Počítač se zasekává, černá okna...
Napsal: 29 čer 2023 14:00
Potřebuji zjistit, zda je zasekávání a černání otevřených oken způsobeno nedávným updatem Windows nebo nějakou havětí.
Děkuji!
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-06-2023
Ran by fbart (administrator) on DESKTOP-1NAN9QR (HP HP ProBook 450 G4) (29-06-2023 14:52:54)
Running from D:\SOFTWARE\FRST\FRST64.exe
Loaded Profiles: fbart
Platform: Microsoft Windows 10 Home Version 21H2 19044.3086 (X64) Language: Czech (Czech Republic) -> English (United Kingdom)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\bckp_amgr.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\monitoring-mini.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\task-manager.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Acronis\Agent\bin\adp-agent.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Acronis\Agent\bin\updater.exe
(C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe ->) (DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpCardEngine.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\totalcmd\TOTALCMD64.EXE ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitPDFReader.exe
(C:\totalcmd\TOTALCMD64.EXE ->) (VideoLAN -> VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(C:\Users\fbart\AppData\Roaming\Zoom\bin\Zoom.exe ->) (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Users\fbart\AppData\Roaming\Zoom\bin\zWebview2Agent.exe
(C:\Windows\CxSvc\CxAudioSvc.exe ->) (Synaptics Incorporated -> Conexant Systems LLC.) C:\Program Files\CONEXANT\SA3\HP-NB-AIO\SmartAudio3.exe
(C:\Windows\CxSvc\CxAudioSvc.exe ->) (Synaptics Incorporated -> Conexant Systems, Inc) C:\Program Files\CONEXANT\Flow\Flow.exe
(DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5c0b90ae6269072a\HotKeyServiceUWP.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5c0b90ae6269072a\HPHotkeyNotification.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\igfxEM.exe
(explorer.exe ->) (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\Audition.exe
(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\77.0.3.0\crashpad_handler.exe <4>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Lingea s.r.o. -> Lingea s.r.o.) C:\Program Files (x86)\Lingea\Lexicon7\Lexicon.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office10\EXCEL.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <6>
(explorer.exe ->) (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Users\fbart\AppData\Roaming\Zoom\bin\Zoom.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\perfmon.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <53>
(Opera Norway AS -> Opera Software) C:\Program Files\Opera\99.0.4788.65\opera_crashreporter.exe <2>
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\aakore.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Cloud Client Services\Hub.exe
(services.exe ->) (Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Cloud Client Services\TransportClient.exe
(services.exe ->) (Avid Technology, Inc.) [File not signed] C:\Program Files\Avid\Pro Tools First\MMERefresh.exe
(services.exe ->) (Comodo Security Solutions, Inc. -> Comodo) C:\Program Files (x86)\COMODO\Dragon\dragon_updater.exe
(services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
(services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe <2>
(services.exe ->) (Conexant Systems LLC.) [File not signed] C:\Windows\CxSvc\CxUtilSvc.exe
(services.exe ->) (DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Hewlett Packard Enterprise Company -> Hewlett Packard Enterprise Company) C:\Program Files (x86)\HP\HP Device Access Manager\HPE.DeviceAccessManager.ServiceHost.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5c0b90ae6269072a\HotKeyServiceUWP.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5c0b90ae6269072a\LanWlanWwanSwitchingServiceUWP.exe
(services.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\fpCSEvtSvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Shanghai Microvirt Software Technology Co., Ltd. -> ) D:\Program Files\Microvirt\MEmu\MemuService.exe
(services.exe ->) (Softland SRL -> Microsoft) C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe
(services.exe ->) (Synaptics Incorporated -> Conexant Systems LLC.) C:\Windows\CxSvc\CxAudioSvc.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2323.2.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe <5>
(svchost.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(svchost.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Synaptics Incorporated -> Conexant) C:\Windows\System32\MicTray64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(WhatsApp LLC -> WhatsApp) C:\Users\fbart\AppData\Local\WhatsApp\app-2.2325.3\WhatsApp.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2018-01-18] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320584 2016-06-30] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [220056 2023-06-10] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [DigidesignMMERefresh] => C:\Program Files\Avid\Pro Tools First\MMERefresh.exe [117760 2018-04-03] (Avid Technology, Inc.) [File not signed]
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [644000 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Run: [PowerDVD22Agent] => C:\Program Files\CyberLink\PowerDVD22\PowerDVD22Agent.exe [569976 2022-07-14] (CyberLink Corp. -> CyberLink Corp.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [366944 2023-05-12] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-07-23] (Adobe Inc. -> )
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6206360 2021-03-23] (Acronis International GmbH -> )
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe [446392 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [4095184 2021-08-11] (Opera Software AS -> Opera Software)
HKLM-x32\...\Run: [CLMLServer_For_P2G13] => C:\Program Files (x86)\CyberLink\Power2Go13\CLMLSvc_P2G13.exe [154296 2019-05-23] (CyberLink Corp. -> CyberLink)
HKLM\Software\Policies\...\system: [DefaultCredentialProvider] {F731030D-3272-4D8B-A21A-3940EF268453}
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe [145967384 2023-06-26] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe [145967384 2023-06-26] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [39159608 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\fbart\AppData\Local\Microsoft\Teams\Update.exe [2588488 2023-06-22] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe [145967384 2023-06-26] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [Titan Backup] => C:\Program Files (x86)\Titan Backup\Launcher.exe [142784 2008-12-18] (Neobyte Solutions SRL -> Neobyte Solutions)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [com.squirrel.WhatsApp.WhatsApp] => C:\Users\fbart\AppData\Local\WhatsApp\Update.exe [2412768 2023-06-15] (WhatsApp LLC -> )
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [AvastBrowserAutoLaunch_A606C3A23F722394777472C3610F9B5A] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3364752 2023-06-14] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [MicrosoftEdgeAutoLaunch_CBC3A2C48DD08E53B4E467E37B52CD84] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113856 2023-06-22] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [Power2GoExpress13] => C:\Program Files (x86)\CyberLink\Power2Go13\Power2GoExpress.exe [3699184 2020-08-25] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [CyberlinkPowerPlayerMediaServer_PowerDVD22] => C:\Program Files\CyberLink\PowerDVD22\Common\CLMediaServer\clmediaserver.exe [6775928 2022-07-14] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe [145967384 2023-06-26] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2017-01-10] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\doPDF 7 Monitor: C:\windows\system32\dopdfmn7.dll [25920 2016-12-29] (Softland S.R.L. -> Softland)
HKLM\...\Print\Monitors\HPLJ1020LM: C:\windows\system32\zlhp1020.dll [192512 2017-01-10] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\novaPDF 10 Port Monitor: C:\windows\system32\novamn10.dll [18944 2020-04-01] (Softland) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\92.2.11577.159\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.198\Installer\chrmstp.exe [2023-06-27] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\114.0.21452.134\Installer\chrmstp.exe [2023-06-27] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\86.1.6782.183\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
HKLM\Software\...\Authentication\Credential Providers: [{77B7ED10-A641-4766-A428-8B9EE42E830A}] -> C:\windows\system32\DPCrProv2.dll [2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{E85E7D14-653B-4E51-9BC5-E5F9EC9BC51D}] -> C:\windows\system32\DPCrProv2.dll [2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F0C31759-99A6-493E-AD7D-7F69126CDFBC}] -> C:\windows\system32\DPCrProv2.dll [2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F731030D-3272-4D8B-A21A-3940EF268453}] -> C:\windows\system32\DPCrProv2.dll [2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{DCFB2A33-814B-4236-BFBD-FFEA3F528385}] -> C:\windows\system32\DPCrProv2.dll [2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avid Link.lnk [2019-06-24]
ShortcutTarget: Avid Link.lnk -> C:\Program Files\Avid\Avid Link\Avid Link.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP JumpStart Launch.lnk [2016-10-30]
ShortcutTarget: HP JumpStart Launch.lnk -> c:\Windows\Installer\{0F5EBB0D-DF6D-4DBE-9789-57BF05B3B0FD}\HPlogo_blue.ico () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2018-05-28]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\fbart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\englishme!.lnk [2023-04-27]
ShortcutTarget: englishme!.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {014054C1-BE6A-4621-AF6A-1A16D142EAFD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {0315D22F-55A8-4872-B593-CBA6743545C8} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {15F9F943-91F3-431B-A068-68EF69CFC841} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {1A0E7D9A-2E5D-49C7-A1B9-997A203B84D5} - System32\Tasks\doPDF 10 Telemetry => C:\Program Files\Softland\novaPDF 10\Driver\GoogleAnalytics.exe [51504 2020-04-01] (Softland SRL -> )
Task: {1B10606B-7AFC-408A-9FC6-8088E57FCC9A} - System32\Tasks\Opera scheduled assistant Autoupdate 1582720617 => C:\Program Files\Opera\launcher.exe [2708376 2023-06-27] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {1CC38B53-A328-4DB6-AEEB-82D4015A1931} - System32\Tasks\Adobe Creative Cloud => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [779504 2021-07-23] (Adobe Inc. -> Adobe Inc.)
