Preventivna kontrola
Napsal: 04 srp 2023 18:21
Zdravím, prosím o kontrolu logu 
Ďakujem
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-08-2023
Ran by linco (administrator) on DESKTOP-J0PJPO6 (ASUSTeK COMPUTER INC. FX502VE) (04-08-2023 19:12:36)
Running from C:\Users\linco\OneDrive\Počítač\FRST64.exe
Loaded Profiles: defaultuser0 & linco
Platform: Microsoft Windows 10 Home Version 22H2 19045.3271 (X64) Language: Čeština (Česká republika) -> Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe ->) (Avast Software s.r.o. -> Software Security System) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\Ekag20nt.exe
(C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe ->) (Avast Software s.r.o. -> The CefSharp Authors) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe <5>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_2bee269ff6068a49\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_2bee269ff6068a49\igfxEM.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\BreachGuard\bgui.exe <4>
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe <3>
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe <3>
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe <4>
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\78.0.1.0\crashpad_handler.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe
(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AntiTrackSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\BreachGuard\bgsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_2bee269ff6068a49\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_b56b111c605faf54\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0f12908b4ff13ff7\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0f12908b4ff13ff7\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_7ed3bacbb0a8cc67\RstMwService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_a4e83a4bfff92e83\Display.NvContainer\NVDisplay.Container.exe <2>
(Slack Technologies, LLC -> Slack Technologies Inc.) C:\Users\linco\AppData\Local\slack\app-4.33.84\slack.exe <5>
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2329.5.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spaceman.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Avast BreachGuard] => C:\Program Files\Avast Software\BreachGuard\bgui.exe [7777688 2023-08-01] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4543384 2023-07-22] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [4992920 2023-08-02] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [256408 2023-07-25] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\78.0.1.0\GoogleDriveFS.exe [146495256 2023-07-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\78.0.1.0\GoogleDriveFS.exe [146495256 2023-07-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1000\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\78.0.1.0\GoogleDriveFS.exe [146495256 2023-07-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\78.0.1.0\GoogleDriveFS.exe [146495256 2023-07-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4371816 2023-07-11] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41572768 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\linco\AppData\Local\slack\slack.exe [310576 2023-08-02] (Slack Technologies, LLC -> Slack Technologies Inc.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\78.0.1.0\GoogleDriveFS.exe [146495256 2023-07-19] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\ssm4mPC: C:\Windows\System32\spool\prtprocs\x64\ssm4mpc.dll [61736 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\ssm4m Langmon: C:\Windows\system32\ssm4mlm.dll [40744 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\115.0.5790.111\Installer\chrmstp.exe [2023-08-02] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2023-07-26]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
Startup: C:\Users\linco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2023-05-25]
ShortcutTarget: DeepL auto-start.lnk -> C:\Users\linco\AppData\Roaming\0install.net\desktop-integration\stubs\1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d\auto-start.exe () [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {9AC3B822-A126-4F56-8768-F12E5685B199} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-13] (Adobe Inc. -> Adobe)
Task: {188876BF-EDEE-4E8A-9387-CE265DA9046E} - System32\Tasks\ASUS Battery Health Charging Notification => C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe [2478776 2016-11-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {4FE10946-A7FF-4118-B9A9-310A4EB98032} - System32\Tasks\ASUS HotfixChecker => C:\Program Files (x86)\ASUS\HotfixChecker\HotfixChecker.exe [153808 2021-09-29] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {AEB63488-B184-44F6-9A95-2FD682825BE1} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19967504 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {95B6C707-EEC3-4992-9DAE-1C9189872243} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122552 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {CC41892C-860D-4898-A9DB-8C98DC996881} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122552 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {19ED9964-838E-4084-80CB-4D131EE83709} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4944792 2023-07-25] (Avast Software s.r.o. -> AVAST Software)
Task: {782667B0-E94B-4FFB-A873-46BBFCAC7D81} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1294232 2023-07-26] (Avast Software s.r.o. -> AVAST Software)
Task: {DA42EC08-1EF7-4A7A-975E-3918EC39090C} - System32\Tasks\Avast Software\Avast BreachGuard Crash Reporter => C:\Program Files\Avast Software\BreachGuard\AvBugReport.exe [4758424 2023-08-01] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 135 --path "C:\ProgramData\Avast Software\BreachGuard\log" --logpath "C:\ProgramData\Avast Software\BreachGuard\log" --configpath "C:\Program Files\Avast Software\BreachGuard\Setup" --programpath "C:\Program Files\Avast Software\BreachGuard" --guid b0276285-2 (the data entry has 26 more characters).
Task: {3279FF1E-3530-46A0-AA60-4FE931007910} - System32\Tasks\Avast Software\Avast BreachGuard Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-bg\icarus.exe [7212952 2023-07-31] (Avast Software s.r.o. -> Avast Software)
Task: {2DED5E38-118B-4F10-BB9D-15D85559DB71} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4758936 2023-07-22] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters).
Task: {C7752F36-C2C8-4D38-B9CF-C184D0E86668} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7212952 2023-07-18] (Avast Software s.r.o. -> Avast Software)
Task: {9582A0ED-6EAD-4A8B-89A2-09B7740F11CD} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [4758936 2023-08-02] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --log (the data entry has 99 more characters).
