCA-4CF7-810D-7CA5AC7703DE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {65707E09-205E-4250-A3B9-C40F91EB8999} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3231104 2022-05-02] (Intel Corporation -> Intel Corporation)
Task: {669BA5FE-B7DF-4A9D-AF12-4A8603F3A1D5} - System32\Tasks\UMonitor Task => C:\WINDOWS\SysWOW64\UMonit64.exe [61752 2016-08-19] (GENESYS LOGIC, INC. -> )
Task: {680EA535-049D-416D-98CA-5E157852C686} - System32\Tasks\GoogleUpdateTaskMachineUA{ACB8F8CB-C088-4959-B7D5-29DB668A0B75} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-31] (Google LLC -> Google LLC)
Task: {69E068B1-6A6E-4937-95DB-26705EA6FF26} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {6A1DF42B-4775-4EE1-A55F-94814F1C2EF9} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\linco\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007456 2021-05-13] (ESET, spol. s r.o. -> ESET)
Task: {7902D6B6-01D6-4087-B9E9-3CED86E85DB3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7A05067C-0D5D-4565-BE11-F5C426E0D2AB} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {80E6023C-0B35-4C05-B396-96ED72A53719} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2298117505-976418258-3832342613-1001 => C:\Users\linco\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (No File)
Task: {8AD5100D-BCA7-46A2-A733-B3F5A1FB02CA} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {8FD46559-9889-42C0-AC8A-758A322F650D} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-2298117505-976418258-3832342613-1001 => C:\Users\linco\AppData\Local\Programs\Messenger\MessengerHelper.exe [1873656 2022-08-15] (Facebook, Inc. -> Facebook Inc.)
Task: {95B6C707-EEC3-4992-9DAE-1C9189872243} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122552 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {9AC3B822-A126-4F56-8768-F12E5685B199} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-13] (Adobe Inc. -> Adobe)
Task: {9DE4561B-12A2-4861-B70D-80355F153286} - System32\Tasks\IcarusAvastVpnUpgrade => C:\Program Files\AVAST Software\SecureLine\setup\avast_vpn_online_setup.exe -> /silent /ShowVpnGui=0 /RestartUpdaterTaskName=IcarusAvastVpnUpgrade /RestartUpdaterAppExe="C:\Program Files\AVAST Software\SecureLine\setup\avast_vpn_online_setup.exe"
Task: {9E445F0A-C420-47C3-AF23-7248DA2849C1} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4936920 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
Task: {AEB63488-B184-44F6-9A95-2FD682825BE1} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19967504 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {B1F66C3E-2712-4849-91E2-92B504BD00B7} - System32\Tasks\GoogleUpdateTaskMachineCore{D0AC7BEA-A8ED-444D-86A5-A4247E843504} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-31] (Google LLC -> Google LLC)
Task: {B77CB8AE-8559-4CBF-9C27-889023AF1A08} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B808B0CA-EE4D-49AE-8138-A70AF3268771} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-09-12] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B98ACDD8-1551-4B85-A55D-61E9D34AEAB7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-09-12] (Piriform Software Ltd -> Piriform)
Task: {CC41892C-860D-4898-A9DB-8C98DC996881} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122552 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {D7A4511D-C355-4502-8BF3-3294F6B86E82} - System32\Tasks\CCleanerSkipUAC - linco => C:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F61AE151-BE9C-4E02-94B3-CD0CDB26FBE1} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-02] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\WpsExternal_20161114022915.job => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 193.162.153.164 194.239.134.83
Tcpip\..\Interfaces\{cb788683-62bb-49bd-a2bd-8c95f035c6d8}: [DhcpNameServer] 193.162.153.164 194.239.134.83
Tcpip\..\Interfaces\{ce166e0c-1abd-4573-a63b-a0ac72c5ca8a}: [DhcpNameServer] 10.66.0.1

FireFox:
========
FF DefaultProfile: a89791ok.default
FF ProfilePath: C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default [2022-10-19]
FF Session Restore: Mozilla\Firefox\Profiles\a89791ok.default -> is enabled.