Task: {2364088E-19F8-4F7A-8A88-80C74475F615} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {2C67E44D-00AE-4DF6-82E3-154444498CE3} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [732064 2023-06-25] (Mozilla Corporation -> Mozilla Foundation)
Task: {338E88A2-EDFB-4A81-98EA-CBAD8E7F6728} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {468B8D09-A923-4767-A43B-646993EA1D39} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [17335976 2017-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {493ED88C-79E7-4817-9B2A-FE032ABEB371} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {5ECABE5A-94BE-44F2-9FA0-C917B62A4F51} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "d69b8913-fbe2-4c6b-8e6b-b8083f51231d" --version "6.10.10347" --silent
Task: {60B461AF-16AA-4C85-9A1A-09B06C4A8CE8} - System32\Tasks\CLToast => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2319632 2022-04-14] (CyberLink Corp. -> )
Task: {6E63C272-93D0-4442-908D-4D969E42433F} - System32\Tasks\HPEA3JOBS => C:\Program -> Files\HP\HP ePrint\hpeprint.exe /CheckJobs
Task: {73804E3F-2D8D-4D76-BD6F-AC2AA276AE29} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4885400 2023-06-10] (Avast Software s.r.o. -> AVAST Software)
Task: {91770352-4263-4BCB-B39B-16661B0CDEC1} - System32\Tasks\GoogleUpdateTaskMachineCore{B617D1EE-9B22-46F4-BAA4-6EA190723FEA} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-13] (Google LLC -> Google LLC)
Task: {93E3645D-9929-4696-B45E-6727B7D982D3} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {94333FE9-C5A2-412C-B30A-BFC66C47FF8E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2295192 2023-01-31] (Avast Software s.r.o. -> Avast Software)
Task: {98A0AFCD-BB66-4C41-B5EE-F58EC42B9728} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {9BF8FCA5-10F7-470D-B2A8-275CC647D078} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [17335976 2017-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9C295FF3-0AB2-45F6-8324-99AC9B9B8D6C} - System32\Tasks\GoogleUpdateTaskMachineUA{5438BC99-B205-41C8-882F-CCC7E022EB29} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-13] (Google LLC -> Google LLC)
Task: {BD0EB86B-ADC0-476E-854A-748D90D679C8} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3364752 2023-06-14] (Avast Software s.r.o. -> AVAST Software)
Task: {BD5A8FA8-06EA-446B-A5F8-180A99237DD3} - System32\Tasks\Microsoft\Windows\Conexant\MicTray => C:\Windows\System32\MicTray64.exe [5009512 2020-06-13] (Synaptics Incorporated -> Conexant)
Task: {C0C70F2E-A974-4FF8-95A4-661E8091DA9C} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {C11EB089-78EE-48DE-9BA7-359A83745372} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {C3EB5C18-CE3E-4A42-B1D1-25ECA26E088B} - System32\Tasks\Opera scheduled Autoupdate 1487236436 => C:\Program Files\Opera\launcher.exe [2708376 2023-06-27] (Opera Norway AS -> Opera Software)
Task: {E4043D11-6B42-41B7-A790-963B06103110} - System32\Tasks\CCleanerSkipUAC - fbart => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {E7302411-1508-44D7-8596-AC3C28BC26CD} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3364752 2023-06-14] (Avast Software s.r.o. -> AVAST Software)
Task: {E7327A7E-14D8-4367-A55F-D6017AEC4AC5} - System32\Tasks\CLToastRun => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2319632 2022-04-14] (CyberLink Corp. -> )
Task: {F2B6838D-862C-4574-B41B-C070BF782A85} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.10.10.10 10.100.0.100
Tcpip\..\Interfaces\{5e93018d-e819-411c-a382-4ff97e6c7ce1}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7bb2afef-f054-4d68-bdc1-066d09ae6753}: [NameServer] 156.154.70.22,156.154.71.22
Tcpip\..\Interfaces\{7bb2afef-f054-4d68-bdc1-066d09ae6753}: [DhcpNameServer] 10.10.10.10 10.100.0.100
Tcpip\..\Interfaces\{9a41f277-0fa9-4555-953f-aa9788cd4df8}: [NameServer] 156.154.70.22,156.154.71.22
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\fbart\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-29]
Edge Session Restore: Default -> is enabled.
Edge Extension: (Edge relevant text changes) - C:\Users\fbart\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-24]
FireFox:
========
FF DefaultProfile: xs1zf06h.default-1602174025168
FF ProfilePath: C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168 [2023-06-29]
FF Session Restore: Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168 -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168 -> hxxps://app.slack.com; hxxps://my.jdownloader.org; hxxps://www.facebook.com
FF Extension: (Facebook Container) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\@contain-facebook.xpi [2022-11-03]
FF Extension: (German Dictionary, extended for Austria) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\de-AT@dictionaries.addons.mozilla.org.xpi [2022-11-24]
FF Extension: (German Dictionary (Switzerland)) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\de-CH@dictionaries.addons.mozilla.org.xpi [2022-11-24]
FF Extension: (German Dictionary) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\de-DE@dictionaries.addons.mozilla.org.xpi [2022-11-24]
FF Extension: (LexFox) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\info@lingea.com.xpi [2021-08-17] [UpdateUrl:hxxps://www.lingea.eu/updates/lexfox/update.json]
FF Extension: (MyJDownloader Browser Extension) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2023-04-28] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: (Language: Deutsch (German)) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\langpack-de@firefox.mozilla.org.xpi [2023-06-20]
FF Extension: (Photon Colors) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\{2c6c94f3-c656-41e9-aa4b-1edba5be9c21}.xpi [2021-07-31]
FF Extension: (Add-ons Restricted Domains) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\features\{64e2c381-dc71-4152-b573-2e3e86f366c2}\addons-restricted-domains@mozilla.com.xpi [2023-06-26]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2021-07-23] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2021-07-23] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: PDF Architect 4 -> C:\Program Files (x86)\PDF Architect 4\np-previewer.dll [No File]
Chrome:
=======
CHR Profile: C:\Users\fbart\AppData\Local\Google\Chrome\User Data\Default [2023-05-21]
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\fbart\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2023-05-21]
CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\fbart\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-05-21]
CHR Extension: (Chrome Web Store Payments) - C:\Users\fbart\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-21]
CHR HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\fbart\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx <not found>
CHR HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
Opera:
=======
OPR Profile: C:\Users\fbart\AppData\Roaming\Opera Software\Opera Stable [2023-06-29]
OPR Notifications: Opera Stable -> hxxps://drive.google.com; hxxps://www.instagram.com
OPR DefaultSearchURL: Opera Stable -> hxxps://www.google.com/search?client=opera&q={s ... utEncoding}
OPR DefaultSearchKeyword: Opera Stable -> g
OPR Extension: (Rich Hints Agent) - C:\Users\fbart\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-03-10]
OPR Extension: (MyJDownloader Browser Extension) - C:\Users\fbart\AppData\Roaming\Opera Software\Opera Stable\Extensions\fbclnkmbcmdfamfeaagadifibbongnmf [2019-02-28]
OPR Extension: (Opera Wallet) - C:\Users\fbart\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-05-22]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\fbart\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-08-17]
OPR Extension: (Opera AI Prompts) - C:\Users\fbart\AppData\Roaming\Opera Software\Opera Stable\Extensions\mljbnbeedpkgakdchcmfapkjhfcogaoc [2023-06-22]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aakore; C:\Program Files (x86)\Acronis\Agent\aakore.exe [9022120 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [12952232 2021-03-23] (Acronis International GmbH -> )
S4 AcronisCyberProtectionService; C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe [1425256 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1052280 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S3 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [842480 2021-07-23] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6391536 2021-08-01] (Acronis International GmbH -> )
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3896288 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3729888 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103264 2023-03-01] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8826776 2023-06-10] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [582552 2023-06-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [583576 2023-06-10] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\114.0.21452.134\elevation_service.exe [2035232 2023-06-14] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R2 AvidHubService; C:\Program Files\Avid\Cloud Client Services\Hub.exe [2299208 2017-11-09] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 AvidTransportClient; C:\Program Files\Avid\Cloud Client Services\TransportClient.exe [7067464 2017-11-09] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7923888 2017-10-12] (Microsoft Corporation -> Microsoft Corporation)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2675504 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R2 CxAudioSvc; C:\WINDOWS\CxSvc\CxAudioSvc.exe [96432 2020-09-08] (Synaptics Incorporated -> Conexant Systems LLC.)
R2 CxUtilSvc; C:\WINDOWS\CxSvc\CxUtilSvc.exe [166400 2019-06-25] (Conexant Systems LLC.) [File not signed]
R2 DigiRefresh; C:\Program Files\Avid\Pro Tools First\MMERefresh.exe [117760 2018-04-03] (Avid Technology, Inc.) [File not signed]
S3 digiSPTIService64; C:\Program Files\Avid\Pro Tools First\digisptiservice64.exe [197632 2018-04-03] (Avid Technology, Inc.) [File not signed]
R2 DpHost; c:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe [527296 2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2260208 2023-05-31] (Comodo Security Solutions, Inc. -> Comodo)
S3 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [567888 2016-08-11] (Hewlett Packard Enterprise Company -> Hewlett-Packard Company)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitPDFReaderUpdateService.exe [2358800 2022-05-20] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 fpCsEvtSvc; C:\WINDOWS\System32\fpCSEvtSvc.exe [22424 2019-05-06] (Microsoft Windows Hardware Compatibility Publisher -> )
S2 gupdate1d62962e9ffe133; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-13] (Google LLC -> Google LLC)
S3 gupdatem1d62962ea02435c; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-13] (Google LLC -> Google LLC)
R2 HotKeyServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5c0b90ae6269072a\HotKeyServiceUWP.exe [1561032 2022-10-12] (HP Inc. -> HP Inc.)
