Rusové útočí
Napsal: 19 kvě 2021 16:34
Dobrý den, jsem tu znovu s prosbou o pomoc. Dceři se do NTB do Chromu dostal nějaký ruský vyhledávač. Sice jsem to přepnul zpět na Google ale raději bych to odstranil úplně. Předem dík za pomoc. Posílám oba logy:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-05-2021
Ran by HP (administrator) on LAPTOP-ERLFPQSH (HP OMEN by HP Laptop 15-ce0xx) (19-05-2021 17:26:21)
Running from C:\Users\HP\Desktop
Loaded Profiles: HP
Platform: Windows 10 Home Version 20H2 19042.985 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam8\YouCamService8.exe
(Discord Inc. -> Discord Inc.) C:\Users\HP\AppData\Local\Discord\app-1.0.9001\Discord.exe <6>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\SpyHunter5.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_eb7ea98d07646ece\x64\TouchpointAnalyticsClientService.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\DiagsCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\SysInfoCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_c0309a48bef2b923\x64\OmenCap.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP 3D DriveGuard\hpservice.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.21.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.5.1.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(LAVASOFT SOFTWARE CANADA INC -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2103.17603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [118496 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-04-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320056 2019-08-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtsCM] => C:\windows\RTSCM64.EXE [196824 2021-01-17] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324592 2017-10-31] (HP Inc. -> HP)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [707624 2018-08-08] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [YouCam Service8] => C:\Program Files (x86)\CyberLink\YouCam8\YouCamService8.exe [405176 2019-02-19] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [270912 2015-06-17] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [287648 2021-04-06] (IDSA Production signing key 2021 -> Intel)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-2795632099-1143490015-279500104-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33698888 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2795632099-1143490015-279500104-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [8520168 2021-02-24] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKU\S-1-5-21-2795632099-1143490015-279500104-1001\...\Run: [Discord] => C:\Users\HP\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKLM\...\Windows x64\Print Processors\Canon TS5000 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDF.DLL [30720 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5300 series: C:\windows\system32\CNMLMAT.DLL [385024 2012-03-14] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS5000 series: C:\windows\system32\CNMLMDF.DLL [485376 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS5000 series XPS: C:\windows\system32\CNMXLMDF.DLL [487424 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\windows\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-14] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\90.0.9316.94\Installer\chrmstp.exe [2021-05-05] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\...\Authentication\Credential Providers: [{765458F5-7207-46a2-ABD6-A5F11C0D141B}] -> C:\Program Files (x86)\CyberLink\YouCam8\CLCredProv\x64\CLCredProv.dll [2019-02-19] (CyberLink Corp. -> CyberLink)
HKLM\Software\...\Authentication\Credential Provider Filters: [{765458F5-7207-46a2-ABD6-A5F11C0D141B}] -> C:\Program Files (x86)\CyberLink\YouCam8\CLCredProv\x64\CLCredProv.dll [2019-02-19] (CyberLink Corp. -> CyberLink)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {00DCBF42-D5E7-4A5F-824E-DD60F6680FFA} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4699872 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
Task: {012E5551-17D1-493D-A621-0574F2BB5712} - System32\Tasks\HP\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe [1362464 2017-03-13] (HP Inc. -> HP Development Company, L.P.)
Task: {0174DF69-9704-4D9F-A482-80676E9EC265} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => cmd /c start hpdiags://BCF
Task: {03F38499-6550-4388-8FC5-255E2FD981BC} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => cmd /c start hpdiags://BatteryStatusError
Task: {0D3C603B-F569-4671-A41D-11C73A381F24} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23103392 2021-04-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {0F642BCE-DF55-41F5-AC36-DDF8F5EBDB55} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3985328 2021-05-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {1616F616-AE0F-4012-88D1-AF523C533394} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114000 2021-05-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {176B33F2-C72E-4D5E-B9C4-2BF98DF7D8EE} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [459680 2017-07-28] (HP Inc. -> )
Task: {1CB3460A-1766-4C29-B38E-C6FBDD8454E9} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => cmd /c start hpdiags:
Task: {1FAC0C01-EE99-4883-BD87-3F93A9A80C78} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {2043E051-106A-4AF6-8294-FFF07DAB65AA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23103392 2021-04-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {2F2B3C8B-386A-4368-83A9-D5FD618A1EFC} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\Scheduler.exe [156696 2021-04-09] (IObit CO., LTD -> IObit)
Task: {3142FA00-F1E4-44AC-A839-B2D5B29D07CE} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckTest => cmd /c start hpdiags://SmartCheckTest
Task: {365B7EED-57BE-4ABA-9F70-C11EA586DCF4} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => cmd /c start hpdiags://SmartCheckError
Task: {3E751D32-1D44-4772-9B7B-D6AD00237C84} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => cmd /c start hpdiags://BHM2
Task: {4CE116E9-5138-4460-AE85-F884DBF0BAB3} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4DC9D9E2-E9E1-4EDC-9B64-FAE258CB3AE5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {509D28BC-6633-458A-B2FC-818D8BF729A4} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644472 2019-06-21] (HP Inc. -> HP Inc.)
Task: {51DEC868-9098-494E-AC6E-441E26C2B12A} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => cmd /c start hpdiags://BHM1
Task: {5A7C20E7-77A0-49ED-B2F9-FE0FF43B53A9} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6EEE9169-DF5F-4485-9D27-CDE421E7130C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-05] (Google Inc -> Google Inc.)
Task: {73957504-AACC-450A-908D-1A0906E8E477} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7847B0F9-A26C-41EB-92C9-24BF73B9BABC} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-11-27] (Avast Software s.r.o. -> AVAST Software)
Task: {8C321BF9-D467-429E-BED3-B094912333EC} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {8CF216D7-7856-434B-A1AA-461E18225E05} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusTest => cmd /c start hpdiags://BatteryStatusTest
Task: {91317FAC-F2FE-4E45-8F2E-7993EA17FF49} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {946C981B-6A09-4C55-9F97-A6A3D6CA7983} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [616232 2016-11-28] (Dropbox, Inc -> DropboxOEM)
Task: {966C06F7-8EFE-4EB2-B423-A62D85A043D8} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => cmd /c start hpdiags://LaunchUI
Task: {97F90284-E750-466B-9AEF-4EB29984137C} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-11-27] (Avast Software s.r.o. -> AVAST Software)
Task: {9EFDCC4E-C293-418E-A19D-5CF1DC8CA358} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {9F16E753-BD0A-4918-AA78-3227608368BA} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A4453B38-7A21-46C0-A75D-37DC64EDF352} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [135000 2020-10-01] (HP Inc. -> HP Inc.)
Task: {A620A932-AC2E-4E3B-B599-3633BE7F23AD} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {A6B98208-6D78-42FB-89ED-8BCB78A0D519} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-04-22] (Piriform Software Ltd -> Piriform)
Task: {AE147F94-763B-4F39-8231-B100CC5EBFC5} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2229072 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
Task: {AE1DF906-A0AD-4EDE-BF2A-EFDB46093C46} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28082760 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B854B20B-AC88-4453-AF4B-65E24FD3297B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B9D46A70-807E-41B6-AC19-EE777B15A05E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-05] (Google Inc -> Google Inc.)