FF Extension: (Facebook Container) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\@contain-facebook.xpi [2022-10-12]
FF Extension: (Avast AntiTrack Premium) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\antitrack@avast.com.xpi [2021-04-07]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2021-06-20]
FF Extension: (Easy Screenshot) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\easyscreenshot@mozillaonline.com.xpi [2021-07-31]
FF Extension: (To Google Translate) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-06-23]
FF Extension: (Avast Passwords) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2020-02-10] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2022-10-08]
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\sp@avast.com.xpi [2022-08-22]
FF Extension: (Avast Online Security & Privacy) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\wrc@avast.com.xpi [2022-10-03]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2022-10-11]
FF Extension: (Image Search Options) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\{4a313247-8330-4a81-948e-b79936516f78}.xpi [2020-08-21]
FF Extension: (Plná Peňaženka Líštička Lite) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\{5f383f45-0de3-43b3-838c-ea98916167e3}.xpi [2022-08-02]
FF HKLM\...\Firefox\Extensions: [sparalarm@chip.de] - C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi
FF Extension: (CHIP Sparalarm) - C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi [2019-09-11]
FF HKLM-x32\...\Firefox\Extensions: [sparalarm@chip.de] - C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-13] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-13] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-13] (Adobe Inc. -> Adobe)
R2 AsBhcService; C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe [114360 2016-10-20] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8539152 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [592600 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2018008 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [592600 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-22] (Avast Software s.r.o. -> AVAST Software)
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [41240 2022-10-14] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [197912 2022-10-14] (Intel Corporation -> Intel)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2358800 2022-05-20] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-11-19] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 Mobile Broadband HL Service; C:\Program Files (x86)\MobileBrServ\mbbservice.exe [242264 2016-03-24] (Huawei Technologies Co.,Ltd. -> )
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12986664 2021-12-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_ab82c08bd4d2bb6c\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_ab82c08bd4d2bb6c\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [29312 2016-11-14] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 AsusHFilter; C:\WINDOWS\System32\drivers\AsusHFilter.sys [30200 2016-12-22] (ASUSTeK Computer Inc. -> )
R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_314b5cb6bf57f471\AsusPTPFilter.sys [116712 2021-12-02] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [238152 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [390096 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [306128 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [105936 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [48512 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [276520 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [564304 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [114464 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [90008 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [862936 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [672272 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221944 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327896 2022-10-19] (Avast Software s.r.o. -> AVAST Software)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [136688 2021-12-02] (GENESYS LOGIC, INC. -> Genesys Logic)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R3 iaLPSS2_I2C; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_skl.inf_amd64_363c7132639e12a6\iaLPSS2_I2C_ICL.sys [200456 2020-04-28] (Intel Corporation -> Intel Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project)
S3 usbscan; C:\WINDOWS\system32\DRIVERS\usbscan.sys [49152 2020-06-20] (Microsoft Corporation) [File not signed]
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-02-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-02-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-02-12] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29592 2022-03-13] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-19 21:22 - 2022-10-19 21:22 - 000000000 ____D C:\Program Files\trend micro