R2 HpDamServiceHost; c:\Program Files (x86)\HP\HP Device Access Manager\HPE.DeviceAccessManager.ServiceHost.exe [20376 2016-08-09] (Hewlett Packard Enterprise Company -> Hewlett Packard Enterprise Company)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1083200 2016-12-22] (HP Inc. -> HP)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
R2 LanWlanWwanSwitchingServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5c0b90ae6269072a\LanWlanWwanSwitchingServiceUWP.exe [606664 2022-10-12] (HP Inc. -> HP Inc.)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe [270336 2001-02-23] (Microsoft Corporation) [File not signed]
R2 MEmuSVC; D:\Program Files\Microvirt\MEmu\MemuService.exe [85304 2019-09-12] (Shanghai Microvirt Software Technology Co., Ltd. -> )
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4878840 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [2136488 2021-03-23] (Acronis International GmbH -> )
R2 NovaPdf10Server; C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe [52528 2020-04-01] (Softland SRL -> Microsoft)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7398360 2021-03-23] (Acronis International GmbH -> )
R3 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [5910328 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 valWBFPolicyService; C:\WINDOWS\System32\valWBFPolicyService.exe [91032 2019-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\NisSrv.exe [2484256 2020-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MsMpEng.exe [103168 2020-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31376 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [236448 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392320 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297832 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95912 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271504 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [556064 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80376 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [943456 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [703800 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212680 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319560 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2021-03-23] (Bitdefender SRL -> Bitdefender)
R2 CLFCL5.22; C:\WINDOWS\System32\drivers\CLFCL5.22\000.fcl [47792 2022-07-15] (CyberLink Corp. -> CyberLink Corp.)
S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17576 2020-01-27] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [38880 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [844000 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [47104 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 DAMDrv; C:\WINDOWS\system32\DRIVERS\DAMDrv64.sys [76432 2016-08-11] (Hewlett Packard Enterprise Company -> Hewlett-Packard Enterpise Company)
S3 ewusbmbb; C:\WINDOWS\System32\drivers\ewusbwwan.sys [421376 2010-12-23] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_hwusbdev; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [117248 2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 FFUsbAudio; C:\WINDOWS\System32\drivers\ffusbaudio.sys [53080 2011-10-31] (Focusrite Audio Engineering Limited -> Focusrite Audio Engineering Ltd.)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [720392 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [392840 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [183944 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [86016 2011-01-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwdatacard; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [221312 2010-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusbdev; C:\WINDOWS\system32\DRIVERS\ewusbdev.sys [114304 2016-12-29] (Huawei Technologies Co., Ltd.) [File not signed]
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [130256 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-30] (Comodo Security Solutions, Inc. -> COMODO)
R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [320360 2021-01-04] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation)
S0 ngelam; C:\WINDOWS\System32\drivers\ngelam.sys [15816 2021-03-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Acronis International GmbH)
R1 ngscan; C:\WINDOWS\System32\DRIVERS\ngscan.sys [179104 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [1063520 2017-04-06] (SUNPLUS INNOVATION TECHNOLOGY INC. -> Sunplus Innovation Technology Inc.)
S3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [887032 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [175648 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [694920 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [334984 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [251016 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-06-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [401120 2020-06-01] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-06-01] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP)
S3 YMIDUSBW; C:\WINDOWS\system32\drivers\ymidusbx64.sys [43744 2015-07-28] (Yamaha Corporation -> Yamaha Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-06-29 01:18 - 2023-06-29 01:18 - 000179702 _____ C:\Users\fbart\Downloads\priloha_1196842973_0_MHMPXPLQTF0B-1.PDF
2023-06-26 18:03 - 2023-06-26 18:03 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2023-06-26 17:40 - 2023-06-26 17:40 - 000009643 _____ C:\Users\fbart\Downloads\Geschenkt 7.pdf
2023-06-26 00:08 - 2023-06-26 00:08 - 000193931 _____ C:\Users\fbart\Downloads\Faktura-VF1_0526_2023-2.pdf
2023-06-26 00:07 - 2023-06-26 00:07 - 000146167 _____ C:\Users\fbart\Downloads\1147111-1.pdf
2023-06-25 22:15 - 2023-06-25 22:15 - 000000000 ___HD C:\$WinREAgent
2023-06-22 18:06 - 2023-06-22 18:06 - 002009947 _____ C:\Users\fbart\Downloads\dolcevita_op_2022_cz_1646818300525.pdf
2023-06-22 13:00 - 2023-06-22 13:00 - 000146167 _____ C:\Users\fbart\Downloads\1147111.pdf
2023-06-19 21:49 - 2023-06-19 21:49 - 000146906 _____ C:\Users\fbart\Downloads\JVPozvankaCerven2023-1.pdf
2023-06-15 11:45 - 2023-06-15 11:45 - 000287672 _____ C:\Users\fbart\Downloads\1023TlIH.pdf
2023-06-14 10:34 - 2023-06-14 10:34 - 000950703 _____ C:\Users\fbart\Downloads\booklet_back__.pdf
2023-06-13 21:25 - 2023-06-13 21:25 - 000051891 _____ C:\Users\fbart\Downloads\invoice_2023011719.pdf
2023-06-13 21:03 - 2023-06-13 21:03 - 000146906 _____ C:\Users\fbart\Downloads\JVPozvankaCerven2023.pdf
2023-06-13 16:07 - 2023-06-13 16:07 - 000679057 _____ C:\Users\fbart\Downloads\booklet_back_nahled7-1.pdf
2023-06-13 16:06 - 2023-06-13 16:07 - 000982953 _____ C:\Users\fbart\Downloads\booklet_back.pdf
2023-06-11 10:19 - 2023-06-11 10:19 - 000127024 _____ C:\Users\fbart\Downloads\ticket 9HHO-6OF3-MJTM.pdf
2023-06-11 10:17 - 2023-06-11 10:17 - 000285042 _____ C:\Users\fbart\Downloads\ticket OORQ-ZAQ4-IHLF.pdf
2023-06-10 13:07 - 2023-06-10 13:07 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-06-07 22:48 - 2023-06-07 22:48 - 000143293 _____ C:\Users\fbart\Downloads\Ubytovani recitator WP2023-F_Bartak-1.pdf
2023-06-07 17:52 - 2023-06-07 17:52 - 000167520 _____ C:\Users\fbart\Downloads\Faktura 2023060701 - Jan_Kykal - F_Bartak.pdf
2023-06-07 17:09 - 2023-06-07 17:09 - 007299031 _____ C:\Users\fbart\Downloads\program_wp_2023_podrobny_citelny.pdf
2023-06-06 17:46 - 2023-06-06 17:46 - 003629120 _____ C:\Users\fbart\Downloads\Viola 2018_2.pdf
2023-06-02 23:25 - 2023-06-02 23:25 - 000001823 _____ C:\Users\Public\Desktop\iTunes.lnk
2023-06-02 23:25 - 2023-06-02 23:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2023-06-02 23:25 - 2023-06-02 23:25 - 000000000 ____D C:\Program Files\iTunes
2023-06-02 11:41 - 2023-06-02 11:41 - 002543305 _____ C:\Users\fbart\Downloads\BOOKLET_oprava-1.pdf
2023-06-02 11:41 - 2023-06-02 11:41 - 001264205 _____ C:\Users\fbart\Downloads\BOOKLET_obalka-1.pdf
2023-06-02 09:25 - 2023-06-02 09:25 - 000193931 _____ C:\Users\fbart\Downloads\Faktura-VF1_0526_2023-1.pdf
2023-06-02 08:40 - 2023-06-02 08:40 - 000193931 _____ C:\Users\fbart\Downloads\Faktura-VF1_0526_2023.pdf
2023-06-01 21:18 - 2023-06-01 21:18 - 002543305 _____ C:\Users\fbart\Downloads\BOOKLET_oprava.pdf
2023-06-01 19:22 - 2023-06-01 19:22 - 000596326 _____ C:\Users\fbart\Downloads\Porada u Putina.pdf
2023-06-01 16:40 - 2023-06-01 16:40 - 000317873 _____ C:\Users\fbart\Downloads\The difficulties in understanding the role of sexuality in sexual abuse towards children In depth interviews with perpetrators.pdf
2023-06-01 01:16 - 2023-06-01 01:16 - 000428775 _____ C:\Users\fbart\Downloads\2023-03-cj-recitace-diplom.pdf
2023-06-01 01:02 - 2023-06-01 01:02 - 000157498 _____ C:\Users\fbart\Downloads\diplom.pdf
2023-06-01 01:02 - 2023-06-01 01:02 - 000117477 _____ C:\Users\fbart\Downloads\hodnoceni.pdf
2023-05-31 23:20 - 2023-05-31 23:20 - 001264205 _____ C:\Users\fbart\Downloads\BOOKLET_obalka.pdf
2023-05-31 23:09 - 2023-05-31 23:09 - 002589851 _____ C:\Users\fbart\Downloads\BOOKLET-3.pdf
2023-05-31 23:08 - 2023-05-31 23:08 - 002543300 _____ C:\Users\fbart\Downloads\BOOKLET-2.pdf
2023-05-31 01:52 - 2023-05-31 01:52 - 002589851 _____ C:\Users\fbart\Downloads\BOOKLET-1.pdf
