Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-02-2025
Ran by linco (administrator) on DESKTOP-J0PJPO6 (ASUSTeK COMPUTER INC. FX502VE) (08-02-2025 10:53:06)
Running from C:\Users\linco\OneDrive\Počítač\FRST64.exe
Loaded Profiles: defaultuser0 & linco
Platform: Microsoft Windows 10 Home Version 22H2 19045.5440 (X64) Language: Čeština (Česká republika) -> Slovenčina (Slovensko)
Default browser: "C:\Users\linco\AppData\Local\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\ShadowPlay\nvsphelper64.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_cbb03399d84fb105\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_cbb03399d84fb105\igfxEM.exe
(Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\CCleaner\CCleaner64.exe
(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Windows\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_0cfea193ad379f88\AsusPTPService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_cbb03399d84fb105\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_8d952ce997b81e9f\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_eb1c0bb4c867d89a\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_eb1c0bb4c867d89a\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_7ed3bacbb0a8cc67\RstMwService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_07a5b3dbac82d20b\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) () [File not signed] D:\WindowsApps\5319275A.51895FA4EA97F_2.2505.1.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2504.2.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spaceman.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [] => [X]
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [455976 2025-02-07] (Avast Software s.r.o. -> Gen Digital Inc.)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\103.0.3.0\GoogleDriveFS.exe [63828064 2025-02-08] (Google LLC -> Google LLC.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\103.0.3.0\GoogleDriveFS.exe [63828064 2025-02-08] (Google LLC -> Google LLC.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1000\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\103.0.3.0\GoogleDriveFS.exe [63828064 2025-02-08] (Google LLC -> Google LLC.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\103.0.3.0\GoogleDriveFS.exe [63828064 2025-02-08] (Google LLC -> Google LLC.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4435552 2025-01-28] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [Microsoft Edge Update] => C:\Users\linco\AppData\Local\Microsoft\EdgeUpdate\1.3.195.43\MicrosoftEdgeUpdateCore.exe [268360 2024-12-23] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45368112 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [] => [X]
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [MicrosoftEdgeAutoLaunch_E80CA25EB6CBA45C8EE4426DC76AE1DD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4088360 2025-02-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [Avast Browser] => C:\Users\linco\AppData\Local\AVAST Software\Browser\Update\1.8.1697.6\AvastBrowserUpdateCore.exe [507752 2025-01-23] (Avast Software s.r.o. -> Gen Digital Inc.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\103.0.3.0\GoogleDriveFS.exe [63828064 2025-02-08] (Google LLC -> Google LLC.)
HKLM\...\Windows x64\Print Processors\ssm4mPC: C:\Windows\System32\spool\prtprocs\x64\ssm4mpc.dll [61736 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\PDF Reader Pro Monitor: C:\Windows\system32\PrintMonitor.dll [163288 2025-01-14] (PDF Technologies, Inc. -> )
HKLM\...\Print\Monitors\ssm4m Langmon: C:\Windows\system32\ssm4mlm.dll [40744 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {9AC3B822-A126-4F56-8768-F12E5685B199} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-13] (Adobe Inc. -> Adobe)
Task: {188876BF-EDEE-4E8A-9387-CE265DA9046E} - System32\Tasks\ASUS Battery Health Charging Notification => C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe [2478776 2016-11-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {4FE10946-A7FF-4118-B9A9-310A4EB98032} - System32\Tasks\ASUS HotfixChecker => C:\Program Files (x86)\ASUS\HotfixChecker\HotfixChecker.exe [153808 2021-09-29] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {AEB63488-B184-44F6-9A95-2FD682825BE1} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19967504 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {95B6C707-EEC3-4992-9DAE-1C9189872243} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122552 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {CC41892C-860D-4898-A9DB-8C98DC996881} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122552 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {5F571F7A-FA51-4147-BC54-92FFBEA07132} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) S-1-5-21-2298117505-976418258-3832342613-1001 => C:\Users\linco\AppData\Local\AVAST Software\Browser\Application\AvastBrowser.exe [3310848 2025-01-08] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {F155D09D-764E-44F2-BA81-55F34475DCA2} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [8432936 2025-01-24] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {246A0DAC-A909-48B1-8582-767D0DFB8DAA} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5278504 2025-02-07] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {7F0D693D-69F7-4906-BF3E-BF13ECF4C894} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2564904 2024-11-19] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {2CB42852-E3D1-4229-92AC-7C4ABFC53C10} - System32\Tasks\AvastBrowserProtectS-1-5-21-2298117505-976418258-3832342613-1001 => C:\Users\linco\AppData\Local\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1690008 2025-01-07] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {A17CFFE8-A741-46AE-8A33-DAC5B1987A53} - System32\Tasks\AvastUpdateTaskUserS-1-5-21-2298117505-976418258-3832342613-1001Core => C:\Users\linco\AppData\Local\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2025-01-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {31EFAE66-902E-4128-B071-3075D2950192} - System32\Tasks\AvastUpdateTaskUserS-1-5-21-2298117505-976418258-3832342613-1001UA => C:\Users\linco\AppData\Local\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2025-01-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {5CA54F29-251A-496C-A631-D39CBA68EF8B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [3480504 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {93FDC33B-A784-483B-ADE4-AA837132F1B9} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [6139696 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "82a402cc-f766-4bed-ab72-2310e8372526" --version "6.32.0.11432" --silent
Task: {523B0D20-DE49-4BF3-A2D3-9970D09ADCB4} - System32\Tasks\CCleanerSkipUAC - linco => C:\Program Files\CCleaner\CCleaner.exe [39138608 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {B34DBE64-8E98-4416-B1E5-4D08416B5EE2} - System32\Tasks\CCleanerSkipUAC - SYSTEM => C:\Program Files\CCleaner\CCleaner.exe [39138608 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {3567BFEF-785A-4F61-B7FC-7782D3C9A8C7} - System32\Tasks\Core Temp Autostart linco => "C:\Program Files\Core Temp\Core Temp.exe"  (No File)
Task: {0D4FFF2D-9A82-4983-9D66-82F740EA0894} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\linco\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe  LOGON (No File)
Task: {6A1DF42B-4775-4EE1-A55F-94814F1C2EF9} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\linco\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe  SCHED (No File)
Task: {03B1E1FC-E6AB-49CB-B685-BF13F08707CA} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem126.0.6441.0{8E228A84-E35A-43A2-AE58-5614233831C6} => "C:\Program Files (x86)\Google\GoogleUpdater\126.0.6441.0\updater.exe"  --wake --system (No File)
Task: {4A8C43D8-01FE-4CE6-A69B-5713C0FAE13F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{01A1A7E3-7378-4893-83BC-902E5A13BC7A} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-10-14] (Google LLC -> Google LLC)
Task: {6CD296B0-39F0-49B6-904D-E508DC0C2039} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{4F3FFF86-1C06-4A46-9816-FDAAD9EF423F} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {9DE4561B-12A2-4861-B70D-80355F153286} - System32\Tasks\IcarusAvastVpnUpgrade => C:\Program Files\AVAST Software\SecureLine\setup\avast_vpn_online_setup.exe  -> /silent /ShowVpnGui=0 /RestartUpdaterTaskName=IcarusAvastVpnUpgrade /RestartUpdaterAppExe="C:\Program Files\AVAST Software\SecureLine\setup\avast_vpn_online_setup.exe"
Task: {CCF5988C-6774-4BA2-9320-7C7EB01541E0} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4983528 2024-08-02] (Intel Corporation -> Intel Corporation)
Task: {A7FADEC0-DD55-4E8F-A646-26D6816E04FE} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [4983528 2024-08-02] (Intel Corporation -> Intel Corporation)
Task: {0E70574C-2087-4D26-BE1A-BE2F5DFBD055} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-2298117505-976418258-3832342613-1001 => C:\Users\linco\AppData\Local\Programs\Messenger\MessengerHelper.exe  --lassie (No File)
Task: {02253619-98FF-4241-937D-9DFD172FB739} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B7FC27D6-78A5-48EE-8F6C-3F47033397DD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B8146115-84C9-4DA8-A417-B9910D5E44F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5D312B20-D74C-4942-A886-9BDD252048F5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B6D1F4E5-70EC-47F7-95E8-379B1D64B594} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-2298117505-976418258-3832342613-1001Core{CB0193D1-E071-4979-9997-4AEB261EBD0E} => C:\Users\linco\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206288 2023-10-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {50C670FF-BCA7-47E8-94BA-D0C394A40B01} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-2298117505-976418258-3832342613-1001UA{6752B029-CFAB-45B2-B17F-00C67437588C} => C:\Users\linco\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [206288 2023-10-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {40E5AB69-901E-4BA7-A128-7E85B0C6DE83} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34880 2025-01-30] (Mozilla Corporation -> Mozilla Foundation)