2022-10-19 20:49 - 2022-10-19 20:49 - 000000000 ____D C:\Users\linco\Tracing
2022-10-19 09:04 - 2022-10-19 09:04 - 000002222 _____ C:\Users\linco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox Private Browsing.lnk
2022-10-19 08:42 - 2022-10-19 08:41 - 000270552 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-10-19 08:42 - 2022-10-19 08:41 - 000221944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-10-15 08:34 - 2022-10-15 08:34 - 000001472 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
2022-10-13 17:07 - 2022-10-13 17:07 - 000025576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2022-10-13 08:47 - 2022-10-13 08:47 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2022-10-13 08:41 - 2022-10-11 07:00 - 001967904 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-10-13 08:41 - 2022-10-11 07:00 - 001967904 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-10-13 08:41 - 2022-10-11 07:00 - 001524488 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-10-13 08:41 - 2022-10-11 07:00 - 001524488 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-10-13 08:41 - 2022-10-11 07:00 - 001471992 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-10-13 08:41 - 2022-10-11 07:00 - 001432320 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-10-13 08:41 - 2022-10-11 07:00 - 001432320 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-10-13 08:41 - 2022-10-11 07:00 - 001214000 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-10-13 08:41 - 2022-10-11 07:00 - 001145608 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-10-13 08:41 - 2022-10-11 07:00 - 001145608 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-10-13 08:41 - 2022-10-11 06:56 - 000870928 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-10-13 08:41 - 2022-10-11 06:56 - 000823312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-10-13 08:41 - 2022-10-11 06:56 - 000693760 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-10-13 08:41 - 2022-10-11 06:55 - 002246664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-10-13 08:41 - 2022-10-11 06:55 - 001653248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-10-13 08:41 - 2022-10-11 06:55 - 001523216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-10-13 08:41 - 2022-10-11 06:55 - 001261064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-10-13 08:41 - 2022-10-11 06:55 - 001185272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-10-13 08:41 - 2022-10-11 06:55 - 000987672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-10-13 08:41 - 2022-10-11 06:55 - 000709640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-10-13 08:41 - 2022-10-11 06:54 - 015218688 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-10-13 08:41 - 2022-10-11 06:54 - 012540912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-10-13 08:41 - 2022-10-11 06:54 - 000457232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-10-13 08:41 - 2022-10-11 06:53 - 005753360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-10-13 08:41 - 2022-10-07 05:01 - 000095170 _____ C:\WINDOWS\system32\nvinfo.pb
2022-10-13 08:40 - 2022-10-11 06:54 - 005429248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-10-13 08:40 - 2022-10-11 06:54 - 003101176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-10-13 08:40 - 2022-10-11 06:53 - 005906416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2022-10-13 08:40 - 2022-10-11 06:52 - 000853552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-10-13 08:40 - 2022-10-11 06:51 - 006457800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-10-12 19:06 - 2022-10-12 19:06 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-10-12 19:06 - 2022-10-12 19:06 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-10-12 18:58 - 2022-10-12 18:58 - 000000000 ___HD C:\$WinREAgent
2022-10-05 13:38 - 2022-10-19 09:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-10-04 22:35 - 2022-10-04 22:35 - 000000000 ____D C:\Users\linco\AppData\Local\slack
2022-10-01 12:34 - 2022-10-01 12:35 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.3
2022-09-20 20:00 - 2022-09-20 20:00 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-09-20 20:00 - 2022-09-20 20:00 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-09-20 20:00 - 2022-09-20 20:00 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-09-20 20:00 - 2022-09-20 20:00 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-09-20 20:00 - 2022-09-20 20:00 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-09-20 19:29 - 2022-10-19 21:36 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2022-09-20 19:29 - 2022-10-19 21:36 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-19 21:40 - 2020-08-22 14:05 - 000000000 ____D C:\FRST