2023-05-31 01:45 - 2023-05-31 01:45 - 002600143 _____ C:\Users\fbart\Downloads\BOOKLET.pdf
2023-05-31 01:04 - 2023-05-31 01:04 - 000179702 _____ C:\Users\fbart\Downloads\priloha_1196842973_0_MHMPXPLQTF0B.PDF
2023-05-30 15:59 - 2023-05-30 15:59 - 000044783 _____ C:\Users\fbart\Downloads\0717-Mezinárodní konflikt-SAX.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-06-29 14:53 - 2017-12-01 23:30 - 000000000 ____D C:\FRST
2023-06-29 14:42 - 2021-12-22 23:01 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-06-29 14:42 - 2020-05-13 22:13 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-29 14:07 - 2021-05-19 14:41 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-29 13:34 - 2021-05-19 14:55 - 000003958 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1487236436
2023-06-29 13:34 - 2017-06-28 14:38 - 000001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera browser.lnk
2023-06-29 13:34 - 2017-02-16 11:12 - 000000000 ____D C:\Program Files\Opera
2023-06-29 12:33 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-29 11:51 - 2016-12-27 00:58 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Microsoft\Excel
2023-06-29 02:11 - 2016-12-21 00:19 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Microsoft\Word
2023-06-29 01:46 - 2023-04-28 18:20 - 000002654 _____ C:\WINDOWS\system32\Tasks\CLToast
2023-06-29 01:46 - 2023-04-28 18:20 - 000002480 _____ C:\WINDOWS\system32\Tasks\CLToastRun
2023-06-29 01:46 - 2023-04-24 22:44 - 000003432 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{5438BC99-B205-41C8-882F-CCC7E022EB29}
2023-06-29 01:46 - 2023-04-10 18:51 - 000003208 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{B617D1EE-9B22-46F4-BAA4-6EA190723FEA}
2023-06-29 01:46 - 2021-07-23 18:51 - 000002612 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2023-06-29 01:46 - 2021-05-19 14:55 - 000003464 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-06-29 01:46 - 2021-05-19 14:55 - 000003240 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-06-29 01:46 - 2021-05-19 14:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2023-06-28 23:29 - 2016-12-30 21:15 - 000000000 ____D C:\Users\fbart\Documents\Lexicon
2023-06-28 22:07 - 2022-02-09 20:15 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-06-28 21:05 - 2021-07-23 18:47 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2023-06-28 20:46 - 2016-12-20 23:33 - 000000000 ___SD C:\Users\fbart\AppData\Roaming\Microsoft\Credentials
2023-06-28 17:01 - 2019-11-17 11:37 - 000000000 ____D C:\Users\fbart\Documents\Zoom
2023-06-28 16:57 - 2018-08-14 19:08 - 000000000 ____D C:\Users\fbart\AppData\Local\CrashDumps
2023-06-28 12:47 - 2021-05-19 14:55 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-06-28 12:46 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-28 12:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-28 01:09 - 2018-05-28 17:30 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Microsoft\Paint
2023-06-27 17:45 - 2016-12-26 17:31 - 000000000 ____D C:\Users\fbart\AppData\Roaming\vlc
2023-06-27 16:57 - 2021-12-12 13:56 - 000000000 ____D C:\Users\fbart\AppData\Roaming\WhatsApp
2023-06-27 16:36 - 2018-04-16 17:25 - 000002505 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2023-06-27 16:36 - 2018-04-16 17:25 - 000002470 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2023-06-27 16:07 - 2018-04-16 17:25 - 000000000 ____D C:\Users\fbart\AppData\Local\AVAST Software
2023-06-27 15:42 - 2021-05-19 14:53 - 001885574 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-06-27 15:42 - 2019-12-07 16:41 - 000785556 _____ C:\WINDOWS\system32\perfh005.dat
2023-06-27 15:42 - 2019-12-07 16:41 - 000182314 _____ C:\WINDOWS\system32\perfc005.dat
2023-06-27 15:42 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-06-27 15:35 - 2021-05-19 14:45 - 000000000 ____D C:\Users\fbart
2023-06-27 15:35 - 2016-12-20 23:34 - 000000000 __SHD C:\Users\fbart\IntelGraphicsProfiles
2023-06-27 15:34 - 2021-05-19 14:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-27 15:34 - 2021-05-19 14:41 - 000008192 ___SH C:\DumpStack.log.tmp
2023-06-27 15:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-06-27 15:34 - 2017-06-12 19:13 - 000000000 ____D C:\ProgramData\Synaptics
2023-06-27 15:34 - 2017-06-12 19:12 - 000000000 ____D C:\ProgramData\NVIDIA
2023-06-27 15:34 - 2016-12-20 23:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-06-27 15:34 - 2016-12-20 23:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2023-06-27 15:34 - 2016-10-30 00:18 - 000000000 ____D C:\Intel
2023-06-27 11:03 - 2020-05-13 22:14 - 000002300 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-27 11:03 - 2020-05-13 22:14 - 000002259 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-26 20:47 - 2018-05-28 18:39 - 000000000 ____D C:\Users\fbart\AppData\Local\D3DSCache
2023-06-26 18:38 - 2017-04-11 14:17 - 000000000 ____D C:\Program Files (x86)\COMODO
2023-06-26 18:03 - 2020-05-12 14:02 - 000001984 _____ C:\Users\fbart\Desktop\Zoom.lnk
2023-06-26 18:03 - 2018-08-15 22:34 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Zoom
2023-06-26 16:44 - 2021-09-23 19:31 - 000002064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-06-26 16:44 - 2021-09-23 19:31 - 000001906 _____ C:\Users\Default\Desktop\Google Slides.lnk
2023-06-26 16:44 - 2021-09-23 19:31 - 000001906 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2023-06-26 16:44 - 2021-09-23 19:31 - 000001894 _____ C:\Users\Default\Desktop\Google Docs.lnk
2023-06-26 16:44 - 2018-10-12 10:50 - 000001870 _____ C:\Users\fbart\Desktop\Google Drive.lnk
2023-06-25 22:49 - 2016-12-20 23:40 - 000001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-06-25 22:34 - 2021-05-19 14:41 - 000559312 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-06-25 22:34 - 2016-12-20 23:53 - 000000000 ____D C:\ProgramData\AVAST Software
2023-06-25 22:33 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-06-25 22:31 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-25 22:27 - 2021-05-19 14:44 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-06-25 22:13 - 2016-12-22 20:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-06-25 21:58 - 2016-12-22 20:42 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-06-25 21:55 - 2017-11-08 16:15 - 000000000 ____D C:\Users\fbart\AppData\Local\Movavi
2023-06-24 00:10 - 2020-07-07 13:27 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-24 00:10 - 2020-07-07 13:27 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-06-23 12:50 - 2017-11-28 11:12 - 000000000 ____D C:\Users\fbart\AppData\Local\JDownloader v2.0
2023-06-23 12:25 - 2021-07-20 15:09 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Microsoft\Teams
2023-06-22 20:01 - 2021-10-11 15:15 - 000000000 ____D C:\Video
2023-06-22 15:30 - 2021-07-20 15:10 - 000002421 _____ C:\Users\fbart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2023-06-22 15:30 - 2021-07-20 15:10 - 000002413 _____ C:\Users\fbart\Desktop\Microsoft Teams.lnk
2023-06-21 16:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-06-15 10:18 - 2021-12-12 13:55 - 000000000 ____D C:\Users\fbart\AppData\Local\WhatsApp
2023-06-10 13:07 - 2020-10-24 18:03 - 000271504 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-06-10 13:07 - 2020-04-20 21:08 - 000556064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-06-10 13:07 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-06-10 13:07 - 2019-01-14 15:47 - 000392320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-06-10 13:07 - 2019-01-09 13:05 - 000297832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-06-10 13:07 - 2019-01-09 13:05 - 000095912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-06-10 13:07 - 2019-01-09 13:05 - 000031376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-06-10 13:07 - 2018-10-24 00:01 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-06-10 13:07 - 2018-03-09 11:33 - 000943456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-06-10 13:07 - 2018-03-09 11:33 - 000703800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-06-10 13:07 - 2018-03-09 11:33 - 000319560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-06-10 13:07 - 2018-03-09 11:33 - 000236448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-06-10 13:07 - 2018-03-09 11:33 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-06-10 13:07 - 2018-03-09 11:33 - 000080376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-06-08 11:59 - 2018-03-09 18:09 - 000000000 ____D C:\Users\fbart\AppData\Local\Packages
2023-06-04 21:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
==================== Files in the root of some directories ========
2022-09-19 15:35 - 2022-09-19 15:35 - 000000000 _____ () C:\Program Files (x86)\test.txt
2019-06-24 16:45 - 2019-06-24 16:46 - 002535362 _____ () C:\Users\fbart\AppData\Roaming\AvidLink_Install.log
2018-06-26 22:25 - 2018-06-26 22:25 - 000000861 _____ () C:\Users\fbart\AppData\Roaming\Avid_CCS_Service_Stop.log
2021-07-23 19:06 - 2021-07-23 19:06 - 000000000 _____ () C:\Users\fbart\AppData\Local\oobelibMkey.log
2017-01-09 22:48 - 2023-04-22 21:57 - 000007601 _____ () C:\Users\fbart\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Děkuji!