Task: {90BFA6CD-4029-4067-B574-920863605EC5} - System32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA app.exe [3287080 2025-01-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BC0D86DD-ADC0-4E35-9CE2-912A7921AE6C} - System32\Tasks\Remove AdwCleaner Application => C:\Windows\system32\CMD.EXE [289792 2024-04-24] (Microsoft Windows -> Microsoft Corporation) -> /C DEL /F /Q "C:\Users\linco\OneDrive\Počítač\adwcleaner(1).exe" <==== ATTENTION
Task: {42D5785A-35ED-43AA-AFA0-D6A8E6793A5A} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617864 2021-09-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {36535DC6-14B1-42EB-A962-BD22196A1949} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617864 2021-09-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {669BA5FE-B7DF-4A9D-AF12-4A8603F3A1D5} - System32\Tasks\UMonitor Task => C:\Windows\SysWOW64\UMonit64.exe [61752 2016-08-19] (GENESYS LOGIC, INC. -> )
Task: {A86480BD-6CD9-4CAD-938D-FFF05D262C8B} - System32\Tasks\Uninstall AdwCleaner Application => C:\Users\linco\OneDrive\Počítač\adwcleaner(1).exe [8790880 2024-03-17] (Malwarebytes Inc. -> Malwarebytes)
Task: {3EE7B9CA-7691-4C65-9D76-33F71BA2E766} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\WINDOWS\System32\Wscript.exe [197120 2025-01-14] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\//B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\WpsExternal_20161114022915.job => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 127.0.0.1	localhost
Tcpip\Parameters: [DhcpNameServer] 70.34.223.248 45.76.91.94
Tcpip\..\Interfaces\{5772fdae-c02a-42ee-a317-98789ad2831a}: [DhcpNameServer] 70.34.223.248 45.76.91.94
Tcpip\..\Interfaces\{5772fdae-c02a-42ee-a317-98789ad2831a}: [DhcpDomain] home
Tcpip\..\Interfaces\{5772fdae-c02a-42ee-a317-98789ad2831a}\255646D696021323: [DhcpNameServer] 192.168.240.156
Tcpip\..\Interfaces\{5772fdae-c02a-42ee-a317-98789ad2831a}\4505D2C496E6B6F573733443: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{5772fdae-c02a-42ee-a317-98789ad2831a}\7596669663834303F5548545: [DhcpNameServer] 70.34.223.248 45.76.91.94
Tcpip\..\Interfaces\{5772fdae-c02a-42ee-a317-98789ad2831a}\7596669663834303F5548545: [DhcpDomain] home
Tcpip\..\Interfaces\{cb788683-62bb-49bd-a2bd-8c95f035c6d8}: [DhcpNameServer] 192.168.1.250
Tcpip\..\Interfaces\{cb788683-62bb-49bd-a2bd-8c95f035c6d8}\255646D6960283: [DhcpNameServer] 192.168.163.216
Tcpip\..\Interfaces\{cb788683-62bb-49bd-a2bd-8c95f035c6d8}\354656D27457563747: [DhcpNameServer] 3.126.235.131 3.75.35.248
Tcpip\..\Interfaces\{cb788683-62bb-49bd-a2bd-8c95f035c6d8}\354656D27457563747: [DhcpDomain] internet.local
Tcpip\..\Interfaces\{cb788683-62bb-49bd-a2bd-8c95f035c6d8}\4556C69616537484A7D2231473345373: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{cb788683-62bb-49bd-a2bd-8c95f035c6d8}\4556C69616537484A7D2231473345373: [DhcpDomain] lan
Tcpip\..\Interfaces\{cb788683-62bb-49bd-a2bd-8c95f035c6d8}\6427565675966496: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{cb788683-62bb-49bd-a2bd-8c95f035c6d8}\6427565675966496: [DhcpDomain] lan
Tcpip\..\Interfaces\{cb788683-62bb-49bd-a2bd-8c95f035c6d8}\7596669663834303: [DhcpNameServer] 70.34.223.248 45.76.91.94
Tcpip\..\Interfaces\{cb788683-62bb-49bd-a2bd-8c95f035c6d8}\7596669663834303: [DhcpDomain] home
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge: 
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\linco\AppData\Local\Microsoft\Edge\User Data\Default [2025-02-08]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\linco\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bojobppfploabceghnmlahpoonbcbacn [2025-02-04]
Edge Extension: (Avira Safe Shopping) - C:\Users\linco\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2024-05-03]
Edge Extension: (Dokumenty Google v režime offline) - C:\Users\linco\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-02-04]
Edge Extension: (Edge relevant text changes) - C:\Users\linco\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]

FireFox:
========
FF DefaultProfile: xxf7iigu.default-1734383003279
FF ProfilePath: C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\8eme8siz.default-release-1734375673131 [2025-02-08]
FF Session Restore: Mozilla\Firefox\Profiles\8eme8siz.default-release-1734375673131 -> is enabled.