Task: {B54C976B-3EE4-45CD-9279-96D6377A49BE} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [7212952 2023-08-02] (Avast Software s.r.o. -> Avast Software)
Task: {401A042E-34A0-42CA-A5FD-7E1CCBA2FF66} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4759448 2023-07-26] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {DDDC9EDA-60FC-4017-90A5-5D07BA46BE2D} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [7092120 2023-07-18] (Avast Software s.r.o. -> Avast Software)
Task: {A42697B3-40AC-40C4-BE37-9003ACF46DF9} - System32\Tasks\Avast Software\AvastAntiTrackPremiumStart => C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe [813008 2023-05-11] (Avast Software s.r.o. -> AVAST Software)
Task: {C1CF8F2B-3B56-44B3-B8F7-870ECB0813EA} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software)
Task: {C804D29A-72E2-4EBA-BFC2-D8BF8FEAFDB0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {50E6A135-E750-4EFB-8403-C352454921AA} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "a3264604-1b06-42cf-a539-7219549c5ae9" --version "6.14.10584" --silent
Task: {523B0D20-DE49-4BF3-A2D3-9970D09ADCB4} - System32\Tasks\CCleanerSkipUAC - linco => C:\Program Files\CCleaner\CCleaner.exe [34677664 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {0D4FFF2D-9A82-4983-9D66-82F740EA0894} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\linco\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007456 2021-05-13] (ESET, spol. s r.o. -> ESET)
Task: {6A1DF42B-4775-4EE1-A55F-94814F1C2EF9} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\linco\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007456 2021-05-13] (ESET, spol. s r.o. -> ESET)
Task: {BF866BC6-24CB-472F-AF9A-433609A0BBDD} - System32\Tasks\GoogleUpdateTaskMachineCore{071AD593-33C4-406F-8DFF-4096EA3AC3BC} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-31] (Google LLC -> Google LLC)
Task: {0FE0C442-C3DB-447F-9599-27E81D7E11D3} - System32\Tasks\GoogleUpdateTaskMachineUA{121C0600-F6C4-488C-9739-1112C847895F} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-31] (Google LLC -> Google LLC)
Task: {9DE4561B-12A2-4861-B70D-80355F153286} - System32\Tasks\IcarusAvastVpnUpgrade => C:\Program Files\AVAST Software\SecureLine\setup\avast_vpn_online_setup.exe -> /silent /ShowVpnGui=0 /RestartUpdaterTaskName=IcarusAvastVpnUpgrade /RestartUpdaterAppExe="C:\Program Files\AVAST Software\SecureLine\setup\avast_vpn_online_setup.exe"
Task: {38D14A50-F3B3-40AC-8A3E-B9FAFF8557F6} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002480 2023-02-21] (Intel Corporation -> Intel Corporation)
Task: {4EDDE650-AB4B-4675-81CB-D15B23A9D914} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002480 2023-02-21] (Intel Corporation -> Intel Corporation)
Task: {8A084819-B742-4822-907C-3C5AC74C189E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {8FD46559-9889-42C0-AC8A-758A322F650D} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-2298117505-976418258-3832342613-1001 => C:\Users\linco\AppData\Local\Programs\Messenger\MessengerHelper.exe --lassie (No File)
Task: {A2A1F382-568E-48B3-A74E-88E2C67154C0} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(1): %windir%\system32\compattelrunner.exe -> -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc
Task: {A2A1F382-568E-48B3-A74E-88E2C67154C0} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(2): %windir%\system32\compattelrunner.exe -> -m:appraiser.dll -f:DoScheduledTelemetryRun
Task: {A2A1F382-568E-48B3-A74E-88E2C67154C0} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(3): %windir%\system32\compattelrunner.exe -> -m:aemarebackup.dll -f:BackupMareData
Task: {02253619-98FF-4241-937D-9DFD172FB739} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B7FC27D6-78A5-48EE-8F6C-3F47033397DD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B8146115-84C9-4DA8-A417-B9910D5E44F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5D312B20-D74C-4942-A886-9BDD252048F5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BBEA69AE-FCF9-483F-B095-6051A4364299} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [733088 2023-08-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {024C885E-79B2-4C3F-84F4-3289524ED59F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {F04ED9B6-D40D-4C93-A074-C1825A7AED64} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FDA1742F-A359-4621-BA40-D9C01691CA4A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B2FF2D3E-8D7E-453C-8F64-DAE08994D1D5} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {93108BA7-FFFD-4224-AC26-1E7A6B082700} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {96B69981-8597-4CEB-B58B-EA3BBB231561} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {93EF2981-27FE-4BC0-803C-8232088B574C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {52ACB30C-421F-48CB-87A3-3385F2B161C8} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {27BD42CB-7889-4340-AB5B-C4A058001F65} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {42D5785A-35ED-43AA-AFA0-D6A8E6793A5A} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617856 2021-09-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {36535DC6-14B1-42EB-A962-BD22196A1949} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617856 2021-09-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {669BA5FE-B7DF-4A9D-AF12-4A8603F3A1D5} - System32\Tasks\UMonitor Task => C:\WINDOWS\SysWOW64\UMonit64.exe [61752 2016-08-19] (GENESYS LOGIC, INC. -> )
Task: {BA5F0E74-46B4-4CC7-86E7-64EE18F46184} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\WINDOWS\System32\Wscript.exe [170496 2021-09-17] (Microsoft Windows -> Microsoft Corporation) -> //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\WpsExternal_20161114022915.job => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 193.162.153.164 194.239.134.83
Tcpip\..\Interfaces\{cb788683-62bb-49bd-a2bd-8c95f035c6d8}: [DhcpNameServer] 193.162.153.164 194.239.134.83
Tcpip\..\Interfaces\{ce166e0c-1abd-4573-a63b-a0ac72c5ca8a}: [DhcpNameServer] 10.66.0.1
FireFox:
========
FF DefaultProfile: zlodulmp.default-1666245238037
FF ProfilePath: C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037 [2023-08-04]
FF Session Restore: Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037 -> is enabled.