2022-10-19 21:37 - 2022-02-08 18:18 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-10-19 21:37 - 2018-09-15 21:01 - 000000000 ____D C:\Users\linco\AppData\Local\AVAST Software
2022-10-19 21:36 - 2018-09-15 22:08 - 000000000 ____D C:\Program Files\CCleaner
2022-10-19 21:35 - 2017-07-04 20:03 - 000000000 ____D C:\ProgramData\NVIDIA
2022-10-19 21:34 - 2020-12-23 11:05 - 000000000 ____D C:\Users\linco\AppData\Roaming\Slack
2022-10-19 21:34 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-10-19 21:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-10-19 21:07 - 2020-07-31 23:19 - 000000000 ____D C:\Program Files (x86)\Google
2022-10-19 21:06 - 2018-09-20 18:10 - 000000000 ____D C:\Users\linco\AppData\Local\CrashDumps
2022-10-19 20:55 - 2018-12-05 20:58 - 000000000 ____D C:\Users\linco\AppData\Roaming\WhatsApp
2022-10-19 20:53 - 2021-08-18 21:32 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - linco
2022-10-19 20:53 - 2020-11-12 09:25 - 000002466 _____ C:\WINDOWS\system32\Tasks\ASUS HotfixChecker
2022-10-19 20:53 - 2020-06-20 23:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-10-19 20:53 - 2020-06-20 22:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-10-19 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-10-19 20:53 - 2018-09-15 20:55 - 000000000 __SHD C:\Users\linco\IntelGraphicsProfiles
2022-10-19 20:53 - 2017-07-04 19:59 - 000000000 ___HD C:\Intel
2022-10-19 20:53 - 2016-11-14 04:29 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-10-19 20:51 - 2020-06-20 23:03 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-10-19 20:51 - 2018-09-15 21:01 - 000000000 ____D C:\Users\linco\AppData\LocalLow\Mozilla
2022-10-19 20:49 - 2020-06-20 21:45 - 000000000 ____D C:\Users\linco
2022-10-19 20:44 - 2020-06-20 23:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-10-19 09:03 - 2018-09-15 21:01 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-10-19 08:55 - 2018-09-15 20:59 - 000000000 ____D C:\ProgramData\AVAST Software
2022-10-19 08:54 - 2020-06-20 21:45 - 000000000 ____D C:\Users\defaultuser0
2022-10-19 08:54 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-10-19 08:42 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-10-19 08:41 - 2020-10-08 23:50 - 000276520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-10-19 08:41 - 2020-04-03 19:31 - 000564304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-10-19 08:41 - 2019-11-21 17:36 - 000862936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-10-19 08:41 - 2019-11-21 17:36 - 000672272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-10-19 08:41 - 2019-11-21 17:36 - 000390096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-10-19 08:41 - 2019-11-21 17:36 - 000327896 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-10-19 08:41 - 2019-11-21 17:36 - 000306128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-10-19 08:41 - 2019-11-21 17:36 - 000238152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-10-19 08:41 - 2019-11-21 17:36 - 000114464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-10-19 08:41 - 2019-11-21 17:36 - 000105936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-10-19 08:41 - 2019-11-21 17:36 - 000090008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-10-19 08:41 - 2019-11-21 17:36 - 000048512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-10-17 08:05 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-10-16 21:03 - 2022-08-25 08:28 - 000000000 ____D C:\WINDOWS\Minidump
2022-10-16 18:01 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-10-16 17:59 - 2019-03-27 15:36 - 000000000 ____D C:\ProgramData\ASUS
2022-10-15 18:18 - 2022-02-24 20:11 - 000000000 ____D C:\Users\linco\AppData\Local\WhatsApp
2022-10-15 13:47 - 2016-11-14 04:28 - 000000000 ____D C:\Program Files (x86)\ASUS
2022-10-15 13:43 - 2021-11-22 12:14 - 000001347 _____ C:\Users\linco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2022-10-15 13:43 - 2021-11-22 12:14 - 000000000 ___RD C:\Users\linco\AppData\Local\PCHealthCheck
2022-10-15 13:39 - 2020-10-20 21:02 - 000000000 ____D C:\Users\linco\AppData\Roaming\Messenger
2022-10-15 13:39 - 2020-10-20 21:02 - 000000000 ____D C:\Users\linco\AppData\Local\Messenger
2022-10-15 08:34 - 2017-07-04 20:00 - 000000000 ____D C:\Program Files (x86)\Intel
2022-10-15 08:34 - 2017-07-04 19:59 - 000000000 ____D C:\ProgramData\Package Cache
2022-10-14 09:34 - 2022-09-17 18:09 - 000003122 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2298117505-976418258-3832342613-1001
2022-10-14 09:34 - 2022-09-17 18:08 - 000002918 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2298117505-976418258-3832342613-1001