Task: {CAEC7BF0-20D5-4E5E-A2AE-08B37422272F} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {CE8323FA-88AA-4D50-B01C-E30DB0D9C354} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D39257F9-DD52-4FAE-B8FB-8A6B5C7802D3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3985328 2021-05-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {D3AF6303-C1A7-4358-8DD3-7AB442CC100D} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\AutoUpdate.exe [2285592 2021-04-09] (IObit CO., LTD -> IObit)
Task: {DDBD7AD8-D487-4693-A362-21C7CF570093} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => cmd /c start hpdiags://ABO
Task: {E2F3389D-45E7-4613-B108-A737AB8A5FA2} - System32\Tasks\Driver Booster SkipUAC (HP) => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\DriverBooster.exe [8243224 2021-04-22] (IObit CO., LTD -> IObit)
Task: {E465ED72-FFB7-4152-85E5-F137E473A7B3} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {E60961EC-A7D6-42EB-A9FF-6250E3639EA0} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114000 2021-05-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {E9103714-3999-4693-B278-70B4CB6C4F23} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {F94B8F03-059A-49B7-8CF5-29ED635F0619} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {FD43264D-8607-4E97-8A7B-7D1449285B0B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FFD01BB1-E474-4BED-9646-58254ACEF8A6} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2229072 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.255.255.10 10.255.255.20
Tcpip\..\Interfaces\{94aa0b46-cd69-40de-a625-84679ced601a}: [DhcpNameServer] 10.255.255.10 10.255.255.20
Tcpip\..\Interfaces\{abe4f5a4-93fa-4b96-8a35-cb451d0d1241}: [DhcpNameServer] 10.255.255.10 10.255.255.20
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-19]
FireFox:
========
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [File not signed]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-11-27] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-11-27] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2021-05-19]
CHR Notifications: Default -> hxxps://assassinscreed.ubisoft.com; hxxps://calendar.google.com; hxxps://meet.google.com; hxxps://old.reddit.com; hxxps://webmail.blueboard.cz; hxxps://www.facebook.com; hxxps://www.netflix.com; hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://www.modnipeklo.cz/
CHR StartupUrls: Default -> "hxxp://search.toggle.com/?lang=en&cid=adfaa7a7","hxxp://www.google.com/","hxxps://www.google.co ... kid=sp-006"
CHR Extension: (Prezentace) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-05]
CHR Extension: (Dokumenty) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-05]
CHR Extension: (Disk Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-05]
CHR Extension: (uBlock Origin) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-05-08]
CHR Extension: (Adobe Acrobat) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-12]
CHR Extension: (Convertio) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2019-10-22]
CHR Extension: (Tabulky) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-12]
CHR Extension: (Hola Free VPN Proxy Unblocker - Best VPN) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2021-05-03]
CHR Extension: (Avast Online Security) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-02-17]
CHR Extension: (Kindle Cloud Reader) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2018-03-05]
CHR Extension: (Shinigami Eyes) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijcpiojgefnkmcadacmacogglhjdjphj [2021-03-18]
CHR Extension: (New XKit) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\inobiceghmpkaklcknpniboilbjmlald [2020-05-21] [UpdateUrl:hxxps://new-xkit.github.io/XKit/Extensions/dist/page/FirefoxUpdate.json] <==== ATTENTION
CHR Extension: (HP Network Check Launcher) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2019-10-15]
CHR Extension: (View image) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpcmhcelnjdmblfmjabdeclccemkghjk [2021-04-12]
CHR Extension: (Hola ad remover) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\lalfpjdbhpmnhfofkckdpkljeilmogfl [2021-05-19]
CHR Extension: (F.B.(FluffBusting)Purity) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmkinhboiljjkhaknpaeaicmdjhagpep [2021-05-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-24]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-03-25]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\System Profile [2021-03-25]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7894040 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-11-27] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [606944 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [1281760 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [356064 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-11-27] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\90.0.9316.94\elevation_service.exe [1396968 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56920 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2019-05-06] (BitRaider LLC -> BitRaider, LLC)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8798600 2021-04-28] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-05] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe [12872144 2021-05-19] (EnigmaSoft Limited -> EnigmaSoft Limited)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410864 2021-01-25] (NVIDIA Corporation -> NVIDIA)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [905080 2019-12-19] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\AppHelperCap.exe [731152 2021-03-24] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\DiagsCap.exe [728608 2021-03-24] (HP Inc. -> HP Inc.)
R2 HPJumpStartBridge; C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [471040 2017-07-28] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\NetworkCap.exe [728608 2021-03-24] (HP Inc. -> HP Inc.)
R2 HPOmenCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_c0309a48bef2b923\x64\OmenCap.exe [688888 2020-12-23] (HP Inc. -> HP Inc.)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1077752 2016-09-28] (HP Inc. -> HP)
R2 hpsrv; C:\Program Files (x86)\HP\HP 3D DriveGuard\hpservice.exe [28192 2017-11-20] (HP Inc. -> HP)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\SysInfoCap.exe [729608 2021-03-24] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_eb7ea98d07646ece\x64\TouchpointAnalyticsClientService.exe [480280 2021-03-17] (HP Inc. -> HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [443344 2020-05-25] (Canon Inc. -> )
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2520376 2020-10-08] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3474240 2020-10-08] (Electronic Arts, Inc. -> Electronic Arts)
R2 ShMonitor; C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe [526800 2021-05-19] (EnigmaSoft Limited -> EnigmaSoft Limited)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28136 2021-02-24] (LAVASOFT SOFTWARE CANADA INC -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [212192 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [365024 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250336 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99288 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17352 2021-04-26] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41296 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [180448 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [522896 2021-05-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107792 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82872 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [850632 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [467720 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215352 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326992 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2019-06-04] (BitRaider -> BitRaider)
R3 clwvd8; C:\WINDOWS\System32\drivers\clwvd8.sys [61056 2018-08-23] (CyberLink Corp. -> CyberLink Corporation)
R3 EnigmaFileMonDriver; C:\WINDOWS\system32\Drivers\EnigmaFileMonDriver.sys [76744 2021-05-19] (EnigmaSoft Limited -> EnigmaSoft Limited)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [23960 2018-07-06] (HP Inc. -> HP Inc.)
R3 HPOmenCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [24056 2018-10-22] (HP Inc. -> HP Inc.)