FF Extension: (DeepL: AI translator and writing assistant) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\8eme8siz.default-release-1734375673131\Extensions\firefox-extension@deepl.com.xpi [2024-12-16]
FF Extension: (To Google Translate) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\8eme8siz.default-release-1734375673131\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2024-12-16]
FF Extension: (uBlock Origin) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\8eme8siz.default-release-1734375673131\Extensions\uBlock0@raymondhill.net.xpi [2024-12-16]
FF Extension: (Bitwarden – Bezplatný správca hesiel) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\8eme8siz.default-release-1734375673131\Extensions\{446900e4-71c2-419f-a6a7-df9c091e268b}.xpi [2024-12-16]
FF Extension: (Plná Peňaženka Líštička) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\8eme8siz.default-release-1734375673131\Extensions\{5f383f45-0de3-43b3-838c-ea98916167e3}.xpi [2024-12-16]
FF ProfilePath: C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\xxf7iigu.default-1734383003279 [2025-02-08]
FF Session Restore: Mozilla\Firefox\Profiles\xxf7iigu.default-1734383003279 -> is enabled.
FF Extension: (DeepL: AI translator and writing assistant) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\xxf7iigu.default-1734383003279\Extensions\firefox-extension@deepl.com.xpi [2024-12-16]
FF Extension: (To Google Translate) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\xxf7iigu.default-1734383003279\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2024-12-16]
FF Extension: (Language: Slovenčina (Slovak)) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\xxf7iigu.default-1734383003279\Extensions\langpack-sk@firefox.mozilla.org.xpi [2025-01-22]
FF Extension: (uBlock Origin) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\xxf7iigu.default-1734383003279\Extensions\uBlock0@raymondhill.net.xpi [2025-01-17]
FF Extension: (Bitwarden – Bezplatný správca hesiel) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\xxf7iigu.default-1734383003279\Extensions\{446900e4-71c2-419f-a6a7-df9c091e268b}.xpi [2025-01-14]
FF Extension: (Plná Peňaženka Líštička) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\xxf7iigu.default-1734383003279\Extensions\{5f383f45-0de3-43b3-838c-ea98916167e3}.xpi [2024-12-16]
FF HKLM\...\Firefox\Extensions: [sparalarm@chip.de] - C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi
FF Extension: (CHIP Sparalarm) - C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi [2019-09-11]
FF HKLM-x32\...\Firefox\Extensions: [sparalarm@chip.de] - C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-13] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-13] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> D:\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> D:\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> D:\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> D:\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [No File]
FF Plugin HKU\S-1-5-21-2298117505-976418258-3832342613-1001: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Users\linco\AppData\Local\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2025-01-23] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin HKU\S-1-5-21-2298117505-976418258-3832342613-1001: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Users\linco\AppData\Local\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2025-01-23] (Avast Software s.r.o. -> Gen Digital Inc.)