FF Extension: (Facebook Container) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\@contain-facebook.xpi [2023-07-21]
FF Extension: (AdBlocker Ultimate) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\adblockultimate@adblockultimate.net.xpi [2023-05-25]
FF Extension: (Easy Screenshot) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\easyscreenshot@mozillaonline.com.xpi [2023-04-22]
FF Extension: (Avast Passwords) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2023-05-19] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Language: Slovenčina (Slovak)) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\langpack-sk@firefox.mozilla.org.xpi [2023-08-03]
FF Extension: (Avast SecureLine VPN) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\secureline-vpn@avast.com.xpi [2023-04-22]
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\sp@avast.com.xpi [2023-07-04]
FF Extension: (Avast Online Security & Privacy) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\wrc@avast.com.xpi [2023-05-11]
FF Extension: (Image Search Options) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\{4a313247-8330-4a81-948e-b79936516f78}.xpi [2023-04-22]
FF Extension: (Plná Peňaženka Líštička Lite) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\{5f383f45-0de3-43b3-838c-ea98916167e3}.xpi [2022-11-17]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2023-05-09]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-06-25]
FF Extension: (To DeepL) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\{db420ff1-427a-4cda-b5e7-7d395b9f16e1}.xpi [2023-06-02]
FF HKLM\...\Firefox\Extensions: [sparalarm@chip.de] - C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi
FF Extension: (CHIP Sparalarm) - C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi [2019-09-11]
FF HKLM-x32\...\Firefox\Extensions: [sparalarm@chip.de] - C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-13] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-13] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\linco\AppData\Local\Google\Chrome\User Data\Default [2023-07-30]
CHR HomePage: Default -> hxxp://www.google.com
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\linco\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2023-05-15]
CHR Extension: (Google Docs Offline) - C:\Users\linco\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-20]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\linco\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2023-05-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\linco\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-11]
CHR Extension: (Avast AntiTrack Premium) - C:\Users\linco\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdidpcihajhihmghhhkfnpklgdehold [2023-05-25]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-13] (Adobe Inc. -> Adobe)
S4 AsBhcService; C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe [114360 2016-10-20] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8901016 2023-07-25] (Avast Software s.r.o. -> AVAST Software)
R2 Avast BreachGuard Service; C:\Program Files\Avast Software\BreachGuard\bgsvc.exe [8098712 2023-08-01] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [586136 2023-07-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2102168 2023-07-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [587160 2023-07-25] (Avast Software s.r.o. -> AVAST Software)
R2 AvastAntiTrackSvc; C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AntiTrackSvc.exe [5779160 2023-05-11] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-05-17] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [17765272 2023-07-22] (Avast Software s.r.o. -> AVAST Software)
R2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [9697688 2023-08-02] (Avast Software s.r.o. -> AVAST Software)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43272 2023-07-03] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [212744 2023-07-03] (Intel Corporation -> Intel)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-11-22] (EasyAntiCheat Oy -> Epic Games, Inc)
R4 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2358800 2022-05-19] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-11-19] (Huawei Technologies Co., Ltd. -> ) [File not signed]
S4 Mobile Broadband HL Service; C:\Program Files (x86)\MobileBrServ\mbbservice.exe [242264 2016-03-24] (Huawei Technologies Co.,Ltd. -> )
S4 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> )
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [10781080 2023-07-26] (Avast Software s.r.o. -> AVAST Software)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [17845048 2023-07-19] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-05-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-05-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_a4e83a4bfff92e83\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_a4e83a4bfff92e83\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [29312 2016-11-14] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 AsusHFilter; C:\WINDOWS\System32\drivers\AsusHFilter.sys [30200 2016-12-22] (ASUSTeK Computer Inc. -> )
R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_314b5cb6bf57f471\AsusPTPFilter.sys [116712 2021-12-02] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237984 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392880 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297880 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95960 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2023-05-17] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [272568 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [559136 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105240 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [946048 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [705376 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212632 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319512 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [76568 2023-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [51112 2023-03-25] (Avast Software s.r.o. -> AVAST Software)
S3 aswWireGuard; C:\WINDOWS\System32\drivers\aswWireguard.sys [184544 2023-03-25] (Avast Software s.r.o. -> Avast Software)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [147808 2023-04-12] (GENESYS LOGIC, INC. -> Genesys Logic)
R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R3 iaLPSS2_I2C; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_skl.inf_amd64_363c7132639e12a6\iaLPSS2_I2C_ICL.sys [200456 2020-04-28] (Intel Corporation -> Intel Corporation)
S3 MpKsl281a76c5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1A70285A-755D-4EAC-8FD2-16BB7AA0B79A}\MpKslDrv.sys [212264 2023-05-11] (Microsoft Windows -> Microsoft Corporation)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [124952 2023-05-11] (Avast Software s.r.o. -> Windows (R) Win 7 DDK provider)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [14224 2021-04-02] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2023-05-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-05-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-05-11] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29592 2022-03-13] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-02 22:45 - 2023-08-02 22:45 - 000000000 ____D C:\Users\linco\AppData\Local\DeepL_SE
2023-07-31 21:06 - 2023-07-31 21:06 - 000652912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-07-26 14:31 - 2023-07-26 14:31 - 000000000 ___HD C:\$WinREAgent