R2 HpPortIo; C:\Windows\System32\drivers\HpPortIox64.sys [49176 2021-05-19] (HP Inc. -> HP Inc.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-03-08] (Martin Malik - REALiX -> REALiX(tm))
R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [70560 2020-10-11] (Realtek Semiconductor Corp. -> Realtek)
R3 ViGEmBus; C:\WINDOWS\System32\DriverStore\FileRepository\vigembus.inf_amd64_e84845c70c38fbe7\x64\ViGEmBus.sys [74648 2018-08-01] (HP Inc. -> Benjamin Höglinger-Stelzer)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [74552 2019-12-17] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 cpuz145; \??\C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-05-19 17:26 - 2021-05-19 17:27 - 000040451 _____ C:\Users\HP\Desktop\FRST.txt
2021-05-19 17:26 - 2021-05-19 17:26 - 000000000 ____D C:\FRST
2021-05-19 17:24 - 2021-05-19 17:24 - 002299904 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2021-05-19 17:18 - 2021-05-19 17:16 - 002216448 _____ (TODO: <Company name>) C:\WINDOWS\system32\wlanCliDLL.dll
2021-05-19 17:18 - 2021-05-19 17:16 - 000343552 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtBWCtrl.dll
2021-05-19 17:18 - 2021-05-19 17:16 - 000126336 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtFDrvIOCtrl.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 001304128 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\IntelOverclockingSDK.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000876096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr110.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000795712 _____ C:\WINDOWS\SysWOW64\IccSdk.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000645184 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\HardwareAccess.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000535616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp110.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000425024 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\Common.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000391768 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\XtuApplication.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000212032 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\HardwareServices.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000154176 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\IntelBenchmarkSDK.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000123488 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\XtuCoreServer.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000086080 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\HardwareServiceInterfaces.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000081472 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\XtuService.exe
2021-05-19 17:16 - 2021-05-19 17:16 - 000077376 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\ProfileHelperModel.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000075328 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\HardwareAccessInterfaces.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000074336 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\PlatformDetection.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000072768 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\XtuInterface.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000068192 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\XtuApplicationInterfaces.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000047784 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iocbios2.sys
2021-05-19 17:16 - 2021-05-19 17:16 - 000041144 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\ICCWDT.sys
2021-05-19 17:16 - 2021-05-19 17:16 - 000036928 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\PerfTuneAppMutex.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000029784 _____ ( ) C:\WINDOWS\SysWOW64\Interop.IccProxy.dll
2021-05-19 08:31 - 2021-05-19 08:31 - 000076744 _____ (EnigmaSoft Limited) C:\WINDOWS\system32\Drivers\EnigmaFileMonDriver.sys
2021-05-19 08:31 - 2021-05-19 08:31 - 000001090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpyHunter5.lnk
2021-05-19 08:31 - 2021-05-19 08:31 - 000001066 _____ C:\Users\Public\Desktop\SpyHunter5.lnk
2021-05-19 08:31 - 2021-05-19 08:31 - 000001066 _____ C:\ProgramData\Desktop\SpyHunter5.lnk
2021-05-19 08:31 - 2021-05-19 08:31 - 000000000 ____D C:\sh5ldr
2021-05-19 08:31 - 2021-05-19 08:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft
2021-05-19 08:31 - 2021-05-19 08:31 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited
2021-05-19 08:31 - 2021-05-19 08:31 - 000000000 ____D C:\Program Files\EnigmaSoft
2021-05-19 08:30 - 2021-05-19 08:30 - 006602192 _____ (EnigmaSoft Limited) C:\Users\HP\Downloads\SpyHunter-Installer.exe
2021-05-14 12:29 - 2021-05-14 12:29 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-14 12:29 - 2021-05-14 12:29 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-14 12:29 - 2021-05-14 12:29 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-14 12:29 - 2021-05-14 12:29 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-14 12:29 - 2021-05-14 12:29 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-14 12:29 - 2021-05-14 12:29 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-14 12:29 - 2021-05-14 12:29 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-14 12:29 - 2021-05-14 12:29 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-14 12:29 - 2021-05-14 12:29 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-14 12:29 - 2021-05-14 12:29 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-14 12:28 - 2021-05-14 12:28 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-14 12:28 - 2021-05-14 12:28 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-14 12:16 - 2021-05-14 12:16 - 000522896 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-05-12 11:55 - 2021-05-12 11:55 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-07 19:48 - 2021-05-07 19:48 - 000000222 _____ C:\Users\HP\Desktop\Amazing Cultivation Simulator.url
2021-05-07 17:24 - 2021-05-07 17:24 - 125580994 _____ C:\Users\HP\Downloads\Star.Wars.The.Bad.Batch.S01E02.720p.WEBRip.x265-MiNX[eztv.re].mkv
2021-04-30 16:38 - 2021-04-30 16:38 - 000224674 _____ C:\Users\HP\Downloads\Smlouva o investicnich sluzbach.pdf
2021-04-30 12:44 - 2021-04-30 12:44 - 000295771 _____ C:\Users\HP\Downloads\jízdenka vlak.pdf
2021-04-30 08:21 - 2021-04-30 12:47 - 000000000 ____D C:\Users\HP\Documents\obrázky sken
2021-04-30 08:14 - 2021-04-30 08:16 - 000000000 ___HD C:\ProgramData\CanonIJMIG
2021-04-30 08:14 - 2021-04-30 08:14 - 000000000 ___HD C:\ProgramData\CanonIJScan
2021-04-29 17:13 - 2021-05-11 23:03 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-04-28 17:27 - 2021-04-28 17:27 - 000576772 _____ C:\Users\HP\Downloads\2021_04_Vacková_Irena_SR_KZ.pdf
2021-04-28 17:27 - 2021-04-28 17:27 - 000565966 _____ C:\Users\HP\Downloads\2021_4_Vacek_Bohuslav_SR_KZ.pdf
2021-04-28 17:26 - 2021-04-28 17:26 - 000576772 _____ C:\Users\HP\Downloads\2021_04_Vacková_SR_KZ.pdf
2021-04-27 20:04 - 2021-04-27 20:04 - 000985308 _____ C:\Users\HP\Downloads\Prezentace - obecná - klient.pptx
2021-04-27 20:03 - 2021-04-27 20:03 - 002218778 _____ C:\Users\HP\Downloads\Prez - návod na vytvoření požadavku - přepis.pptx
2021-04-27 20:03 - 2021-04-27 20:03 - 001638348 _____ C:\Users\HP\Downloads\Prez - návod na vytvoření požadavku - tlumočení.pptx
2021-04-27 20:03 - 2021-04-27 20:03 - 000880117 _____ C:\Users\HP\Downloads\Prezentace - obecná - organizace.pptx
2021-04-27 20:01 - 2021-04-27 20:02 - 002217724 _____ C:\Users\HP\Downloads\Prezentace - návod na vytvoření požadavku - org.pptx
2021-04-26 17:14 - 2021-04-26 17:14 - 000011524 _____ C:\Users\HP\Downloads\ECI(2020)000005-receipt.pdf