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKU\S-1-5-21-2298117505-976418258-3832342613-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-13] (Adobe Inc. -> Adobe)
S4 AsBhcService; C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe [114360 2016-10-20] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 AsusPTPService; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_0cfea193ad379f88\AsusPTPService.exe [229728 2024-08-16] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7498024 2025-02-07] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [805672 2025-02-07] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2428200 2025-02-07] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1257256 2025-02-07] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2024-06-20] (Avast Software s.r.o. -> AVAST Software)
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1088816 2025-01-14] (Gen Digital Inc. -> Gen Digital Inc.)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [47000 2024-11-25] (Intel Corporation -> Intel)
R2 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [330136 2024-11-25] (Intel Corporation -> Intel)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-11-22] (EasyAntiCheat Oy -> Epic Games, Inc)
S4 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [460488 2024-04-03] (Canon Inc. -> )
S4 LibreOfficeMaintenance; D:\LibreOffice\program\update_service.exe [123320 2025-01-24] (The Document Foundation -> The Document Foundation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_07a5b3dbac82d20b\Display.NvContainer\NVDisplay.Container.exe [1275536 2025-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-05-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-05-10] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [29312 2016-11-14] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 AsusHFilter; C:\WINDOWS\System32\drivers\AsusHFilter.sys [30200 2016-12-22] (ASUSTeK Computer Inc. -> )
R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_0cfea193ad379f88\AsusPTPFilter.sys [198632 2024-08-16] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [235064 2025-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [384080 2025-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [295992 2025-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84536 2025-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [28280 2024-11-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [28728 2025-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [276536 2025-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [553016 2025-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [98360 2025-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69712 2025-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [956472 2025-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1425976 2025-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [206904 2025-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [383032 2025-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [40832 2024-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [147808 2023-04-12] (GENESYS LOGIC, INC. -> Genesys Logic)
R2 googledrivefs31626; C:\Program Files\Google\Drive File Stream\Drivers\31626\googledrivefs31626.sys [384096 2024-07-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R3 iaLPSS2_I2C; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_skl.inf_amd64_363c7132639e12a6\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
S3 MpKsl281a76c5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1A70285A-755D-4EAC-8FD2-16BB7AA0B79A}\MpKslDrv.sys [212264 2023-05-10] (Microsoft Windows -> Microsoft Corporation)
S1 rtp1; C:\WINDOWS\System32\DRIVERS\rtp1.sys [413096 2024-06-12] (Avira Operations GmbH -> Avira Operations GmbH)
S1 rtp2; C:\WINDOWS\System32\DRIVERS\rtp2.sys [412984 2024-06-12] (Avira Operations GmbH -> Avira Operations GmbH)
R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [14224 2021-04-02] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24064 2020-09-09] (Microsoft Corporation) [File not signed]
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2023-05-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-05-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-05-10] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29592 2022-03-13] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
U4 AppMgmt; no ImagePath
S3 cpuz149; \??\C:\WINDOWS\temp\cpuz149\cpuz149_x64.sys [X] <==== ATTENTION
S3 cpuz158; \??\C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [X] <==== ATTENTION
U4 CscService; no ImagePath
U4 napagent; no ImagePath