2023-07-25 20:10 - 2023-07-25 20:10 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-07-19 17:49 - 2023-07-14 09:13 - 000848952 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-07-19 17:49 - 2023-07-14 09:13 - 000848952 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-07-19 17:49 - 2023-07-14 09:13 - 000713776 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-07-19 17:49 - 2023-07-14 09:13 - 000713776 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-07-19 17:49 - 2023-07-14 09:12 - 001487912 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-07-19 17:49 - 2023-07-14 09:12 - 001226776 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-07-19 17:49 - 2023-07-14 09:12 - 000653408 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-07-19 17:49 - 2023-07-14 09:12 - 000653408 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-07-19 17:49 - 2023-07-14 09:12 - 000637024 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-07-19 17:49 - 2023-07-14 09:12 - 000637024 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-07-19 17:48 - 2023-07-14 09:08 - 000933912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-07-19 17:48 - 2023-07-14 09:08 - 000669184 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-07-19 17:48 - 2023-07-14 09:08 - 000503832 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-07-19 17:48 - 2023-07-14 09:07 - 002167792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-07-19 17:48 - 2023-07-14 09:07 - 001622016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-07-19 17:48 - 2023-07-14 09:07 - 001538088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-07-19 17:48 - 2023-07-14 09:07 - 001194992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-07-19 17:48 - 2023-07-14 09:07 - 000992240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-07-19 17:48 - 2023-07-14 09:07 - 000776688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-07-19 17:48 - 2023-07-14 09:07 - 000769024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-07-19 17:48 - 2023-07-14 09:06 - 012066328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-07-19 17:48 - 2023-07-14 09:06 - 000459288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-07-19 17:48 - 2023-07-14 09:05 - 014520832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-07-19 17:48 - 2023-07-14 09:05 - 006190632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-07-19 17:48 - 2023-07-14 09:05 - 005844976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-07-19 17:48 - 2023-07-14 09:05 - 005550632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-07-19 17:48 - 2023-07-14 09:05 - 003482648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-07-19 17:48 - 2023-07-14 09:05 - 000852976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-07-19 17:48 - 2023-07-14 09:03 - 006738032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-07-19 17:47 - 2023-07-13 06:45 - 000108142 _____ C:\WINDOWS\system32\nvinfo.pb
2023-07-12 13:24 - 2023-07-12 13:24 - 000000000 ____H C:\Users\linco\OneDrive\Dokumenty\Default.rdp
2023-07-06 17:28 - 2023-07-06 17:28 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.5
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-04 19:13 - 2020-08-22 14:05 - 000000000 ____D C:\FRST
2023-08-04 19:09 - 2022-02-08 18:18 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-08-04 19:09 - 2018-09-15 21:01 - 000000000 ____D C:\Users\linco\AppData\Local\AVAST Software
2023-08-04 19:06 - 2023-04-27 22:35 - 000000000 ____D C:\Program Files\CCleaner
2023-08-04 19:01 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-08-04 18:55 - 2021-02-08 21:53 - 000000445 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2023-08-04 18:55 - 2020-06-20 23:01 - 002229564 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-08-04 18:55 - 2020-06-20 21:24 - 000460920 _____ C:\WINDOWS\system32\perfh006.dat
2023-08-04 18:55 - 2020-06-20 21:24 - 000081102 _____ C:\WINDOWS\system32\perfc006.dat
2023-08-04 18:55 - 2019-12-07 16:41 - 000709160 _____ C:\WINDOWS\system32\perfh005.dat
2023-08-04 18:55 - 2019-12-07 16:41 - 000145492 _____ C:\WINDOWS\system32\perfc005.dat
2023-08-04 18:55 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-08-04 18:40 - 2020-06-20 22:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-08-04 18:21 - 2021-12-16 20:58 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-08-04 18:21 - 2020-07-31 23:19 - 000000000 ____D C:\Program Files (x86)\Google
2023-08-04 18:16 - 2020-12-23 11:05 - 000000000 ____D C:\Users\linco\AppData\Roaming\Slack
2023-08-04 18:13 - 2023-04-27 22:35 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - linco
2023-08-04 18:13 - 2023-04-12 18:39 - 000003470 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{121C0600-F6C4-488C-9739-1112C847895F}
2023-08-04 18:13 - 2023-04-12 18:39 - 000003246 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{071AD593-33C4-406F-8DFF-4096EA3AC3BC}
2023-08-04 18:12 - 2023-05-11 07:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-08-04 17:57 - 2020-04-13 20:56 - 000000000 ____D C:\Users\linco\AppData\Roaming\Microsoft\Skype for Desktop
2023-08-04 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-08-04 12:28 - 2023-05-11 07:42 - 000000000 ____D C:\Users\linco\AppData\Local\AvastAntiTrackPremium
2023-08-04 12:27 - 2018-09-15 20:55 - 000000000 __SHD C:\Users\linco\IntelGraphicsProfiles
2023-08-04 12:27 - 2017-07-04 20:03 - 000000000 ____D C:\ProgramData\NVIDIA
2023-08-02 20:05 - 2023-05-11 08:26 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-08-02 20:02 - 2023-05-11 07:40 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2023-08-02 20:02 - 2023-04-26 08:02 - 000008192 ___SH C:\DumpStack.log.tmp
2023-08-02 20:02 - 2020-06-20 23:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-08-02 20:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-08-02 20:02 - 2018-09-15 20:59 - 000000000 ____D C:\ProgramData\AVAST Software
2023-08-02 20:02 - 2017-07-04 19:59 - 000000000 ___HD C:\Intel
2023-08-02 18:33 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-08-02 17:43 - 2023-05-21 20:01 - 000000000 ____D C:\Users\linco\AppData\Local\slack
2023-08-02 17:43 - 2023-04-17 08:24 - 000000000 ____D C:\Users\linco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies Inc
2023-08-02 13:32 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-08-01 18:22 - 2023-05-24 22:11 - 000000000 ____D C:\Users\linco\AppData\Roaming\DeepL_SE
2023-08-01 17:39 - 2018-09-15 21:01 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-08-01 08:34 - 2018-09-20 10:59 - 000000000 ____D C:\Users\linco\AppData\Local\D3DSCache
2023-07-31 21:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-07-31 14:38 - 2020-06-20 21:45 - 000000000 ____D C:\Users\linco
2023-07-30 21:42 - 2016-11-14 04:29 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2023-07-30 21:38 - 2022-12-06 21:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2023-07-29 01:18 - 2022-08-25 08:28 - 000000000 ____D C:\WINDOWS\Minidump
2023-07-27 19:11 - 2018-12-25 22:42 - 000918960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2023-07-26 20:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-07-26 20:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-07-26 20:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-07-26 20:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-07-26 20:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-07-26 20:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-07-26 20:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
2023-07-26 14:43 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-07-26 14:40 - 2020-06-20 22:57 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-07-25 20:11 - 2020-06-20 21:45 - 000000000 ____D C:\Users\defaultuser0