2021-04-26 17:10 - 2021-05-19 08:15 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-04-26 17:10 - 2021-04-26 17:10 - 000850632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000467720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000365024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000339680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-04-26 17:10 - 2021-04-26 17:10 - 000326992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000250336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000215352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000212192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000180448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000099288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000082872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000041296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000017352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2021-04-26 12:26 - 2021-04-26 12:26 - 026940400 _____ (IObit ) C:\Users\HP\Downloads\driver_booster_setup.exe
2021-04-21 09:28 - 2021-04-21 09:28 - 011607625 _____ C:\Users\HP\Downloads\Rozsudek Josef Tourek 2019.pdf
2021-04-20 08:30 - 2021-04-20 08:30 - 000012327 _____ C:\Users\HP\Downloads\Zaučování Lucka.xlsx
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-05-19 17:25 - 2018-03-08 18:23 - 000000762 _____ C:\Users\HP\Desktop\Stažené soubory.lnk
2021-05-19 17:18 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-05-19 17:18 - 2018-03-06 19:26 - 000000000 ____D C:\Users\HP\AppData\Roaming\discord
2021-05-19 17:16 - 2021-03-03 18:12 - 000000000 ____D C:\hpswsetup
2021-05-19 17:16 - 2020-10-11 08:47 - 000127624 _____ () C:\WINDOWS\OMENSDK_Ver.exe
2021-05-19 17:16 - 2020-10-11 08:47 - 000049176 _____ (HP Inc.) C:\WINDOWS\system32\Drivers\HpPortIox64.sys
2021-05-19 17:16 - 2017-05-22 04:18 - 000000000 ____D C:\ProgramData\NVIDIA
2021-05-19 17:14 - 2018-03-08 18:15 - 000000000 ____D C:\Program Files\CCleaner
2021-05-19 17:14 - 2018-03-06 19:26 - 000000000 ____D C:\Users\HP\AppData\Local\Discord
2021-05-19 17:13 - 2017-05-22 04:56 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2021-05-19 10:14 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-19 10:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-19 08:47 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-19 08:44 - 2018-05-15 16:32 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-05-19 08:44 - 2018-05-15 16:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-05-19 08:44 - 2018-05-15 16:32 - 000000000 ____D C:\Program Files\WinRAR
2021-05-19 08:44 - 2018-03-27 20:00 - 000000923 _____ C:\Users\Public\Desktop\VLC media player.lnk
2021-05-19 08:44 - 2018-03-27 20:00 - 000000923 _____ C:\ProgramData\Desktop\VLC media player.lnk
2021-05-19 08:22 - 2020-10-12 15:00 - 000000000 ____D C:\Users\HP\AppData\Roaming\uTorrent
2021-05-19 08:16 - 2018-03-05 17:49 - 000000000 ____D C:\Users\HP\AppData\Local\CrashDumps
2021-05-17 08:52 - 2020-11-07 12:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-17 08:40 - 2020-06-15 19:04 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-17 08:40 - 2020-06-15 19:04 - 000002283 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-05-17 08:40 - 2020-06-15 19:04 - 000002283 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-05-17 08:37 - 2020-11-07 12:25 - 001841550 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-17 08:37 - 2019-12-07 16:41 - 000766654 _____ C:\WINDOWS\system32\perfh005.dat
2021-05-17 08:37 - 2019-12-07 16:41 - 000170398 _____ C:\WINDOWS\system32\perfc005.dat
2021-05-17 08:30 - 2021-02-18 19:58 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-17 08:30 - 2020-11-07 12:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-17 08:30 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-17 08:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-05-17 08:30 - 2018-03-05 18:48 - 000000000 ____D C:\ProgramData\AVAST Software
2021-05-14 15:10 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-05-14 15:09 - 2020-11-07 12:13 - 000538544 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-14 15:09 - 2017-05-22 03:46 - 000000948 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-05-14 15:09 - 2017-05-22 03:46 - 000000944 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-05-14 15:08 - 2019-12-07 16:42 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-14 12:42 - 2018-03-05 19:08 - 000000000 ____D C:\Program Files (x86)\Steam
2021-05-14 12:31 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-14 12:22 - 2018-03-05 19:06 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-14 12:20 - 2017-05-22 03:47 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-05-14 12:18 - 2018-03-05 19:06 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-14 12:17 - 2018-03-05 18:37 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-14 12:17 - 2018-03-05 18:37 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-05-14 12:17 - 2018-03-05 18:37 - 000002267 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-05-11 23:03 - 2021-03-12 13:42 - 000002564 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler
2021-05-11 23:03 - 2021-03-12 13:42 - 000002550 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update
2021-05-11 23:03 - 2021-03-12 13:42 - 000002384 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (HP)
2021-05-11 23:03 - 2021-02-09 20:44 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-05-11 23:03 - 2021-02-05 19:04 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:04 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2020-11-28 10:38 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b4ef8bfbc006
2021-05-11 23:03 - 2020-11-07 12:21 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-05-11 23:03 - 2020-11-07 12:21 - 000003462 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-05-11 23:03 - 2020-11-07 12:21 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-05-11 23:03 - 2020-11-07 12:21 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-05-11 23:03 - 2020-11-07 12:21 - 000003238 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-05-11 23:03 - 2020-11-07 12:21 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-05-11 23:03 - 2020-11-07 12:21 - 000002218 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-05-11 23:03 - 2020-11-07 12:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-05-07 17:56 - 2018-03-27 20:01 - 000000000 ____D C:\Users\HP\AppData\Roaming\vlc
2021-05-07 10:57 - 2019-04-18 15:45 - 000000000 ____D C:\Users\HP\Documents\YouCam
2021-05-05 17:06 - 2020-11-27 20:00 - 000002517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-05-04 19:11 - 2017-05-22 03:39 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-02 20:59 - 2021-02-27 16:15 - 000000000 ____D C:\ProgramData\CanonIJPLM
2021-04-30 22:01 - 2020-10-01 13:36 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-30 08:14 - 2021-02-27 16:17 - 000000000 ____D C:\Users\HP\AppData\Roaming\Canon
2021-04-29 20:38 - 2018-03-11 13:27 - 000000000 ____D C:\Users\HP\AppData\Local\Battle.net
2021-04-27 20:07 - 2018-05-24 15:50 - 000000000 ____D C:\Users\HP\AppData\Local\PlaceholderTileLogoFolder
2021-04-26 17:10 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-04-26 12:27 - 2018-03-08 18:27 - 000000000 ____D C:\ProgramData\ProductData
2021-04-26 12:27 - 2018-03-08 18:26 - 000000000 ____D C:\Users\HP\AppData\Roaming\IObit
2021-04-26 12:27 - 2018-03-08 18:26 - 000000000 ____D C:\ProgramData\IObit
2021-04-23 08:14 - 2020-11-07 12:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2021-04-21 20:47 - 2018-06-28 14:09 - 000000000 ____D C:\Users\HP\AppData\Local\D3DSCache
2021-04-20 08:31 - 2018-03-07 20:21 - 000000000 ____D C:\Users\HP\AppData\Local\Packages
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-05-2021
Ran by HP (administrator) on LAPTOP-ERLFPQSH (HP OMEN by HP Laptop 15-ce0xx) (19-05-2021 17:26:21)
Running from C:\Users\HP\Desktop
Loaded Profiles: HP
Platform: Windows 10 Home Version 20H2 19042.985 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam8\YouCamService8.exe