U4 PeerDistSvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-02-08 10:53 - 2025-02-08 10:54 - 000036497 _____ C:\Users\linco\OneDrive\Počítač\FRST.txt
2025-02-08 10:52 - 2025-02-08 10:52 - 002403328 _____ (Farbar) C:\Users\linco\OneDrive\Počítač\FRST64.exe
2025-02-08 10:47 - 2025-02-08 10:47 - 000003384 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2025-02-08 10:47 - 2025-02-08 10:47 - 000000670 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2025-02-08 10:11 - 2025-02-08 10:50 - 000000620 _____ C:\Users\linco\OneDrive\Počítač\WizTree.lnk
2025-02-08 10:11 - 2025-02-08 10:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WizTree
2025-02-08 08:54 - 2025-02-08 08:55 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice
2025-02-08 08:43 - 2025-02-08 08:43 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2025-02-07 15:16 - 2025-02-07 15:11 - 000316200 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2025-02-01 12:07 - 2025-01-27 05:45 - 002072440 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2025-02-01 12:07 - 2025-01-27 05:45 - 002072440 _____ C:\WINDOWS\system32\vulkaninfo.exe
2025-02-01 12:07 - 2025-01-27 05:45 - 001614192 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2025-02-01 12:07 - 2025-01-27 05:45 - 001614192 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2025-02-01 12:07 - 2025-01-27 05:45 - 001576840 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2025-02-01 12:07 - 2025-01-27 05:45 - 001576840 _____ C:\WINDOWS\system32\vulkan-1.dll
2025-02-01 12:07 - 2025-01-27 05:45 - 001389960 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2025-02-01 12:07 - 2025-01-27 05:45 - 001389960 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2025-02-01 12:07 - 2025-01-27 05:45 - 000477832 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2025-02-01 12:07 - 2025-01-27 05:45 - 000374408 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2025-02-01 12:07 - 2025-01-27 05:41 - 001183392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2025-02-01 12:07 - 2025-01-27 05:41 - 000670352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2025-02-01 12:07 - 2025-01-27 05:41 - 000506008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2025-02-01 12:07 - 2025-01-27 05:40 - 025643168 _____ C:\WINDOWS\system32\nvidia-pcc.exe
2025-02-01 12:07 - 2025-01-27 05:40 - 002194088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2025-02-01 12:07 - 2025-01-27 05:40 - 001641120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2025-02-01 12:07 - 2025-01-27 05:40 - 001563784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2025-02-01 12:07 - 2025-01-27 05:40 - 001215624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2025-02-01 12:07 - 2025-01-27 05:40 - 001046168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2025-02-01 12:07 - 2025-01-27 05:40 - 000903856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2025-02-01 12:07 - 2025-01-27 05:40 - 000804528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2025-02-01 12:07 - 2025-01-27 05:39 - 019904168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2025-02-01 12:07 - 2025-01-27 05:39 - 019329200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2025-02-01 12:07 - 2025-01-27 05:39 - 007225008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2025-02-01 12:07 - 2025-01-27 05:39 - 005500064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2025-02-01 12:07 - 2025-01-27 05:39 - 003944616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2025-02-01 12:07 - 2025-01-27 05:39 - 000462496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2025-02-01 12:07 - 2025-01-27 05:38 - 005913248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2025-02-01 12:07 - 2025-01-27 05:38 - 000853656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2025-02-01 12:07 - 2025-01-27 05:37 - 005552256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2025-02-01 12:07 - 2025-01-27 05:37 - 004856992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2025-02-01 12:07 - 2025-01-26 19:36 - 000137640 _____ C:\WINDOWS\system32\nvinfo.pb
2025-02-01 10:26 - 2025-02-02 23:31 - 000003070 _____ C:\WINDOWS\system32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-01-31 20:03 - 2025-01-31 20:03 - 000000000 ___HD C:\$WinREAgent
2025-01-30 23:25 - 2025-01-30 23:25 - 000030039 _____ C:\Users\linco\OneDrive\Počítač\Gabriel Nagy.odt
2025-01-28 17:40 - 2025-01-28 17:40 - 000002269 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Reader Pro.lnk
2025-01-28 17:40 - 2025-01-28 17:40 - 000000000 ____D C:\Program Files (x86)\PDF Technologies, Inc
2025-01-27 10:54 - 2025-01-27 10:54 - 000002366 _____ C:\Users\linco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams classic.lnk