2023-07-25 20:10 - 2023-05-17 21:29 - 000946048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000705376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000559136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000392880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000319512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000297880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000272568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000237984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000105240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000095960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000080416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-07-25 20:10 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-07-22 21:27 - 2023-04-27 22:35 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-07-22 21:25 - 2023-04-27 22:35 - 000003106 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-07-22 21:25 - 2023-04-27 22:35 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-07-22 21:25 - 2023-04-12 18:39 - 000002738 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2023-07-22 21:25 - 2023-01-11 11:33 - 000003102 _____ C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2023-07-22 21:25 - 2020-06-20 23:03 - 000003458 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-22 21:25 - 2020-06-20 23:03 - 000002974 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-22 09:50 - 2020-09-16 11:53 - 000000000 ____D C:\Users\linco\AppData\Roaming\Microsoft\Teams
2023-07-22 09:50 - 2018-12-05 20:57 - 000000000 ____D C:\Users\linco\AppData\Local\SquirrelTemp
2023-07-22 09:50 - 2018-10-16 19:01 - 000000000 ____D C:\Program Files\Defraggler
2023-07-21 18:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-07-21 16:21 - 2020-06-20 23:03 - 000003212 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-21 16:21 - 2020-06-20 23:03 - 000002406 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_ListenToDevice
2023-07-21 16:21 - 2020-06-20 23:03 - 000002362 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2023-07-21 16:16 - 2022-08-21 23:08 - 000003030 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2023-07-21 16:16 - 2022-08-21 23:08 - 000002664 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2023-07-21 16:16 - 2020-06-20 23:03 - 000003044 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-21 16:16 - 2020-06-20 23:03 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-21 16:16 - 2020-06-20 23:03 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-21 16:16 - 2020-06-20 23:03 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-21 16:16 - 2020-06-20 23:03 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-21 16:16 - 2020-06-20 23:03 - 000002804 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-19 18:00 - 2018-09-15 20:59 - 000000000 ____D C:\Users\linco\AppData\Local\NVIDIA
2023-07-19 15:29 - 2021-09-21 18:09 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-07-15 22:27 - 2017-07-04 20:07 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2023-07-14 09:03 - 2020-05-31 19:17 - 007858064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-07-12 13:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-07-12 13:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-07-12 13:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-07-12 12:57 - 2018-09-16 14:50 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-07-12 12:52 - 2018-09-16 14:50 - 173351160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-07-12 12:37 - 2018-09-20 18:10 - 000000000 ____D C:\Users\linco\AppData\Local\CrashDumps
2023-07-10 20:48 - 2022-11-20 18:50 - 000000000 ____D C:\Users\linco\AppData\Local\T2GP Launcher
2023-07-06 22:31 - 2023-05-12 08:20 - 000001472 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
2023-07-06 22:31 - 2017-07-04 19:59 - 000000000 ____D C:\ProgramData\Package Cache
2023-07-05 04:37 - 2023-02-17 10:51 - 000000000 ____D C:\Users\linco\AppData\Roaming\Zoom
==================== Files in the root of some directories ========
2020-11-13 15:22 - 2020-11-13 15:22 - 000000046 _____ () C:\Users\linco\AppData\Roaming\Camdata.ini
2020-11-13 15:22 - 2020-11-13 15:22 - 000000408 _____ () C:\Users\linco\AppData\Roaming\CamLayout.ini
2020-11-13 15:22 - 2020-11-13 15:22 - 000000408 _____ () C:\Users\linco\AppData\Roaming\CamShapes.ini
2020-11-13 15:22 - 2020-11-13 15:22 - 000004536 _____ () C:\Users\linco\AppData\Roaming\CamStudio.cfg
2018-09-15 20:58 - 2019-07-07 11:46 - 000000200 _____ () C:\Users\linco\AppData\Roaming\sp_data.sys
2020-11-13 15:20 - 2020-11-13 15:20 - 000000096 _____ () C:\Users\linco\AppData\Roaming\version2.xml
2020-12-01 11:07 - 2020-12-01 11:07 - 000415507 _____ () C:\Users\linco\AppData\Local\ars.cache
2020-12-01 11:08 - 2020-12-01 11:08 - 001139162 _____ () C:\Users\linco\AppData\Local\census.cache
2020-12-01 10:38 - 2020-12-01 10:38 - 000000036 _____ () C:\Users\linco\AppData\Local\housecall.guid.cache
2020-12-01 10:42 - 2020-12-01 10:42 - 000000010 _____ () C:\Users\linco\AppData\Local\sponge.last.runtime.cache
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-08-2023
Ran by linco (04-08-2023 19:15:36)
Running from C:\Users\linco\OneDrive\Počítač
Microsoft Windows 10 Home Version 22H2 19045.3271 (X64) (2020-06-20 21:03:20)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2298117505-976418258-3832342613-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2298117505-976418258-3832342613-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2298117505-976418258-3832342613-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-2298117505-976418258-3832342613-501 - Limited - Disabled)
linco (S-1-5-21-2298117505-976418258-3832342613-1001 - Administrator - Enabled) => C:\Users\linco
WDAGUtilityAccount (S-1-5-21-2298117505-976418258-3832342613-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Any Video Converter 7.1.7 (HKLM-x32\...\Any Video Converter) (Version: 7.1.7 - Anvsoft)
ASUS Battery Health Charging (HKLM-x32\...\{3A7E73B6-3A04-49ED-811E-CC39F7EA2E34}) (Version: 1.0.0002 - ASUS)
ASUS Input Configuration (HKLM-x32\...\{7DDF7571-64BD-4232-9729-20FF10CE6C62}) (Version: 1.0.3 - ASUS)
ASUS PTP Driver (HKLM-x32\...\{7618E419-9124-4E6C-9AF4-487A6DDEC1C5}) (Version: 11.0.16 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.2.0 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0051 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.3.32 - ICEpower a/s)
Avast AntiTrack Premium (HKLM-x32\...\AvastAntiTrackPremium) (Version: 3.3.983.1074 - Avast Software)
Avast BreachGuard (HKLM\...\AvastBreachGuard) (Version: 23.3.2118.7768 - Avast Software)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.2.13795.13400 - Avast Software)
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 23.2.3825.14816 - Avast Software)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 23.7.6074 - Avast Software)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 5.26.8502.8974 - Avast Software)
Backup and Sync from Google (HKLM\...\{696895F7-52C7-4C9E-998B-C7E0CC907092}) (Version: 3.57.4256.0809 - Google, Inc.)
Blackmagic RAW Common Components (HKLM\...\{94C42023-ECF5-46E6-ACB4-2AED536B205D}) (Version: 2.2 - Blackmagic Design)
CamStudio 2.7.4 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.4 - CamStudio Open Source)
CCleaner (HKLM\...\CCleaner) (Version: 6.14 - Piriform)
CyberLink PhotoDirector 5 (HKLM\...\{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6515 - CyberLink Corp.) Hidden
CyberLink PhotoDirector 5 (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6515 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4010.0 - CyberLink Corp.) Hidden
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4010.0 - CyberLink Corp.)