(Discord Inc. -> Discord Inc.) C:\Users\HP\AppData\Local\Discord\app-1.0.9001\Discord.exe <6>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\SpyHunter5.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_eb7ea98d07646ece\x64\TouchpointAnalyticsClientService.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\DiagsCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\SysInfoCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_c0309a48bef2b923\x64\OmenCap.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP 3D DriveGuard\hpservice.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.21.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_11.5.1.0_x64__v10z8vjag6ke6\win32\StreamerV2\omen.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(IDSA Production signing key 2021 -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki130350.inf_amd64_696b7c6764071b63\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(LAVASOFT SOFTWARE CANADA INC -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2103.17603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [118496 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-04-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320056 2019-08-28] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtsCM] => C:\windows\RTSCM64.EXE [196824 2021-01-17] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324592 2017-10-31] (HP Inc. -> HP)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [707624 2018-08-08] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [YouCam Service8] => C:\Program Files (x86)\CyberLink\YouCam8\YouCamService8.exe [405176 2019-02-19] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [270912 2015-06-17] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [287648 2021-04-06] (IDSA Production signing key 2021 -> Intel)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-2795632099-1143490015-279500104-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33698888 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2795632099-1143490015-279500104-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [8520168 2021-02-24] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKU\S-1-5-21-2795632099-1143490015-279500104-1001\...\Run: [Discord] => C:\Users\HP\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKLM\...\Windows x64\Print Processors\Canon TS5000 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDF.DLL [30720 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5300 series: C:\windows\system32\CNMLMAT.DLL [385024 2012-03-14] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS5000 series: C:\windows\system32\CNMLMDF.DLL [485376 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS5000 series XPS: C:\windows\system32\CNMXLMDF.DLL [487424 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\windows\system32\CNMN6PPM.DLL [359936 2012-06-14] (CANON INC.) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-14] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\90.0.9316.94\Installer\chrmstp.exe [2021-05-05] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\...\Authentication\Credential Providers: [{765458F5-7207-46a2-ABD6-A5F11C0D141B}] -> C:\Program Files (x86)\CyberLink\YouCam8\CLCredProv\x64\CLCredProv.dll [2019-02-19] (CyberLink Corp. -> CyberLink)
HKLM\Software\...\Authentication\Credential Provider Filters: [{765458F5-7207-46a2-ABD6-A5F11C0D141B}] -> C:\Program Files (x86)\CyberLink\YouCam8\CLCredProv\x64\CLCredProv.dll [2019-02-19] (CyberLink Corp. -> CyberLink)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {00DCBF42-D5E7-4A5F-824E-DD60F6680FFA} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4699872 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
Task: {012E5551-17D1-493D-A621-0574F2BB5712} - System32\Tasks\HP\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe [1362464 2017-03-13] (HP Inc. -> HP Development Company, L.P.)
Task: {0174DF69-9704-4D9F-A482-80676E9EC265} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => cmd /c start hpdiags://BCF
Task: {03F38499-6550-4388-8FC5-255E2FD981BC} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => cmd /c start hpdiags://BatteryStatusError
Task: {0D3C603B-F569-4671-A41D-11C73A381F24} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23103392 2021-04-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {0F642BCE-DF55-41F5-AC36-DDF8F5EBDB55} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3985328 2021-05-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {1616F616-AE0F-4012-88D1-AF523C533394} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114000 2021-05-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {176B33F2-C72E-4D5E-B9C4-2BF98DF7D8EE} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [459680 2017-07-28] (HP Inc. -> )
Task: {1CB3460A-1766-4C29-B38E-C6FBDD8454E9} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => cmd /c start hpdiags:
Task: {1FAC0C01-EE99-4883-BD87-3F93A9A80C78} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {2043E051-106A-4AF6-8294-FFF07DAB65AA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23103392 2021-04-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {2F2B3C8B-386A-4368-83A9-D5FD618A1EFC} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\Scheduler.exe [156696 2021-04-09] (IObit CO., LTD -> IObit)
Task: {3142FA00-F1E4-44AC-A839-B2D5B29D07CE} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckTest => cmd /c start hpdiags://SmartCheckTest
Task: {365B7EED-57BE-4ABA-9F70-C11EA586DCF4} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => cmd /c start hpdiags://SmartCheckError
Task: {3E751D32-1D44-4772-9B7B-D6AD00237C84} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => cmd /c start hpdiags://BHM2
Task: {4CE116E9-5138-4460-AE85-F884DBF0BAB3} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4DC9D9E2-E9E1-4EDC-9B64-FAE258CB3AE5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {509D28BC-6633-458A-B2FC-818D8BF729A4} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644472 2019-06-21] (HP Inc. -> HP Inc.)
Task: {51DEC868-9098-494E-AC6E-441E26C2B12A} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => cmd /c start hpdiags://BHM1
Task: {5A7C20E7-77A0-49ED-B2F9-FE0FF43B53A9} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6EEE9169-DF5F-4485-9D27-CDE421E7130C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-05] (Google Inc -> Google Inc.)
Task: {73957504-AACC-450A-908D-1A0906E8E477} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7847B0F9-A26C-41EB-92C9-24BF73B9BABC} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-11-27] (Avast Software s.r.o. -> AVAST Software)
Task: {8C321BF9-D467-429E-BED3-B094912333EC} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {8CF216D7-7856-434B-A1AA-461E18225E05} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusTest => cmd /c start hpdiags://BatteryStatusTest
Task: {91317FAC-F2FE-4E45-8F2E-7993EA17FF49} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {946C981B-6A09-4C55-9F97-A6A3D6CA7983} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [616232 2016-11-28] (Dropbox, Inc -> DropboxOEM)
Task: {966C06F7-8EFE-4EB2-B423-A62D85A043D8} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => cmd /c start hpdiags://LaunchUI
Task: {97F90284-E750-466B-9AEF-4EB29984137C} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-11-27] (Avast Software s.r.o. -> AVAST Software)
Task: {9EFDCC4E-C293-418E-A19D-5CF1DC8CA358} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {9F16E753-BD0A-4918-AA78-3227608368BA} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A4453B38-7A21-46C0-A75D-37DC64EDF352} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [135000 2020-10-01] (HP Inc. -> HP Inc.)
Task: {A620A932-AC2E-4E3B-B599-3633BE7F23AD} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {A6B98208-6D78-42FB-89ED-8BCB78A0D519} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-04-22] (Piriform Software Ltd -> Piriform)
Task: {AE147F94-763B-4F39-8231-B100CC5EBFC5} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2229072 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
Task: {AE1DF906-A0AD-4EDE-BF2A-EFDB46093C46} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28082760 2021-04-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B854B20B-AC88-4453-AF4B-65E24FD3297B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B9D46A70-807E-41B6-AC19-EE777B15A05E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-05] (Google Inc -> Google Inc.)