2025-01-23 15:24 - 2025-01-23 15:24 - 000026593 _____ C:\Users\linco\OneDrive\Počítač\Servicemedarbejder Gabriel Nagy.odt
2025-01-23 15:24 - 2025-01-23 15:24 - 000026592 _____ C:\Users\linco\OneDrive\Počítač\Nová položka Textový dokument OpenDocument (5).odt
2025-01-23 08:52 - 2025-01-23 08:52 - 000004102 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) S-1-5-21-2298117505-976418258-3832342613-1001
2025-01-23 08:52 - 2025-01-23 08:52 - 000003834 _____ C:\WINDOWS\system32\Tasks\AvastBrowserProtectS-1-5-21-2298117505-976418258-3832342613-1001
2025-01-23 08:52 - 2025-01-23 08:52 - 000002715 _____ C:\Users\linco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2025-01-23 08:52 - 2025-01-23 08:52 - 000002690 _____ C:\Users\linco\OneDrive\Počítač\Avast Secure Browser.lnk
2025-01-23 08:51 - 2025-01-23 08:51 - 000003754 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskUserS-1-5-21-2298117505-976418258-3832342613-1001UA
2025-01-23 08:51 - 2025-01-23 08:51 - 000003486 _____ C:\WINDOWS\system32\Tasks\AvastUpdateTaskUserS-1-5-21-2298117505-976418258-3832342613-1001Core
2025-01-13 17:33 - 2025-02-08 08:41 - 000002398 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-01-11 11:07 - 2025-01-11 11:07 - 000000000 ____D C:\Users\linco\OneDrive\Dokumenty\My Games
2025-01-11 11:04 - 2025-02-08 08:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2025-01-11 10:20 - 2025-01-11 10:20 - 000000000 ____D C:\SteamLibrary
2025-01-09 23:09 - 2025-01-09 23:09 - 000401297 _____ C:\Users\linco\OneDrive\Počítač\CV-Gabriel NAGY.pdf
2025-01-09 14:01 - 2025-01-09 14:01 - 000002066 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Súkromné prehliadanie Firefoxu.lnk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-02-08 10:53 - 2020-08-22 13:05 - 000000000 ____D C:\FRST
2025-02-08 10:52 - 2024-08-09 06:03 - 000000000 ____D C:\Users\linco\OneDrive\Počítač\FRST-OlderVersion
2025-02-08 10:49 - 2024-07-21 13:51 - 000002518 _____ C:\WINDOWS\system32\Tasks\Uninstall AdwCleaner Application
2025-02-08 10:48 - 2022-02-08 17:18 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-02-08 10:48 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-02-08 10:47 - 2023-04-27 21:35 - 000000000 ____D C:\Program Files\CCleaner
2025-02-08 10:43 - 2020-06-20 22:01 - 002229564 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-02-08 10:43 - 2020-06-20 20:24 - 000460920 _____ C:\WINDOWS\system32\perfh006.dat
2025-02-08 10:43 - 2020-06-20 20:24 - 000081102 _____ C:\WINDOWS\system32\perfc006.dat
2025-02-08 10:43 - 2019-12-07 15:41 - 000709160 _____ C:\WINDOWS\system32\perfh005.dat
2025-02-08 10:43 - 2019-12-07 15:41 - 000145492 _____ C:\WINDOWS\system32\perfc005.dat
2025-02-08 10:43 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2025-02-08 10:40 - 2024-07-09 08:02 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2025-02-08 10:40 - 2024-06-20 15:42 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2025-02-08 10:40 - 2023-04-27 21:35 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - linco
2025-02-08 10:38 - 2020-06-20 22:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-02-08 10:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2025-02-08 10:38 - 2018-09-15 19:59 - 000000000 ____D C:\ProgramData\AVAST Software
2025-02-08 10:38 - 2018-09-15 19:55 - 000000000 __SHD C:\Users\linco\IntelGraphicsProfiles
2025-02-08 10:38 - 2017-07-04 19:03 - 000000000 ____D C:\ProgramData\NVIDIA
2025-02-08 10:38 - 2017-07-04 18:59 - 000000000 ___HD C:\Intel
2025-02-08 10:37 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2025-02-08 10:17 - 2024-02-19 15:35 - 000000000 ____D C:\Users\linco\AppData\Local\Razer
2025-02-08 10:17 - 2024-02-19 15:28 - 000000000 ____D C:\ProgramData\Razer
2025-02-08 09:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-02-08 09:47 - 2018-09-15 19:55 - 000000000 ____D C:\Users\linco\AppData\Local\Packages
2025-02-08 09:44 - 2024-12-16 22:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-02-08 09:44 - 2024-03-30 09:44 - 000666440 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-02-08 09:42 - 2018-09-15 19:54 - 000000000 ___SD C:\Users\linco\AppData\Roaming\Microsoft\Credentials
2025-02-08 08:44 - 2021-09-21 17:09 - 000002251 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2025-02-08 08:43 - 2024-12-16 22:03 - 000001085 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2025-02-08 08:43 - 2024-12-16 22:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-02-08 08:43 - 2021-12-16 19:58 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-02-08 08:16 - 2020-06-20 21:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-02-07 15:16 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-02-06 22:25 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-02-05 21:07 - 2020-04-13 19:56 - 000000000 ____D C:\Users\linco\AppData\Roaming\Microsoft\Skype for Desktop