DeepL (HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\https%3a##appdownload.deepl.com#windows#0install#deepl.xml) (Version: - DeepL SE)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Documentation Manager (HKLM\...\{30EDBBE7-D455-4B19-B6EC-EF0F4934ABFE}) (Version: 22.180.0.4 - Intel Corporation) Hidden
Fairlight Audio Accelerator Utility (HKLM\...\FairlightAudioAccelerator_is1) (Version: 1.0.13 - Blackmagic Design)
FormatFactory 4.4.1.0 (HKLM-x32\...\FormatFactory) (Version: 4.4.1.0 - Free Time)
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 12.1.2.15332 - Foxit Software Inc.)
Genesys USB Mass Storage Device (HKLM-x32\...\{CA7CA513-2531-4801-83C6-CF8FB6C8711A}) (Version: 4.5.1.1.1001 - Genesys Logic)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 78.0.1.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 115.0.5790.111 - Google LLC)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.0.2.301 - )
Intel Driver && Support Assistant (HKLM-x32\...\{0F7F6F7B-684E-435A-9FCE-C8A1F71EDA14}) (Version: 23.3.25.6 - Intel) Hidden
Intel Security Software Manager (HKLM\...\Intel Security Software Manager) (Version: 1.1.107.0 - Intel Security)
Intel(R) Computing Improvement Program (HKLM\...\{318C30A1-C7AF-414E-890F-6345E6E0FD33}) (Version: 2.4.09084 - Intel Corporation)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.2.11002.3418 - Intel Corporation)
Intel(R) Graphics Driver Software (HKLM-x32\...\{0a00b776-067b-45c6-996b-8a3360ee56a4}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{1fe0084f-3e2b-4ba9-a4a6-c33f56e7f886}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{56b89a97-2659-4931-bffa-4b136a521eb1}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{d8ebe554-4504-4ade-ada9-8617c4525581}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Chipset Device Software (HKLM\...\{81520FC5-3518-40E9-9803-70CE8A801D07}) (Version: 10.1.1.38 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{177F3AF8-1D9D-4C47-AB82-69571F4630DE}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1035 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{DEDA24FF-BA95-42E7-B914-639D32515511}) (Version: 11.6.0.1035 - Intel Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.7325 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.5.1035 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{45F38D16-2016-4BF1-B7FD-011A2B7570F4}) (Version: 15.2.5.1035 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1643.1 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{AEDB97C8-18E1-4053-B7DD-B66E9531B207}) (Version: 30.100.1643.01 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000200-0220-1033-84C8-B8D95FA3C8C3}) (Version: 22.200.0.2 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{0ddcdf18-17cd-44ad-af4e-ba6821421c30}) (Version: 23.3.25.6 - Intel)
Intel® PROSet/Wireless Software (HKLM-x32\...\{5853172b-5520-4089-9ef4-e26c594382b3}) (Version: 19.30.0 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{224CC1EA-2433-4106-81BA-5D5432B11744}) (Version: 19.30.0.0905 - Intel Corporation) Hidden
Intel® Software Installer (HKLM-x32\...\{5815d801-d03c-4911-a46b-75a331ad7265}) (Version: 22.180.0.4 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (HKLM\...\{75FE588B-F158-4BB3-A283-A8D18E522A52}) (Version: 1.43.301.1 - Intel Corporation) Hidden
IrfanView 4.62 (64-bit) (HKLM\...\IrfanView64) (Version: 4.62 - Irfan Skiljan)
kdenlive (HKLM-x32\...\kdenlive) (Version: 21.12.2 - KDE e.V.)
LibreOffice 7.5.4.2 (HKLM\...\{B8BF99B6-750E-45C5-A07D-AF394E5B6139}) (Version: 7.5.4.2 - The Document Foundation)
Microsoft .NET Core Host - 3.1.32 (x64) (HKLM\...\{8A8E3A04-83BC-4CDE-9259-893B666C1AB1}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.32 (x64) (HKLM\...\{ABC6B3C2-1A8D-4C5E-AC16-C2AE44F02743}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.32 (x64) (HKLM\...\{A741B803-3F0E-4684-81EF-FC128D15A92C}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.32 (x64) (HKLM-x32\...\{784973c8-d618-4ac8-97ed-1fd52c5bdf2f}) (Version: 3.1.32.31915 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Teams) (Version: 1.3.00.30866 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{F72EB01C-8051-488C-AB30-848E38D3598B}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{F29F6D90-52BF-4644-9F61-82EFF42A9268}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
MiVue Manager (HKLM-x32\...\{123BDDDC-D02F-4C6E-A011-9CB265E2483E}) (Version: 1.0.33.32 - Mio Technology Corporation)
Mobile Broadband HL Service (HKLM-x32\...\Mobile Broadband HL Service) (Version: 22.001.29.00.03 - Huawei Technologies Co.,Ltd)
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 116.0 (x64 en-US)) (Version: 116.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 62.0 - Mozilla)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.112 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.112 - NVIDIA Corporation)
NVIDIA Grafický ovládač 536.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 536.67 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 230707 - Kakao Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9235.1 - Realtek Semiconductor Corp.)
Samsung M2070 Series (HKLM-x32\...\Samsung M2070 Series) (Version: 1.29 (28. 3. 2022) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Skype verzia 8.100 (HKLM-x32\...\Skype_is1) (Version: 8.100 - Skype Technologies S.A.)
Slack (HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\slack) (Version: 4.33.84 - Slack Technologies Inc.)
sparalarm (HKLM-x32\...\{8571D985-3EF7-4188-BB5A-9FA20ED130B7}) (Version: 1.0.0.0 - Sparalarm)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.44.4 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-4) (Version: 1.0.33.0 - LunarG, Inc.)