Task: {CAEC7BF0-20D5-4E5E-A2AE-08B37422272F} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {CE8323FA-88AA-4D50-B01C-E30DB0D9C354} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D39257F9-DD52-4FAE-B8FB-8A6B5C7802D3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3985328 2021-05-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {D3AF6303-C1A7-4358-8DD3-7AB442CC100D} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\AutoUpdate.exe [2285592 2021-04-09] (IObit CO., LTD -> IObit)
Task: {DDBD7AD8-D487-4693-A362-21C7CF570093} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => cmd /c start hpdiags://ABO
Task: {E2F3389D-45E7-4613-B108-A737AB8A5FA2} - System32\Tasks\Driver Booster SkipUAC (HP) => C:\Program Files (x86)\IObit\Driver Booster\8.4.0\DriverBooster.exe [8243224 2021-04-22] (IObit CO., LTD -> IObit)
Task: {E465ED72-FFB7-4152-85E5-F137E473A7B3} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {E60961EC-A7D6-42EB-A9FF-6250E3639EA0} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114000 2021-05-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {E9103714-3999-4693-B278-70B4CB6C4F23} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {F94B8F03-059A-49B7-8CF5-29ED635F0619} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {FD43264D-8607-4E97-8A7B-7D1449285B0B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FFD01BB1-E474-4BED-9646-58254ACEF8A6} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2229072 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.255.255.10 10.255.255.20
Tcpip\..\Interfaces\{94aa0b46-cd69-40de-a625-84679ced601a}: [DhcpNameServer] 10.255.255.10 10.255.255.20
Tcpip\..\Interfaces\{abe4f5a4-93fa-4b96-8a35-cb451d0d1241}: [DhcpNameServer] 10.255.255.10 10.255.255.20
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-19]
FireFox:
========
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [File not signed]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-11-27] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-11-27] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2021-05-19]
CHR Notifications: Default -> hxxps://assassinscreed.ubisoft.com; hxxps://calendar.google.com; hxxps://meet.google.com; hxxps://old.reddit.com; hxxps://webmail.blueboard.cz; hxxps://www.facebook.com; hxxps://www.netflix.com; hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://www.modnipeklo.cz/
CHR StartupUrls: Default -> "hxxp://search.toggle.com/?lang=en&cid=adfaa7a7","hxxp://www.google.com/","hxxps://www.google.co ... kid=sp-006"
CHR Extension: (Prezentace) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-05]
CHR Extension: (Dokumenty) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-05]
CHR Extension: (Disk Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-03-05]
CHR Extension: (uBlock Origin) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-05-08]
CHR Extension: (Adobe Acrobat) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-03-12]
CHR Extension: (Convertio) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppjkefeiehhflmgkhdooajgbkkegpcl [2019-10-22]
CHR Extension: (Tabulky) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-12]
CHR Extension: (Hola Free VPN Proxy Unblocker - Best VPN) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2021-05-03]
CHR Extension: (Avast Online Security) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-02-17]
CHR Extension: (Kindle Cloud Reader) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd [2018-03-05]
CHR Extension: (Shinigami Eyes) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijcpiojgefnkmcadacmacogglhjdjphj [2021-03-18]
CHR Extension: (New XKit) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\inobiceghmpkaklcknpniboilbjmlald [2020-05-21] [UpdateUrl:hxxps://new-xkit.github.io/XKit/Extensions/dist/page/FirefoxUpdate.json] <==== ATTENTION
CHR Extension: (HP Network Check Launcher) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2019-10-15]
CHR Extension: (View image) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpcmhcelnjdmblfmjabdeclccemkghjk [2021-04-12]
CHR Extension: (Hola ad remover) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\lalfpjdbhpmnhfofkckdpkljeilmogfl [2021-05-19]
CHR Extension: (F.B.(FluffBusting)Purity) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmkinhboiljjkhaknpaeaicmdjhagpep [2021-05-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-24]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-03-25]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\System Profile [2021-03-25]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7894040 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-11-27] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [606944 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [1281760 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [356064 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-11-27] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\90.0.9316.94\elevation_service.exe [1396968 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56920 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2019-05-06] (BitRaider LLC -> BitRaider, LLC)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8798600 2021-04-28] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-05] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-03-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe [12872144 2021-05-19] (EnigmaSoft Limited -> EnigmaSoft Limited)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410864 2021-01-25] (NVIDIA Corporation -> NVIDIA)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [905080 2019-12-19] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\AppHelperCap.exe [731152 2021-03-24] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\DiagsCap.exe [728608 2021-03-24] (HP Inc. -> HP Inc.)
R2 HPJumpStartBridge; C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [471040 2017-07-28] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\NetworkCap.exe [728608 2021-03-24] (HP Inc. -> HP Inc.)
R2 HPOmenCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_c0309a48bef2b923\x64\OmenCap.exe [688888 2020-12-23] (HP Inc. -> HP Inc.)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1077752 2016-09-28] (HP Inc. -> HP)
R2 hpsrv; C:\Program Files (x86)\HP\HP 3D DriveGuard\hpservice.exe [28192 2017-11-20] (HP Inc. -> HP)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_d9cbd6bbac564232\x64\SysInfoCap.exe [729608 2021-03-24] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_eb7ea98d07646ece\x64\TouchpointAnalyticsClientService.exe [480280 2021-03-17] (HP Inc. -> HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [443344 2020-05-25] (Canon Inc. -> )
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2520376 2020-10-08] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3474240 2020-10-08] (Electronic Arts, Inc. -> Electronic Arts)
R2 ShMonitor; C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe [526800 2021-05-19] (EnigmaSoft Limited -> EnigmaSoft Limited)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28136 2021-02-24] (LAVASOFT SOFTWARE CANADA INC -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [212192 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [365024 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250336 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99288 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17352 2021-04-26] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41296 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [180448 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [522896 2021-05-14] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107792 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82872 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [850632 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [467720 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215352 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326992 2021-04-26] (Avast Software s.r.o. -> AVAST Software)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2019-06-04] (BitRaider -> BitRaider)
R3 clwvd8; C:\WINDOWS\System32\drivers\clwvd8.sys [61056 2018-08-23] (CyberLink Corp. -> CyberLink Corporation)
R3 EnigmaFileMonDriver; C:\WINDOWS\system32\Drivers\EnigmaFileMonDriver.sys [76744 2021-05-19] (EnigmaSoft Limited -> EnigmaSoft Limited)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [23960 2018-07-06] (HP Inc. -> HP Inc.)
R3 HPOmenCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [24056 2018-10-22] (HP Inc. -> HP Inc.)