2025-02-02 23:27 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-02-02 23:10 - 2018-09-15 20:01 - 000000000 ____D C:\Users\linco\AppData\Local\AVAST Software
2025-02-02 15:29 - 2018-09-20 09:59 - 000000000 ____D C:\Users\linco\AppData\Local\D3DSCache
2025-02-02 08:50 - 2018-09-15 20:15 - 000000000 ____D C:\Users\linco\AppData\Local\Steam
2025-02-01 18:17 - 2023-10-17 21:18 - 000000000 ____D C:\Users\linco\AppData\LocalLow\NVIDIA
2025-02-01 18:17 - 2018-09-15 19:59 - 000000000 ____D C:\Users\linco\AppData\Local\NVIDIA
2025-02-01 10:25 - 2017-07-04 19:03 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2025-01-31 23:03 - 2024-06-26 17:54 - 000000000 ____D C:\WINDOWS\system32\compatrel
2025-01-31 23:03 - 2023-12-04 19:08 - 000000000 ____D C:\WINDOWS\InboxApps
2025-01-31 23:03 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-01-31 23:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-01-31 23:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2025-01-31 23:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2025-01-31 23:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-01-31 23:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-01-31 23:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-01-31 23:03 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2025-01-31 23:03 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2025-01-31 20:19 - 2020-06-20 21:57 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-01-27 11:03 - 2018-09-20 17:10 - 000000000 ____D C:\Users\linco\AppData\Local\CrashDumps
2025-01-27 10:54 - 2020-09-16 10:53 - 000000000 ____D C:\Users\linco\AppData\Roaming\Microsoft\Teams
2025-01-27 10:54 - 2018-12-05 19:57 - 000000000 ____D C:\Users\linco\AppData\Local\SquirrelTemp
2025-01-25 13:25 - 2024-11-14 00:03 - 003108904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2025-01-25 13:25 - 2024-11-14 00:03 - 002398760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2025-01-25 13:25 - 2024-11-02 09:28 - 000271912 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2025-01-25 13:25 - 2024-11-02 09:28 - 000245800 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2025-01-25 13:05 - 2024-11-14 00:03 - 000180760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2025-01-25 13:05 - 2024-11-14 00:03 - 000159768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2025-01-25 13:05 - 2024-11-14 00:03 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2025-01-18 12:31 - 2020-06-20 20:45 - 000000000 ____D C:\Users\defaultuser0
2025-01-18 12:30 - 2020-06-20 20:45 - 000000000 ____D C:\Users\linco
2025-01-14 20:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-01-14 20:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-01-14 20:05 - 2018-09-16 13:50 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-01-14 19:48 - 2018-09-16 13:50 - 206927936 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-01-14 19:47 - 2022-08-21 22:08 - 000000000 ____D C:\Program Files\dotnet
2025-01-14 19:47 - 2017-07-04 18:59 - 000000000 ____D C:\ProgramData\Package Cache
2025-01-14 19:19 - 2024-05-01 14:16 - 000163288 _____ C:\WINDOWS\system32\PrintMonitor.dll
2025-01-11 10:53 - 2022-11-20 17:51 - 000000000 ____D C:\Users\linco\OneDrive\Dokumenty\Sid Meier's Civilization VI
2025-01-11 10:21 - 2018-09-16 08:56 - 000000000 ____D C:\Users\linco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2025-01-10 12:46 - 2018-09-19 19:11 - 000000000 ____D C:\Users\linco\AppData\Local\PlaceholderTileLogoFolder

==================== Files in the root of some directories ========

2024-01-17 11:55 - 2024-01-17 11:55 - 000000259 _____ () C:\ProgramData\fontcacheev1.dat
2020-11-13 14:22 - 2020-11-13 14:22 - 000004536 _____ () C:\Users\linco\AppData\Roaming\CamStudio.cfg
2018-09-15 19:58 - 2019-07-07 10:46 - 000000200 _____ () C:\Users\linco\AppData\Roaming\sp_data.sys
2020-11-13 14:20 - 2020-11-13 14:20 - 000000096 _____ () C:\Users\linco\AppData\Roaming\version2.xml
2020-12-01 10:07 - 2020-12-01 10:07 - 000415507 _____ () C:\Users\linco\AppData\Local\ars.cache
2020-12-01 10:08 - 2020-12-01 10:08 - 001139162 _____ () C:\Users\linco\AppData\Local\census.cache
2020-12-01 09:38 - 2020-12-01 09:38 - 000000036 _____ () C:\Users\linco\AppData\Local\housecall.guid.cache
2024-02-20 00:10 - 2024-02-20 00:10 - 000007605 _____ () C:\Users\linco\AppData\Local\Resmon.ResmonCfg
2020-12-01 09:42 - 2020-12-01 09:42 - 000000010 _____ () C:\Users\linco\AppData\Local\sponge.last.runtime.cache
2024-07-12 19:08 - 2024-07-12 19:08 - 000000036 _____ () C:\Users\linco\AppData\Local\_LOCAL_GUID

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================