Windows Deployment Tools (HKLM-x32\...\{C4443D4E-AC00-CF0E-9519-C9111E83ADBB}) (Version: 10.1.17134.1 - Microsoft)
Windows Driver Package - ASUS (AsusHFilter) HIDClass (12/19/2016 1.0.0.2) (HKLM\...\EEDD19DDF3F0CA7CFA2F4C500D442DD1FEB434F6) (Version: 12/19/2016 1.0.0.2 - ASUS)
Windows Driver Package - ASUS (AsusPTPDrv) HIDClass (09/23/2016 11.0.0.14) (HKLM\...\F95583A62AB902A3FC263F668380483F9E0113CD) (Version: 09/23/2016 11.0.0.14 - ASUS)
Windows Kontrola stavu počítača (HKLM\...\{8D6B9DC1-A437-41E0-8DF1-9F37748394AE}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Windows Kontrola stavu počítača (HKLM\...\{995C446A-850D-44EA-BB71-156C271D9428}) (Version: 3.7.2204.15001 - Microsoft Corporation)
Windows Kontrola stavu počítača (HKLM\...\{B3A734C8-5FD7-40BD-B967-066E29E58EE1}) (Version: 3.3.2110.22002 - Microsoft Corporation)
Windows PE x86 x64 (HKLM-x32\...\{346FC109-E9A8-2224-5726-843C7283E4F7}) (Version: 10.1.17134.1 - Microsoft)
Windows PE x86 x64 wims (HKLM-x32\...\{64FF0563-D6F1-C8E4-56F8-F678D1158C58}) (Version: 10.1.17134.1 - Microsoft)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.2.2 - ASUSTeK COMPUTER INC.)
WinRAR 6.22 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.22.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\ZoomUMX) (Version: 5.15.2 (18096) - Zoom Video Communications, Inc.)
Packages:
=========
All Radio Stations Denmark -> C:\Program Files\WindowsApps\63751xp8bfpy6bx.AllRadioStationsDenmark_1.1.2.0_x64__9p9cnm0bvbk3j [2023-03-06] (xp8bfpy6bx) [MS Ad]
ASUS ZenLink -> C:\Program Files\WindowsApps\B9ECED6F.ZenSync_1.0.7.0_x86__qmba6cd70vzyy [2023-03-06] (ASUSTeK COMPUTER INC.) [MS Ad]
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-08] (Autodesk Inc.)
Bandicut Video Cutter -> C:\Program Files\WindowsApps\BandicamCompany.BandicutVideoCutterFree_3.15.1509.0_x64__4q7dvte5y4xn4 [2020-11-13] (Bandicam Company)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-06-15] (Microsoft Corporation)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-12] (Microsoft Corporation)
eManual -> C:\Program Files\WindowsApps\B9ECED6F.eManual_2.0.3.0_x86__qmba6cd70vzyy [2018-09-15] (ASUSTeK COMPUTER INC.)
freda epub ebook reader -> C:\Program Files\WindowsApps\5957Turnipsoft.freda_4.40.8.0_x64__ypmq2qh89vmny [2023-04-01] (Turnipsoft)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
MyASUS-Service Center -> C:\Program Files\WindowsApps\B9ECED6F.MyASUS_3.3.11.0_x86__qmba6cd70vzyy [2018-09-15] (ASUSTeK COMPUTER INC.) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-07-19] (NVIDIA Corp.)
Ovládacie centrum pre grafiku Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt [2023-07-03] (INTEL CORP) [Startup Task]
radia.sk -> C:\Program Files\WindowsApps\Apptives.radia.sk_1.0.0.33_x64__n63xbxfgjvywe [2023-02-20] (Apptives)
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2018-09-20] (Samsung Electronics Co. Ltd.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-03-20] (Microsoft Studios) [MS Ad]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2329.5.0_x64__cv1g1gvanyjgm [2023-08-02] (WhatsApp Inc.) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2298117505-976418258-3832342613-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\linco\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20275.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2298117505-976418258-3832342613-1001_Classes\CLSID\{b72e6f5e-f6e0-a9eb-461b-6118363bd15c}\localserver32 -> C:\Users\linco\AppData\Local\0install.net\implementations\sha256new_55Y6FHEK7QNKN55ESNMK4VBVZIQYNK4LKTQIF2SCK2UYOCE7A2AQ\DeepL.exe (DeepL SE -> DeepL SE)
CustomCLSID: HKU\S-1-5-21-2298117505-976418258-3832342613-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\linco\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-25] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_a4e83a4bfff92e83\nvshext.dll [2023-07-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\system32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [File not signed]
HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\system32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\system32\alf2cd.acm [38912 2003-05-21] (NCT Company) [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\AC3ACM.acm [81920 2004-02-04] (fccHandler) [File not signed]
HKLM\...\Drivers32: [msacm.lame] => C:\Windows\system32\lame.ax [245760 2005-08-01] () [File not signed]
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\system32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [File not signed]
HKLM\...\Drivers32: [vidc.mpg4] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.mp42] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\system32\xvidvfw.dll [139264 2004-07-03] () [File not signed]
HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\system32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.LAGS] => C:\Windows\system32\lagarith.dll [216064 2011-12-07] () [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2023-05-11 07:41 - 2023-05-11 07:41 - 000180224 _____ (Software Security System) [File not signed] C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Ekc3220.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-07-16 13:47 - 2023-07-31 21:09 - 000000020 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
2021-02-08 21:53 - 2023-08-04 18:55 - 000000445 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\dotnet\
HKU\S-1-5-21-2298117505-976418258-3832342613-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
DNS Servers: 193.162.153.164 - 194.239.134.83
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "PDF24"
HKU\S-1-5-21-2298117505-976418258-3832342613-1000\...\StartupApproved\Run: => "OneDriveSetup"
HKU\S-1-5-21-2298117505-976418258-3832342613-1000\...\StartupApproved\Run: => "GoogleDriveFS"
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\StartupApproved\StartupFolder: => "DeepL auto-start.lnk"
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\StartupApproved\Run: => "GoogleDriveFS"
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\StartupApproved\Run: => "Gaijin.Net Updater"
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\StartupApproved\Run: => "com.squirrel.slack.slack"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{BD32919E-726D-4E21-A078-65E16B9A9101}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{43AE6A5F-63EE-4DA3-9439-784A4DB05534}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{5CB887D8-7A95-4578-8AFC-5E9DFF87EB48}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{9ECF2400-2897-46C8-9E42-7D418C093246}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{101C8101-91A5-4D9D-8282-F9E0898EB8D5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{BFC35833-B5B6-4F91-9320-070BB4BF0C42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{BB3BDD92-C402-43AE-9691-3CC6192EB39D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A7500D77-F651-44DC-AB54-894899AF73F6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{BC7C3394-A3A0-4A32-9A25-0BB3CD42AC81}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Wireless Connectivity Solutions -> )