R2 HpPortIo; C:\Windows\System32\drivers\HpPortIox64.sys [49176 2021-05-19] (HP Inc. -> HP Inc.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-03-08] (Martin Malik - REALiX -> REALiX(tm))
R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [70560 2020-10-11] (Realtek Semiconductor Corp. -> Realtek)
R3 ViGEmBus; C:\WINDOWS\System32\DriverStore\FileRepository\vigembus.inf_amd64_e84845c70c38fbe7\x64\ViGEmBus.sys [74648 2018-08-01] (HP Inc. -> Benjamin Höglinger-Stelzer)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [74552 2019-12-17] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 cpuz145; \??\C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-05-19 17:26 - 2021-05-19 17:27 - 000040451 _____ C:\Users\HP\Desktop\FRST.txt
2021-05-19 17:26 - 2021-05-19 17:26 - 000000000 ____D C:\FRST
2021-05-19 17:24 - 2021-05-19 17:24 - 002299904 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2021-05-19 17:18 - 2021-05-19 17:16 - 002216448 _____ (TODO: <Company name>) C:\WINDOWS\system32\wlanCliDLL.dll
2021-05-19 17:18 - 2021-05-19 17:16 - 000343552 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtBWCtrl.dll
2021-05-19 17:18 - 2021-05-19 17:16 - 000126336 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtFDrvIOCtrl.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 001304128 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\IntelOverclockingSDK.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000876096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr110.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000795712 _____ C:\WINDOWS\SysWOW64\IccSdk.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000645184 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\HardwareAccess.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000535616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp110.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000425024 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\Common.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000391768 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\XtuApplication.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000212032 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\HardwareServices.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000154176 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\IntelBenchmarkSDK.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000123488 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\XtuCoreServer.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000086080 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\HardwareServiceInterfaces.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000081472 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\XtuService.exe
2021-05-19 17:16 - 2021-05-19 17:16 - 000077376 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\ProfileHelperModel.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000075328 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\HardwareAccessInterfaces.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000074336 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\PlatformDetection.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000072768 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\XtuInterface.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000068192 _____ (Intel(R) Corporation) C:\WINDOWS\SysWOW64\XtuApplicationInterfaces.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000047784 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iocbios2.sys
2021-05-19 17:16 - 2021-05-19 17:16 - 000041144 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\ICCWDT.sys
2021-05-19 17:16 - 2021-05-19 17:16 - 000036928 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\PerfTuneAppMutex.dll
2021-05-19 17:16 - 2021-05-19 17:16 - 000029784 _____ ( ) C:\WINDOWS\SysWOW64\Interop.IccProxy.dll
2021-05-19 08:31 - 2021-05-19 08:31 - 000076744 _____ (EnigmaSoft Limited) C:\WINDOWS\system32\Drivers\EnigmaFileMonDriver.sys
2021-05-19 08:31 - 2021-05-19 08:31 - 000001090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpyHunter5.lnk
2021-05-19 08:31 - 2021-05-19 08:31 - 000001066 _____ C:\Users\Public\Desktop\SpyHunter5.lnk
2021-05-19 08:31 - 2021-05-19 08:31 - 000001066 _____ C:\ProgramData\Desktop\SpyHunter5.lnk
2021-05-19 08:31 - 2021-05-19 08:31 - 000000000 ____D C:\sh5ldr
2021-05-19 08:31 - 2021-05-19 08:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft
2021-05-19 08:31 - 2021-05-19 08:31 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited
2021-05-19 08:31 - 2021-05-19 08:31 - 000000000 ____D C:\Program Files\EnigmaSoft
2021-05-19 08:30 - 2021-05-19 08:30 - 006602192 _____ (EnigmaSoft Limited) C:\Users\HP\Downloads\SpyHunter-Installer.exe
2021-05-14 12:29 - 2021-05-14 12:29 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-14 12:29 - 2021-05-14 12:29 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-14 12:29 - 2021-05-14 12:29 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-14 12:29 - 2021-05-14 12:29 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-14 12:29 - 2021-05-14 12:29 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-14 12:29 - 2021-05-14 12:29 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-14 12:29 - 2021-05-14 12:29 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-14 12:29 - 2021-05-14 12:29 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-14 12:29 - 2021-05-14 12:29 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-14 12:29 - 2021-05-14 12:29 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-14 12:28 - 2021-05-14 12:28 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-14 12:28 - 2021-05-14 12:28 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-14 12:16 - 2021-05-14 12:16 - 000522896 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-05-12 11:55 - 2021-05-12 11:55 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-07 19:48 - 2021-05-07 19:48 - 000000222 _____ C:\Users\HP\Desktop\Amazing Cultivation Simulator.url
2021-05-07 17:24 - 2021-05-07 17:24 - 125580994 _____ C:\Users\HP\Downloads\Star.Wars.The.Bad.Batch.S01E02.720p.WEBRip.x265-MiNX[eztv.re].mkv
2021-04-30 16:38 - 2021-04-30 16:38 - 000224674 _____ C:\Users\HP\Downloads\Smlouva o investicnich sluzbach.pdf
2021-04-30 12:44 - 2021-04-30 12:44 - 000295771 _____ C:\Users\HP\Downloads\jízdenka vlak.pdf
2021-04-30 08:21 - 2021-04-30 12:47 - 000000000 ____D C:\Users\HP\Documents\obrázky sken
2021-04-30 08:14 - 2021-04-30 08:16 - 000000000 ___HD C:\ProgramData\CanonIJMIG
2021-04-30 08:14 - 2021-04-30 08:14 - 000000000 ___HD C:\ProgramData\CanonIJScan
2021-04-29 17:13 - 2021-05-11 23:03 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-04-28 17:27 - 2021-04-28 17:27 - 000576772 _____ C:\Users\HP\Downloads\2021_04_Vacková_Irena_SR_KZ.pdf
2021-04-28 17:27 - 2021-04-28 17:27 - 000565966 _____ C:\Users\HP\Downloads\2021_4_Vacek_Bohuslav_SR_KZ.pdf
2021-04-28 17:26 - 2021-04-28 17:26 - 000576772 _____ C:\Users\HP\Downloads\2021_04_Vacková_SR_KZ.pdf
2021-04-27 20:04 - 2021-04-27 20:04 - 000985308 _____ C:\Users\HP\Downloads\Prezentace - obecná - klient.pptx
2021-04-27 20:03 - 2021-04-27 20:03 - 002218778 _____ C:\Users\HP\Downloads\Prez - návod na vytvoření požadavku - přepis.pptx
2021-04-27 20:03 - 2021-04-27 20:03 - 001638348 _____ C:\Users\HP\Downloads\Prez - návod na vytvoření požadavku - tlumočení.pptx
2021-04-27 20:03 - 2021-04-27 20:03 - 000880117 _____ C:\Users\HP\Downloads\Prezentace - obecná - organizace.pptx
2021-04-27 20:01 - 2021-04-27 20:02 - 002217724 _____ C:\Users\HP\Downloads\Prezentace - návod na vytvoření požadavku - org.pptx
2021-04-26 17:14 - 2021-04-26 17:14 - 000011524 _____ C:\Users\HP\Downloads\ECI(2020)000005-receipt.pdf