2022-10-14 09:34 - 2020-06-20 23:03 - 000003458 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-14 09:34 - 2020-06-20 23:03 - 000003212 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-14 09:34 - 2020-06-20 23:03 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-10-14 09:34 - 2020-06-20 23:03 - 000003044 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-14 09:34 - 2020-06-20 23:03 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-14 09:34 - 2020-06-20 23:03 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-14 09:34 - 2020-06-20 23:03 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-14 09:34 - 2020-06-20 23:03 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-14 09:34 - 2020-06-20 23:03 - 000002974 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-14 09:34 - 2020-06-20 23:03 - 000002804 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-13 08:48 - 2018-09-15 20:59 - 000000000 ____D C:\Users\linco\AppData\Local\NVIDIA
2022-10-12 19:16 - 2020-06-20 23:01 - 002229564 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-10-12 19:16 - 2020-06-20 21:24 - 000460920 _____ C:\WINDOWS\system32\perfh006.dat
2022-10-12 19:16 - 2020-06-20 21:24 - 000081102 _____ C:\WINDOWS\system32\perfc006.dat
2022-10-12 19:16 - 2019-12-07 16:41 - 000709160 _____ C:\WINDOWS\system32\perfh005.dat
2022-10-12 19:16 - 2019-12-07 16:41 - 000145492 _____ C:\WINDOWS\system32\perfc005.dat
2022-10-12 19:11 - 2020-06-20 22:55 - 000652872 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-10-12 19:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-10-12 19:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-10-12 19:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-10-12 19:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-10-12 19:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-10-12 19:09 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-10-12 19:06 - 2020-06-20 22:57 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-10-12 18:58 - 2022-08-21 23:08 - 000000000 ____D C:\Program Files\dotnet
2022-10-12 18:57 - 2018-09-16 14:50 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-10-12 18:55 - 2018-09-16 14:50 - 147398024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-10-12 08:56 - 2020-04-13 20:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-10-12 08:54 - 2018-09-15 21:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-10-11 06:51 - 2020-05-31 19:17 - 007587792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-10-07 15:18 - 2018-09-20 10:59 - 000000000 ____D C:\Users\linco\AppData\Local\D3DSCache
2022-10-04 22:35 - 2020-12-23 11:06 - 000000000 ____D C:\Users\linco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies Inc
2022-10-04 22:35 - 2018-12-05 20:57 - 000000000 ____D C:\Users\linco\AppData\Local\SquirrelTemp
2022-10-03 21:33 - 2017-07-04 20:03 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-10-03 21:33 - 2017-07-04 20:03 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-10-03 21:33 - 2017-07-04 20:01 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-10-01 12:22 - 2021-09-21 18:09 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-09-21 05:53 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-09-21 05:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-09-21 05:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-09-21 05:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-09-20 20:03 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2022-09-20 20:03 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll

==================== Files in the root of some directories ========

2020-11-13 15:22 - 2020-11-13 15:22 - 000000046 _____ () C:\Users\linco\AppData\Roaming\Camdata.ini
2020-11-13 15:22 - 2020-11-13 15:22 - 000000408 _____ () C:\Users\linco\AppData\Roaming\CamLayout.ini
2020-11-13 15:22 - 2020-11-13 15:22 - 000000408 _____ () C:\Users\linco\AppData\Roaming\CamShapes.ini
2020-11-13 15:22 - 2020-11-13 15:22 - 000004536 _____ () C:\Users\linco\AppData\Roaming\CamStudio.cfg
2018-09-15 20:58 - 2019-07-07 11:46 - 000000200 _____ () C:\Users\linco\AppData\Roaming\sp_data.sys
2020-11-13 15:20 - 2020-11-13 15:20 - 000000096 _____ () C:\Users\linco\AppData\Roaming\version2.xml
2022-06-22 07:35 - 2022-06-22 07:35 - 000001873 _____ () C:\Users\linco\AppData\Roaming\Microsoft\5701d463-2030-46f0-b167-6b736acbe12f.tmp
2020-12-01 11:07 - 2020-12-01 11:07 - 000415507 _____ () C:\Users\linco\AppData\Local\ars.cache
2020-12-01 11:08 - 2020-12-01 11:08 - 001139162 _____ () C:\Users\linco\AppData\Local\census.cache
2020-12-01 10:38 - 2020-12-01 10:38 - 000000036 _____ () C:\Users\linco\AppData\Local\housecall.guid.cache
2020-12-01 10:42 - 2020-12-01 10:42 - 000000010 _____ () C:\Users\linco\AppData\Local\sponge.last.runtime.cache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================