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-06-2023
Ran by fbart (administrator) on DESKTOP-1NAN9QR (HP HP ProBook 450 G4) (29-06-2023 14:52:54)
Running from D:\SOFTWARE\FRST\FRST64.exe
Loaded Profiles: fbart
Platform: Microsoft Windows 10 Home Version 21H2 19044.3086 (X64) Language: Czech (Czech Republic) -> English (United Kingdom)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\bckp_amgr.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\monitoring-mini.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\task-manager.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Acronis\Agent\bin\adp-agent.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Acronis\Agent\bin\updater.exe
(C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe ->) (DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpCardEngine.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\totalcmd\TOTALCMD64.EXE ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitPDFReader.exe
(C:\totalcmd\TOTALCMD64.EXE ->) (VideoLAN -> VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(C:\Users\fbart\AppData\Roaming\Zoom\bin\Zoom.exe ->) (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Users\fbart\AppData\Roaming\Zoom\bin\zWebview2Agent.exe
(C:\Windows\CxSvc\CxAudioSvc.exe ->) (Synaptics Incorporated -> Conexant Systems LLC.) C:\Program Files\CONEXANT\SA3\HP-NB-AIO\SmartAudio3.exe
(C:\Windows\CxSvc\CxAudioSvc.exe ->) (Synaptics Incorporated -> Conexant Systems, Inc) C:\Program Files\CONEXANT\Flow\Flow.exe
(DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5c0b90ae6269072a\HotKeyServiceUWP.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5c0b90ae6269072a\HPHotkeyNotification.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\igfxEM.exe
(explorer.exe ->) (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\Audition.exe
(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\77.0.3.0\crashpad_handler.exe <4>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Lingea s.r.o. -> Lingea s.r.o.) C:\Program Files (x86)\Lingea\Lexicon7\Lexicon.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office10\EXCEL.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <6>
(explorer.exe ->) (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Users\fbart\AppData\Roaming\Zoom\bin\Zoom.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\perfmon.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <53>
(Opera Norway AS -> Opera Software) C:\Program Files\Opera\99.0.4788.65\opera_crashreporter.exe <2>
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\aakore.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Cloud Client Services\Hub.exe
(services.exe ->) (Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Cloud Client Services\TransportClient.exe
(services.exe ->) (Avid Technology, Inc.) [File not signed] C:\Program Files\Avid\Pro Tools First\MMERefresh.exe
(services.exe ->) (Comodo Security Solutions, Inc. -> Comodo) C:\Program Files (x86)\COMODO\Dragon\dragon_updater.exe
(services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
(services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe <2>
(services.exe ->) (Conexant Systems LLC.) [File not signed] C:\Windows\CxSvc\CxUtilSvc.exe
(services.exe ->) (DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Hewlett Packard Enterprise Company -> Hewlett Packard Enterprise Company) C:\Program Files (x86)\HP\HP Device Access Manager\HPE.DeviceAccessManager.ServiceHost.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5c0b90ae6269072a\HotKeyServiceUWP.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5c0b90ae6269072a\LanWlanWwanSwitchingServiceUWP.exe
(services.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\fpCSEvtSvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Shanghai Microvirt Software Technology Co., Ltd. -> ) D:\Program Files\Microvirt\MEmu\MemuService.exe
(services.exe ->) (Softland SRL -> Microsoft) C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe
(services.exe ->) (Synaptics Incorporated -> Conexant Systems LLC.) C:\Windows\CxSvc\CxAudioSvc.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2323.2.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe <5>
(svchost.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(svchost.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Synaptics Incorporated -> Conexant) C:\Windows\System32\MicTray64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(WhatsApp LLC -> WhatsApp) C:\Users\fbart\AppData\Local\WhatsApp\app-2.2325.3\WhatsApp.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2018-01-18] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320584 2016-06-30] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [220056 2023-06-10] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [DigidesignMMERefresh] => C:\Program Files\Avid\Pro Tools First\MMERefresh.exe [117760 2018-04-03] (Avid Technology, Inc.) [File not signed]
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [644000 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Run: [PowerDVD22Agent] => C:\Program Files\CyberLink\PowerDVD22\PowerDVD22Agent.exe [569976 2022-07-14] (CyberLink Corp. -> CyberLink Corp.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [366944 2023-05-12] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-07-23] (Adobe Inc. -> )
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6206360 2021-03-23] (Acronis International GmbH -> )
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe [446392 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [4095184 2021-08-11] (Opera Software AS -> Opera Software)
HKLM-x32\...\Run: [CLMLServer_For_P2G13] => C:\Program Files (x86)\CyberLink\Power2Go13\CLMLSvc_P2G13.exe [154296 2019-05-23] (CyberLink Corp. -> CyberLink)
HKLM\Software\Policies\...\system: [DefaultCredentialProvider] {F731030D-3272-4D8B-A21A-3940EF268453}
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe [145967384 2023-06-26] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe [145967384 2023-06-26] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [39159608 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\fbart\AppData\Local\Microsoft\Teams\Update.exe [2588488 2023-06-22] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe [145967384 2023-06-26] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [Titan Backup] => C:\Program Files (x86)\Titan Backup\Launcher.exe [142784 2008-12-18] (Neobyte Solutions SRL -> Neobyte Solutions)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [com.squirrel.WhatsApp.WhatsApp] => C:\Users\fbart\AppData\Local\WhatsApp\Update.exe [2412768 2023-06-15] (WhatsApp LLC -> )
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [AvastBrowserAutoLaunch_A606C3A23F722394777472C3610F9B5A] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3364752 2023-06-14] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [MicrosoftEdgeAutoLaunch_CBC3A2C48DD08E53B4E467E37B52CD84] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113856 2023-06-22] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [Power2GoExpress13] => C:\Program Files (x86)\CyberLink\Power2Go13\Power2GoExpress.exe [3699184 2020-08-25] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [CyberlinkPowerPlayerMediaServer_PowerDVD22] => C:\Program Files\CyberLink\PowerDVD22\Common\CLMediaServer\clmediaserver.exe [6775928 2022-07-14] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\77.0.3.0\GoogleDriveFS.exe [145967384 2023-06-26] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2017-01-10] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\doPDF 7 Monitor: C:\windows\system32\dopdfmn7.dll [25920 2016-12-29] (Softland S.R.L. -> Softland)
HKLM\...\Print\Monitors\HPLJ1020LM: C:\windows\system32\zlhp1020.dll [192512 2017-01-10] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\novaPDF 10 Port Monitor: C:\windows\system32\novamn10.dll [18944 2020-04-01] (Softland) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\92.2.11577.159\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.198\Installer\chrmstp.exe [2023-06-27] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\114.0.21452.134\Installer\chrmstp.exe [2023-06-27] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\86.1.6782.183\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
HKLM\Software\...\Authentication\Credential Providers: [{77B7ED10-A641-4766-A428-8B9EE42E830A}] -> C:\windows\system32\DPCrProv2.dll [2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{E85E7D14-653B-4E51-9BC5-E5F9EC9BC51D}] -> C:\windows\system32\DPCrProv2.dll [2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F0C31759-99A6-493E-AD7D-7F69126CDFBC}] -> C:\windows\system32\DPCrProv2.dll [2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F731030D-3272-4D8B-A21A-3940EF268453}] -> C:\windows\system32\DPCrProv2.dll [2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{DCFB2A33-814B-4236-BFBD-FFEA3F528385}] -> C:\windows\system32\DPCrProv2.dll [2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avid Link.lnk [2019-06-24]
ShortcutTarget: Avid Link.lnk -> C:\Program Files\Avid\Avid Link\Avid Link.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP JumpStart Launch.lnk [2016-10-30]
ShortcutTarget: HP JumpStart Launch.lnk -> c:\Windows\Installer\{0F5EBB0D-DF6D-4DBE-9789-57BF05B3B0FD}\HPlogo_blue.ico () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2018-05-28]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\fbart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\englishme!.lnk [2023-04-27]
ShortcutTarget: englishme!.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {014054C1-BE6A-4621-AF6A-1A16D142EAFD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {0315D22F-55A8-4872-B593-CBA6743545C8} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {15F9F943-91F3-431B-A068-68EF69CFC841} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {1A0E7D9A-2E5D-49C7-A1B9-997A203B84D5} - System32\Tasks\doPDF 10 Telemetry => C:\Program Files\Softland\novaPDF 10\Driver\GoogleAnalytics.exe [51504 2020-04-01] (Softland SRL -> )
Task: {1B10606B-7AFC-408A-9FC6-8088E57FCC9A} - System32\Tasks\Opera scheduled assistant Autoupdate 1582720617 => C:\Program Files\Opera\launcher.exe [2708376 2023-06-27] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {1CC38B53-A328-4DB6-AEEB-82D4015A1931} - System32\Tasks\Adobe Creative Cloud => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [779504 2021-07-23] (Adobe Inc. -> Adobe Inc.)