2021-04-26 17:10 - 2021-05-19 08:15 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-04-26 17:10 - 2021-04-26 17:10 - 000850632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000467720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000365024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000339680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-04-26 17:10 - 2021-04-26 17:10 - 000326992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000250336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000215352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000212192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000180448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000099288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000082872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000041296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-04-26 17:10 - 2021-04-26 17:10 - 000017352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2021-04-26 12:26 - 2021-04-26 12:26 - 026940400 _____ (IObit ) C:\Users\HP\Downloads\driver_booster_setup.exe
2021-04-21 09:28 - 2021-04-21 09:28 - 011607625 _____ C:\Users\HP\Downloads\Rozsudek Josef Tourek 2019.pdf
2021-04-20 08:30 - 2021-04-20 08:30 - 000012327 _____ C:\Users\HP\Downloads\Zaučování Lucka.xlsx
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-05-19 17:25 - 2018-03-08 18:23 - 000000762 _____ C:\Users\HP\Desktop\Stažené soubory.lnk
2021-05-19 17:18 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-05-19 17:18 - 2018-03-06 19:26 - 000000000 ____D C:\Users\HP\AppData\Roaming\discord
2021-05-19 17:16 - 2021-03-03 18:12 - 000000000 ____D C:\hpswsetup
2021-05-19 17:16 - 2020-10-11 08:47 - 000127624 _____ () C:\WINDOWS\OMENSDK_Ver.exe
2021-05-19 17:16 - 2020-10-11 08:47 - 000049176 _____ (HP Inc.) C:\WINDOWS\system32\Drivers\HpPortIox64.sys
2021-05-19 17:16 - 2017-05-22 04:18 - 000000000 ____D C:\ProgramData\NVIDIA
2021-05-19 17:14 - 2018-03-08 18:15 - 000000000 ____D C:\Program Files\CCleaner
2021-05-19 17:14 - 2018-03-06 19:26 - 000000000 ____D C:\Users\HP\AppData\Local\Discord
2021-05-19 17:13 - 2017-05-22 04:56 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2021-05-19 10:14 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-19 10:14 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-19 08:47 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-19 08:44 - 2018-05-15 16:32 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-05-19 08:44 - 2018-05-15 16:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-05-19 08:44 - 2018-05-15 16:32 - 000000000 ____D C:\Program Files\WinRAR
2021-05-19 08:44 - 2018-03-27 20:00 - 000000923 _____ C:\Users\Public\Desktop\VLC media player.lnk
2021-05-19 08:44 - 2018-03-27 20:00 - 000000923 _____ C:\ProgramData\Desktop\VLC media player.lnk
2021-05-19 08:22 - 2020-10-12 15:00 - 000000000 ____D C:\Users\HP\AppData\Roaming\uTorrent
2021-05-19 08:16 - 2018-03-05 17:49 - 000000000 ____D C:\Users\HP\AppData\Local\CrashDumps
2021-05-17 08:52 - 2020-11-07 12:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-17 08:40 - 2020-06-15 19:04 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-17 08:40 - 2020-06-15 19:04 - 000002283 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-05-17 08:40 - 2020-06-15 19:04 - 000002283 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-05-17 08:37 - 2020-11-07 12:25 - 001841550 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-17 08:37 - 2019-12-07 16:41 - 000766654 _____ C:\WINDOWS\system32\perfh005.dat
2021-05-17 08:37 - 2019-12-07 16:41 - 000170398 _____ C:\WINDOWS\system32\perfc005.dat
2021-05-17 08:30 - 2021-02-18 19:58 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-17 08:30 - 2020-11-07 12:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-17 08:30 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-17 08:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-05-17 08:30 - 2018-03-05 18:48 - 000000000 ____D C:\ProgramData\AVAST Software
2021-05-14 15:10 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-05-14 15:09 - 2020-11-07 12:13 - 000538544 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-14 15:09 - 2017-05-22 03:46 - 000000948 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-05-14 15:09 - 2017-05-22 03:46 - 000000944 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-05-14 15:08 - 2019-12-07 16:42 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-14 15:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-14 12:42 - 2018-03-05 19:08 - 000000000 ____D C:\Program Files (x86)\Steam
2021-05-14 12:31 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-14 12:22 - 2018-03-05 19:06 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-14 12:20 - 2017-05-22 03:47 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-05-14 12:18 - 2018-03-05 19:06 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-14 12:17 - 2018-03-05 18:37 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-14 12:17 - 2018-03-05 18:37 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-05-14 12:17 - 2018-03-05 18:37 - 000002267 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-05-11 23:03 - 2021-03-12 13:42 - 000002564 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler
2021-05-11 23:03 - 2021-03-12 13:42 - 000002550 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update
2021-05-11 23:03 - 2021-03-12 13:42 - 000002384 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (HP)
2021-05-11 23:03 - 2021-02-09 20:44 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-05-11 23:03 - 2021-02-05 19:04 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:04 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2021-02-05 19:03 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-05-11 23:03 - 2020-11-28 10:38 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b4ef8bfbc006
2021-05-11 23:03 - 2020-11-07 12:21 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-05-11 23:03 - 2020-11-07 12:21 - 000003462 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-05-11 23:03 - 2020-11-07 12:21 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-05-11 23:03 - 2020-11-07 12:21 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-05-11 23:03 - 2020-11-07 12:21 - 000003238 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-05-11 23:03 - 2020-11-07 12:21 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-05-11 23:03 - 2020-11-07 12:21 - 000002218 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-05-11 23:03 - 2020-11-07 12:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-05-07 17:56 - 2018-03-27 20:01 - 000000000 ____D C:\Users\HP\AppData\Roaming\vlc
2021-05-07 10:57 - 2019-04-18 15:45 - 000000000 ____D C:\Users\HP\Documents\YouCam
2021-05-05 17:06 - 2020-11-27 20:00 - 000002517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-05-04 19:11 - 2017-05-22 03:39 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-02 20:59 - 2021-02-27 16:15 - 000000000 ____D C:\ProgramData\CanonIJPLM
2021-04-30 22:01 - 2020-10-01 13:36 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-30 08:14 - 2021-02-27 16:17 - 000000000 ____D C:\Users\HP\AppData\Roaming\Canon
2021-04-29 20:38 - 2018-03-11 13:27 - 000000000 ____D C:\Users\HP\AppData\Local\Battle.net
2021-04-27 20:07 - 2018-05-24 15:50 - 000000000 ____D C:\Users\HP\AppData\Local\PlaceholderTileLogoFolder
2021-04-26 17:10 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-04-26 12:27 - 2018-03-08 18:27 - 000000000 ____D C:\ProgramData\ProductData
2021-04-26 12:27 - 2018-03-08 18:26 - 000000000 ____D C:\Users\HP\AppData\Roaming\IObit
2021-04-26 12:27 - 2018-03-08 18:26 - 000000000 ____D C:\ProgramData\IObit
2021-04-23 08:14 - 2020-11-07 12:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2021-04-21 20:47 - 2018-06-28 14:09 - 000000000 ____D C:\Users\HP\AppData\Local\D3DSCache
2021-04-20 08:31 - 2018-03-07 20:21 - 000000000 ____D C:\Users\HP\AppData\Local\Packages
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================