Task: {2364088E-19F8-4F7A-8A88-80C74475F615} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {2C67E44D-00AE-4DF6-82E3-154444498CE3} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [732064 2023-06-25] (Mozilla Corporation -> Mozilla Foundation)
Task: {338E88A2-EDFB-4A81-98EA-CBAD8E7F6728} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {468B8D09-A923-4767-A43B-646993EA1D39} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [17335976 2017-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {493ED88C-79E7-4817-9B2A-FE032ABEB371} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {5ECABE5A-94BE-44F2-9FA0-C917B62A4F51} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "d69b8913-fbe2-4c6b-8e6b-b8083f51231d" --version "6.10.10347" --silent
Task: {60B461AF-16AA-4C85-9A1A-09B06C4A8CE8} - System32\Tasks\CLToast => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2319632 2022-04-14] (CyberLink Corp. -> )
Task: {6E63C272-93D0-4442-908D-4D969E42433F} - System32\Tasks\HPEA3JOBS => C:\Program -> Files\HP\HP ePrint\hpeprint.exe /CheckJobs
Task: {73804E3F-2D8D-4D76-BD6F-AC2AA276AE29} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4885400 2023-06-10] (Avast Software s.r.o. -> AVAST Software)
Task: {91770352-4263-4BCB-B39B-16661B0CDEC1} - System32\Tasks\GoogleUpdateTaskMachineCore{B617D1EE-9B22-46F4-BAA4-6EA190723FEA} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-13] (Google LLC -> Google LLC)
Task: {93E3645D-9929-4696-B45E-6727B7D982D3} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {94333FE9-C5A2-412C-B30A-BFC66C47FF8E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2295192 2023-01-31] (Avast Software s.r.o. -> Avast Software)
Task: {98A0AFCD-BB66-4C41-B5EE-F58EC42B9728} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {9BF8FCA5-10F7-470D-B2A8-275CC647D078} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [17335976 2017-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9C295FF3-0AB2-45F6-8324-99AC9B9B8D6C} - System32\Tasks\GoogleUpdateTaskMachineUA{5438BC99-B205-41C8-882F-CCC7E022EB29} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-13] (Google LLC -> Google LLC)
Task: {BD0EB86B-ADC0-476E-854A-748D90D679C8} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3364752 2023-06-14] (Avast Software s.r.o. -> AVAST Software)
Task: {BD5A8FA8-06EA-446B-A5F8-180A99237DD3} - System32\Tasks\Microsoft\Windows\Conexant\MicTray => C:\Windows\System32\MicTray64.exe [5009512 2020-06-13] (Synaptics Incorporated -> Conexant)
Task: {C0C70F2E-A974-4FF8-95A4-661E8091DA9C} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {C11EB089-78EE-48DE-9BA7-359A83745372} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {C3EB5C18-CE3E-4A42-B1D1-25ECA26E088B} - System32\Tasks\Opera scheduled Autoupdate 1487236436 => C:\Program Files\Opera\launcher.exe [2708376 2023-06-27] (Opera Norway AS -> Opera Software)
Task: {E4043D11-6B42-41B7-A790-963B06103110} - System32\Tasks\CCleanerSkipUAC - fbart => C:\Program Files\CCleaner\CCleaner.exe [33038648 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {E7302411-1508-44D7-8596-AC3C28BC26CD} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3364752 2023-06-14] (Avast Software s.r.o. -> AVAST Software)
Task: {E7327A7E-14D8-4367-A55F-D6017AEC4AC5} - System32\Tasks\CLToastRun => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2319632 2022-04-14] (CyberLink Corp. -> )
Task: {F2B6838D-862C-4574-B41B-C070BF782A85} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3503584 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.10.10.10 10.100.0.100
Tcpip\..\Interfaces\{5e93018d-e819-411c-a382-4ff97e6c7ce1}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7bb2afef-f054-4d68-bdc1-066d09ae6753}: [NameServer] 156.154.70.22,156.154.71.22
Tcpip\..\Interfaces\{7bb2afef-f054-4d68-bdc1-066d09ae6753}: [DhcpNameServer] 10.10.10.10 10.100.0.100
Tcpip\..\Interfaces\{9a41f277-0fa9-4555-953f-aa9788cd4df8}: [NameServer] 156.154.70.22,156.154.71.22
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\fbart\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-29]
Edge Session Restore: Default -> is enabled.
Edge Extension: (Edge relevant text changes) - C:\Users\fbart\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-24]
FireFox:
========
FF DefaultProfile: xs1zf06h.default-1602174025168
FF ProfilePath: C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168 [2023-06-29]
FF Session Restore: Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168 -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168 -> hxxps://app.slack.com; hxxps://my.jdownloader.org; hxxps://www.facebook.com
FF Extension: (Facebook Container) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\@contain-facebook.xpi [2022-11-03]
FF Extension: (German Dictionary, extended for Austria) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\de-AT@dictionaries.addons.mozilla.org.xpi [2022-11-24]
FF Extension: (German Dictionary (Switzerland)) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\de-CH@dictionaries.addons.mozilla.org.xpi [2022-11-24]
FF Extension: (German Dictionary) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\de-DE@dictionaries.addons.mozilla.org.xpi [2022-11-24]
FF Extension: (LexFox) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\info@lingea.com.xpi [2021-08-17] [UpdateUrl:hxxps://www.lingea.eu/updates/lexfox/update.json]
FF Extension: (MyJDownloader Browser Extension) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2023-04-28] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: (Language: Deutsch (German)) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\langpack-de@firefox.mozilla.org.xpi [2023-06-20]
FF Extension: (Photon Colors) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\{2c6c94f3-c656-41e9-aa4b-1edba5be9c21}.xpi [2021-07-31]
FF Extension: (Add-ons Restricted Domains) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\features\{64e2c381-dc71-4152-b573-2e3e86f366c2}\addons-restricted-domains@mozilla.com.xpi [2023-06-26]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2021-07-23] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2022-10-25] (VideoLAN -> VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2021-07-23] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: PDF Architect 4 -> C:\Program Files (x86)\PDF Architect 4\np-previewer.dll [No File]
Chrome:
=======
CHR Profile: C:\Users\fbart\AppData\Local\Google\Chrome\User Data\Default [2023-05-21]
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\fbart\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2023-05-21]
CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\fbart\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-05-21]
CHR Extension: (Chrome Web Store Payments) - C:\Users\fbart\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-21]
CHR HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\fbart\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx <not found>
CHR HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
Opera:
=======
OPR Profile: C:\Users\fbart\AppData\Roaming\Opera Software\Opera Stable [2023-06-29]
OPR Notifications: Opera Stable -> hxxps://drive.google.com; hxxps://www.instagram.com
OPR DefaultSearchURL: Opera Stable -> hxxps://www.google.com/search?client=opera&q={s ... utEncoding}
OPR DefaultSearchKeyword: Opera Stable -> g
OPR Extension: (Rich Hints Agent) - C:\Users\fbart\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2023-03-10]
OPR Extension: (MyJDownloader Browser Extension) - C:\Users\fbart\AppData\Roaming\Opera Software\Opera Stable\Extensions\fbclnkmbcmdfamfeaagadifibbongnmf [2019-02-28]
OPR Extension: (Opera Wallet) - C:\Users\fbart\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2023-05-22]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\fbart\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-08-17]
OPR Extension: (Opera AI Prompts) - C:\Users\fbart\AppData\Roaming\Opera Software\Opera Stable\Extensions\mljbnbeedpkgakdchcmfapkjhfcogaoc [2023-06-22]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aakore; C:\Program Files (x86)\Acronis\Agent\aakore.exe [9022120 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [12952232 2021-03-23] (Acronis International GmbH -> )
S4 AcronisCyberProtectionService; C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe [1425256 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1052280 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S3 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [842480 2021-07-23] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6391536 2021-08-01] (Acronis International GmbH -> )
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3896288 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3729888 2023-01-19] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103264 2023-03-01] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8826776 2023-06-10] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [582552 2023-06-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [583576 2023-06-10] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\114.0.21452.134\elevation_service.exe [2035232 2023-06-14] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R2 AvidHubService; C:\Program Files\Avid\Cloud Client Services\Hub.exe [2299208 2017-11-09] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 AvidTransportClient; C:\Program Files\Avid\Cloud Client Services\TransportClient.exe [7067464 2017-11-09] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7923888 2017-10-12] (Microsoft Corporation -> Microsoft Corporation)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2675504 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R2 CxAudioSvc; C:\WINDOWS\CxSvc\CxAudioSvc.exe [96432 2020-09-08] (Synaptics Incorporated -> Conexant Systems LLC.)
R2 CxUtilSvc; C:\WINDOWS\CxSvc\CxUtilSvc.exe [166400 2019-06-25] (Conexant Systems LLC.) [File not signed]
R2 DigiRefresh; C:\Program Files\Avid\Pro Tools First\MMERefresh.exe [117760 2018-04-03] (Avid Technology, Inc.) [File not signed]
S3 digiSPTIService64; C:\Program Files\Avid\Pro Tools First\digisptiservice64.exe [197632 2018-04-03] (Avid Technology, Inc.) [File not signed]
R2 DpHost; c:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe [527296 2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2260208 2023-05-31] (Comodo Security Solutions, Inc. -> Comodo)
S3 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [567888 2016-08-11] (Hewlett Packard Enterprise Company -> Hewlett-Packard Company)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitPDFReaderUpdateService.exe [2358800 2022-05-20] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 fpCsEvtSvc; C:\WINDOWS\System32\fpCSEvtSvc.exe [22424 2019-05-06] (Microsoft Windows Hardware Compatibility Publisher -> )
S2 gupdate1d62962e9ffe133; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-13] (Google LLC -> Google LLC)
S3 gupdatem1d62962ea02435c; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-13] (Google LLC -> Google LLC)
R2 HotKeyServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5c0b90ae6269072a\HotKeyServiceUWP.exe [1561032 2022-10-12] (HP Inc. -> HP Inc.)
R2 HpDamServiceHost; c:\Program Files (x86)\HP\HP Device Access Manager\HPE.DeviceAccessManager.ServiceHost.exe [20376 2016-08-09] (Hewlett Packard Enterprise Company -> Hewlett Packard Enterprise Company)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1083200 2016-12-22] (HP Inc. -> HP)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
R2 LanWlanWwanSwitchingServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_5c0b90ae6269072a\LanWlanWwanSwitchingServiceUWP.exe [606664 2022-10-12] (HP Inc. -> HP Inc.)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe [270336 2001-02-23] (Microsoft Corporation) [File not signed]
R2 MEmuSVC; D:\Program Files\Microvirt\MEmu\MemuService.exe [85304 2019-09-12] (Shanghai Microvirt Software Technology Co., Ltd. -> )
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4878840 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [2136488 2021-03-23] (Acronis International GmbH -> )
R2 NovaPdf10Server; C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe [52528 2020-04-01] (Softland SRL -> Microsoft)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7398360 2021-03-23] (Acronis International GmbH -> )
R3 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [5910328 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 valWBFPolicyService; C:\WINDOWS\System32\valWBFPolicyService.exe [91032 2019-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\NisSrv.exe [2484256 2020-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MsMpEng.exe [103168 2020-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31376 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [236448 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392320 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297832 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95912 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271504 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [556064 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80376 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [943456 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [703800 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212680 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319560 2023-06-10] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2021-03-23] (Bitdefender SRL -> Bitdefender)
R2 CLFCL5.22; C:\WINDOWS\System32\drivers\CLFCL5.22\000.fcl [47792 2022-07-15] (CyberLink Corp. -> CyberLink Corp.)
S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17576 2020-01-27] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [38880 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [844000 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [47104 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 DAMDrv; C:\WINDOWS\system32\DRIVERS\DAMDrv64.sys [76432 2016-08-11] (Hewlett Packard Enterprise Company -> Hewlett-Packard Enterpise Company)
S3 ewusbmbb; C:\WINDOWS\System32\drivers\ewusbwwan.sys [421376 2010-12-23] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_hwusbdev; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [117248 2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 FFUsbAudio; C:\WINDOWS\System32\drivers\ffusbaudio.sys [53080 2011-10-31] (Focusrite Audio Engineering Limited -> Focusrite Audio Engineering Ltd.)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [720392 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [392840 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [183944 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-02-06] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [86016 2011-01-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwdatacard; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [221312 2010-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusbdev; C:\WINDOWS\system32\DRIVERS\ewusbdev.sys [114304 2016-12-29] (Huawei Technologies Co., Ltd.) [File not signed]
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [130256 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-30] (Comodo Security Solutions, Inc. -> COMODO)
R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [320360 2021-01-04] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation)
S0 ngelam; C:\WINDOWS\System32\drivers\ngelam.sys [15816 2021-03-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Acronis International GmbH)
R1 ngscan; C:\WINDOWS\System32\DRIVERS\ngscan.sys [179104 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [1063520 2017-04-06] (SUNPLUS INNOVATION TECHNOLOGY INC. -> Sunplus Innovation Technology Inc.)
S3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [887032 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [175648 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [694920 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [334984 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [251016 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-06-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [401120 2020-06-01] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-06-01] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP)
S3 YMIDUSBW; C:\WINDOWS\system32\drivers\ymidusbx64.sys [43744 2015-07-28] (Yamaha Corporation -> Yamaha Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-06-29 01:18 - 2023-06-29 01:18 - 000179702 _____ C:\Users\fbart\Downloads\priloha_1196842973_0_MHMPXPLQTF0B-1.PDF
2023-06-26 18:03 - 2023-06-26 18:03 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2023-06-26 17:40 - 2023-06-26 17:40 - 000009643 _____ C:\Users\fbart\Downloads\Geschenkt 7.pdf
2023-06-26 00:08 - 2023-06-26 00:08 - 000193931 _____ C:\Users\fbart\Downloads\Faktura-VF1_0526_2023-2.pdf
2023-06-26 00:07 - 2023-06-26 00:07 - 000146167 _____ C:\Users\fbart\Downloads\1147111-1.pdf
2023-06-25 22:15 - 2023-06-25 22:15 - 000000000 ___HD C:\$WinREAgent
2023-06-22 18:06 - 2023-06-22 18:06 - 002009947 _____ C:\Users\fbart\Downloads\dolcevita_op_2022_cz_1646818300525.pdf
2023-06-22 13:00 - 2023-06-22 13:00 - 000146167 _____ C:\Users\fbart\Downloads\1147111.pdf
2023-06-19 21:49 - 2023-06-19 21:49 - 000146906 _____ C:\Users\fbart\Downloads\JVPozvankaCerven2023-1.pdf
2023-06-15 11:45 - 2023-06-15 11:45 - 000287672 _____ C:\Users\fbart\Downloads\1023TlIH.pdf
2023-06-14 10:34 - 2023-06-14 10:34 - 000950703 _____ C:\Users\fbart\Downloads\booklet_back__.pdf
2023-06-13 21:25 - 2023-06-13 21:25 - 000051891 _____ C:\Users\fbart\Downloads\invoice_2023011719.pdf
2023-06-13 21:03 - 2023-06-13 21:03 - 000146906 _____ C:\Users\fbart\Downloads\JVPozvankaCerven2023.pdf
2023-06-13 16:07 - 2023-06-13 16:07 - 000679057 _____ C:\Users\fbart\Downloads\booklet_back_nahled7-1.pdf
2023-06-13 16:06 - 2023-06-13 16:07 - 000982953 _____ C:\Users\fbart\Downloads\booklet_back.pdf
2023-06-11 10:19 - 2023-06-11 10:19 - 000127024 _____ C:\Users\fbart\Downloads\ticket 9HHO-6OF3-MJTM.pdf
2023-06-11 10:17 - 2023-06-11 10:17 - 000285042 _____ C:\Users\fbart\Downloads\ticket OORQ-ZAQ4-IHLF.pdf
2023-06-10 13:07 - 2023-06-10 13:07 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-06-07 22:48 - 2023-06-07 22:48 - 000143293 _____ C:\Users\fbart\Downloads\Ubytovani recitator WP2023-F_Bartak-1.pdf
2023-06-07 17:52 - 2023-06-07 17:52 - 000167520 _____ C:\Users\fbart\Downloads\Faktura 2023060701 - Jan_Kykal - F_Bartak.pdf
2023-06-07 17:09 - 2023-06-07 17:09 - 007299031 _____ C:\Users\fbart\Downloads\program_wp_2023_podrobny_citelny.pdf
2023-06-06 17:46 - 2023-06-06 17:46 - 003629120 _____ C:\Users\fbart\Downloads\Viola 2018_2.pdf
2023-06-02 23:25 - 2023-06-02 23:25 - 000001823 _____ C:\Users\Public\Desktop\iTunes.lnk
2023-06-02 23:25 - 2023-06-02 23:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2023-06-02 23:25 - 2023-06-02 23:25 - 000000000 ____D C:\Program Files\iTunes
2023-06-02 11:41 - 2023-06-02 11:41 - 002543305 _____ C:\Users\fbart\Downloads\BOOKLET_oprava-1.pdf
2023-06-02 11:41 - 2023-06-02 11:41 - 001264205 _____ C:\Users\fbart\Downloads\BOOKLET_obalka-1.pdf
2023-06-02 09:25 - 2023-06-02 09:25 - 000193931 _____ C:\Users\fbart\Downloads\Faktura-VF1_0526_2023-1.pdf
2023-06-02 08:40 - 2023-06-02 08:40 - 000193931 _____ C:\Users\fbart\Downloads\Faktura-VF1_0526_2023.pdf
2023-06-01 21:18 - 2023-06-01 21:18 - 002543305 _____ C:\Users\fbart\Downloads\BOOKLET_oprava.pdf
2023-06-01 19:22 - 2023-06-01 19:22 - 000596326 _____ C:\Users\fbart\Downloads\Porada u Putina.pdf
2023-06-01 16:40 - 2023-06-01 16:40 - 000317873 _____ C:\Users\fbart\Downloads\The difficulties in understanding the role of sexuality in sexual abuse towards children In depth interviews with perpetrators.pdf
2023-06-01 01:16 - 2023-06-01 01:16 - 000428775 _____ C:\Users\fbart\Downloads\2023-03-cj-recitace-diplom.pdf
2023-06-01 01:02 - 2023-06-01 01:02 - 000157498 _____ C:\Users\fbart\Downloads\diplom.pdf
2023-06-01 01:02 - 2023-06-01 01:02 - 000117477 _____ C:\Users\fbart\Downloads\hodnoceni.pdf
2023-05-31 23:20 - 2023-05-31 23:20 - 001264205 _____ C:\Users\fbart\Downloads\BOOKLET_obalka.pdf
2023-05-31 23:09 - 2023-05-31 23:09 - 002589851 _____ C:\Users\fbart\Downloads\BOOKLET-3.pdf
2023-05-31 23:08 - 2023-05-31 23:08 - 002543300 _____ C:\Users\fbart\Downloads\BOOKLET-2.pdf
2023-05-31 01:52 - 2023-05-31 01:52 - 002589851 _____ C:\Users\fbart\Downloads\BOOKLET-1.pdf
2023-05-31 01:45 - 2023-05-31 01:45 - 002600143 _____ C:\Users\fbart\Downloads\BOOKLET.pdf
2023-05-31 01:04 - 2023-05-31 01:04 - 000179702 _____ C:\Users\fbart\Downloads\priloha_1196842973_0_MHMPXPLQTF0B.PDF
2023-05-30 15:59 - 2023-05-30 15:59 - 000044783 _____ C:\Users\fbart\Downloads\0717-Mezinárodní konflikt-SAX.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-06-29 14:53 - 2017-12-01 23:30 - 000000000 ____D C:\FRST
2023-06-29 14:42 - 2021-12-22 23:01 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-06-29 14:42 - 2020-05-13 22:13 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-29 14:07 - 2021-05-19 14:41 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-29 13:34 - 2021-05-19 14:55 - 000003958 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1487236436
2023-06-29 13:34 - 2017-06-28 14:38 - 000001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera browser.lnk
2023-06-29 13:34 - 2017-02-16 11:12 - 000000000 ____D C:\Program Files\Opera
2023-06-29 12:33 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-29 11:51 - 2016-12-27 00:58 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Microsoft\Excel
2023-06-29 02:11 - 2016-12-21 00:19 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Microsoft\Word
2023-06-29 01:46 - 2023-04-28 18:20 - 000002654 _____ C:\WINDOWS\system32\Tasks\CLToast
2023-06-29 01:46 - 2023-04-28 18:20 - 000002480 _____ C:\WINDOWS\system32\Tasks\CLToastRun
2023-06-29 01:46 - 2023-04-24 22:44 - 000003432 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{5438BC99-B205-41C8-882F-CCC7E022EB29}
2023-06-29 01:46 - 2023-04-10 18:51 - 000003208 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{B617D1EE-9B22-46F4-BAA4-6EA190723FEA}
2023-06-29 01:46 - 2021-07-23 18:51 - 000002612 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2023-06-29 01:46 - 2021-05-19 14:55 - 000003464 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-06-29 01:46 - 2021-05-19 14:55 - 000003240 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-06-29 01:46 - 2021-05-19 14:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2023-06-28 23:29 - 2016-12-30 21:15 - 000000000 ____D C:\Users\fbart\Documents\Lexicon
2023-06-28 22:07 - 2022-02-09 20:15 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-06-28 21:05 - 2021-07-23 18:47 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2023-06-28 20:46 - 2016-12-20 23:33 - 000000000 ___SD C:\Users\fbart\AppData\Roaming\Microsoft\Credentials
2023-06-28 17:01 - 2019-11-17 11:37 - 000000000 ____D C:\Users\fbart\Documents\Zoom
2023-06-28 16:57 - 2018-08-14 19:08 - 000000000 ____D C:\Users\fbart\AppData\Local\CrashDumps
2023-06-28 12:47 - 2021-05-19 14:55 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-06-28 12:46 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-28 12:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-28 01:09 - 2018-05-28 17:30 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Microsoft\Paint
2023-06-27 17:45 - 2016-12-26 17:31 - 000000000 ____D C:\Users\fbart\AppData\Roaming\vlc
2023-06-27 16:57 - 2021-12-12 13:56 - 000000000 ____D C:\Users\fbart\AppData\Roaming\WhatsApp
2023-06-27 16:36 - 2018-04-16 17:25 - 000002505 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2023-06-27 16:36 - 2018-04-16 17:25 - 000002470 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2023-06-27 16:07 - 2018-04-16 17:25 - 000000000 ____D C:\Users\fbart\AppData\Local\AVAST Software
2023-06-27 15:42 - 2021-05-19 14:53 - 001885574 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-06-27 15:42 - 2019-12-07 16:41 - 000785556 _____ C:\WINDOWS\system32\perfh005.dat
2023-06-27 15:42 - 2019-12-07 16:41 - 000182314 _____ C:\WINDOWS\system32\perfc005.dat
2023-06-27 15:42 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-06-27 15:35 - 2021-05-19 14:45 - 000000000 ____D C:\Users\fbart
2023-06-27 15:35 - 2016-12-20 23:34 - 000000000 __SHD C:\Users\fbart\IntelGraphicsProfiles
2023-06-27 15:34 - 2021-05-19 14:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-27 15:34 - 2021-05-19 14:41 - 000008192 ___SH C:\DumpStack.log.tmp
2023-06-27 15:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-06-27 15:34 - 2017-06-12 19:13 - 000000000 ____D C:\ProgramData\Synaptics
2023-06-27 15:34 - 2017-06-12 19:12 - 000000000 ____D C:\ProgramData\NVIDIA
2023-06-27 15:34 - 2016-12-20 23:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-06-27 15:34 - 2016-12-20 23:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2023-06-27 15:34 - 2016-10-30 00:18 - 000000000 ____D C:\Intel
2023-06-27 11:03 - 2020-05-13 22:14 - 000002300 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-27 11:03 - 2020-05-13 22:14 - 000002259 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-06-26 20:47 - 2018-05-28 18:39 - 000000000 ____D C:\Users\fbart\AppData\Local\D3DSCache
2023-06-26 18:38 - 2017-04-11 14:17 - 000000000 ____D C:\Program Files (x86)\COMODO
2023-06-26 18:03 - 2020-05-12 14:02 - 000001984 _____ C:\Users\fbart\Desktop\Zoom.lnk
2023-06-26 18:03 - 2018-08-15 22:34 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Zoom
2023-06-26 16:44 - 2021-09-23 19:31 - 000002064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-06-26 16:44 - 2021-09-23 19:31 - 000001906 _____ C:\Users\Default\Desktop\Google Slides.lnk
2023-06-26 16:44 - 2021-09-23 19:31 - 000001906 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2023-06-26 16:44 - 2021-09-23 19:31 - 000001894 _____ C:\Users\Default\Desktop\Google Docs.lnk
2023-06-26 16:44 - 2018-10-12 10:50 - 000001870 _____ C:\Users\fbart\Desktop\Google Drive.lnk
2023-06-25 22:49 - 2016-12-20 23:40 - 000001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-06-25 22:34 - 2021-05-19 14:41 - 000559312 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-06-25 22:34 - 2016-12-20 23:53 - 000000000 ____D C:\ProgramData\AVAST Software
2023-06-25 22:33 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-06-25 22:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-06-25 22:31 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-25 22:27 - 2021-05-19 14:44 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-06-25 22:13 - 2016-12-22 20:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-06-25 21:58 - 2016-12-22 20:42 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-06-25 21:55 - 2017-11-08 16:15 - 000000000 ____D C:\Users\fbart\AppData\Local\Movavi
2023-06-24 00:10 - 2020-07-07 13:27 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-24 00:10 - 2020-07-07 13:27 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-06-23 12:50 - 2017-11-28 11:12 - 000000000 ____D C:\Users\fbart\AppData\Local\JDownloader v2.0
2023-06-23 12:25 - 2021-07-20 15:09 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Microsoft\Teams
2023-06-22 20:01 - 2021-10-11 15:15 - 000000000 ____D C:\Video
2023-06-22 15:30 - 2021-07-20 15:10 - 000002421 _____ C:\Users\fbart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2023-06-22 15:30 - 2021-07-20 15:10 - 000002413 _____ C:\Users\fbart\Desktop\Microsoft Teams.lnk
2023-06-21 16:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-06-15 10:18 - 2021-12-12 13:55 - 000000000 ____D C:\Users\fbart\AppData\Local\WhatsApp
2023-06-10 13:07 - 2020-10-24 18:03 - 000271504 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-06-10 13:07 - 2020-04-20 21:08 - 000556064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-06-10 13:07 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-06-10 13:07 - 2019-01-14 15:47 - 000392320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-06-10 13:07 - 2019-01-09 13:05 - 000297832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-06-10 13:07 - 2019-01-09 13:05 - 000095912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-06-10 13:07 - 2019-01-09 13:05 - 000031376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-06-10 13:07 - 2018-10-24 00:01 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-06-10 13:07 - 2018-03-09 11:33 - 000943456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-06-10 13:07 - 2018-03-09 11:33 - 000703800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-06-10 13:07 - 2018-03-09 11:33 - 000319560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-06-10 13:07 - 2018-03-09 11:33 - 000236448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-06-10 13:07 - 2018-03-09 11:33 - 000105248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-06-10 13:07 - 2018-03-09 11:33 - 000080376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-06-08 11:59 - 2018-03-09 18:09 - 000000000 ____D C:\Users\fbart\AppData\Local\Packages
2023-06-04 21:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
==================== Files in the root of some directories ========
2022-09-19 15:35 - 2022-09-19 15:35 - 000000000 _____ () C:\Program Files (x86)\test.txt
2019-06-24 16:45 - 2019-06-24 16:46 - 002535362 _____ () C:\Users\fbart\AppData\Roaming\AvidLink_Install.log
2018-06-26 22:25 - 2018-06-26 22:25 - 000000861 _____ () C:\Users\fbart\AppData\Roaming\Avid_CCS_Service_Stop.log
2021-07-23 19:06 - 2021-07-23 19:06 - 000000000 _____ () C:\Users\fbart\AppData\Local\oobelibMkey.log
2017-01-09 22:48 - 2023-04-22 21:57 - 000007601 _____ () C:\Users\fbart\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================