FirewallRules: [{361C8061-5D7A-42BE-AD9C-850EEC74FC06}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BA592D17-9141-4AE9-89DB-3C34FD3E85CC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{B405641C-3A86-4AE0-9C3A-4420652905B3}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{26868414-D70F-44E1-A26E-06268B8F929A}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A230E057-E55F-4024-A4A2-32507359D414}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0A7D7996-646F-4CE5-B13A-47EDD6084C65}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{271886E6-F055-44CC-B6D4-D1BE6A4DC556}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B20FE557-FE95-406E-A170-19385F765467}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{62307108-F923-4800-A7F4-A425487F1703}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{BDC5F3F3-D91F-4E92-B2B0-D06B0BF51093}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{B412A4D0-5E24-4660-9BA6-624960CFD348}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AA41FFBE-1692-4B94-AE9E-196F8207217D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C6D7EB89-18FB-43ED-8623-C555864B8428}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{1C4DE68E-B733-4FB4-9EE8-AAEC18634FE2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{06CE48AB-0F26-4B0A-A17D-4AE80B813AC1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{269F9C3D-38B3-4EDF-9D62-C3685896E939}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{24352F77-F81F-4BE8-9400-67BBD13D5284}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{86634922-E2C0-4740-A104-1CDC6894CC6A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{06AD2A55-4D65-4A04-8311-72D8EF35B655}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{91CADB24-0452-430D-B63E-28CECE736455}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{55B9A017-90F0-438E-BE4E-5C9B4A2BCCBD}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{317ED74F-F8A4-422C-97B5-8B8B254174A8}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{BBBE94C4-C549-44EC-8390-51321E1F987C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5B55CB73-8712-4A86-B423-5A0A40DF8F4E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9E6191F2-D792-4297-8031-554B32C8738F}] => (Allow) C:\Program Files\Avast Software\BreachGuard\bgui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5C828883-A4C6-437F-8F2F-65BEA3E8F369}] => (Allow) C:\Program Files\Avast Software\BreachGuard\bgui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2A35E4A6-0B01-4716-9912-895A442BAABA}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1501FE95-AF41-4EB1-B3D7-A80700476D07}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{42A161D0-72FB-4B39-8A8C-F6BDD31160B2}] => (Allow) C:\Users\linco\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{5DEDC385-7316-4F41-B8B5-CC7D186C7DCC}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C313AC62-FD35-4939-A835-86505C3CBD63}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9B8F798A-067E-4A8C-9511-2E7390F36A5C}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{AE030136-561E-4D7D-892F-35B32935AA9A}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1DF5CEFB-7DDA-4DA9-8189-B8E8CA0CA60C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{953CA461-4F6A-4A87-8CEA-0A88A4E15CE4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A0ED1316-C18C-48CA-BFF4-B9B820BF190E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{3E705EA0-E956-4D99-94C8-581185E563A8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B4104794-E08A-413F-B393-678E0CCC2396}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A2350028-565B-4B16-A11E-294734BD9BD4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A09A7467-F190-43A1-827B-476D24AFF4F6}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{FE9DF334-0B12-4B87-B76A-5C8FB0316185}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C605290D-C04E-49E1-BF8F-5F01523DE2EE}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (08/02/2023 01:32:07 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (08/01/2023 08:20:24 AM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/31/2023 09:07:06 PM) (Source: ESENT) (EventID: 455) (User: )
Description: taskhostw (7952,R,98) WebCacheLocal: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Users\linco\AppData\Local\Microsoft\Windows\WebCache\V0100028.log.
Error: (07/31/2023 08:07:05 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/30/2023 08:20:26 AM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/28/2023 01:14:34 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/26/2023 09:12:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AntiTrackSvc.exe, verzia: 2.0.0.147, časová značka: 0x63465a8f
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.19041.789, časová značka: 0x82dc99a2
Kód výnimky: 0xc0000409
Odstup chyby: 0x0009eddb
Identifikácia chybujúceho procesu: 0x1824
Čas spustenia chybujúcej aplikácie: 0x01d9bff3b94a00f0
Cesta chybujúcej aplikácie: C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AntiTrackSvc.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: 909a757c-828d-4ec2-84f6-b97ab2f2bd5c
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (07/26/2023 08:54:55 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, Probíhá vypnutí systému.
.
System errors:
=============
Error: (08/04/2023 07:07:58 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x8024200b: Aktualizácia analytických nástrojov zabezpečenia pre Microsoft Defender Antivirus - KB2267602 (verzia 1.393.2270.0).
Error: (08/04/2023 07:07:56 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba Antivirová ochrana v programu Microsoft Defender bola ukončená s nasledujúcou chybou:
General access denied error
Error: (08/04/2023 07:07:09 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x8024200b: Aktualizácia analytických nástrojov zabezpečenia pre Microsoft Defender Antivirus - KB2267602 (verzia 1.393.2264.0).
Error: (08/04/2023 07:07:04 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba Antivirová ochrana v programu Microsoft Defender bola ukončená s nasledujúcou chybou:
General access denied error
Error: (08/04/2023 04:32:34 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x8024200b: Aktualizácia analytických nástrojov zabezpečenia pre Microsoft Defender Antivirus - KB2267602 (verzia 1.393.2264.0).
Error: (08/04/2023 04:32:26 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba Antivirová ochrana v programu Microsoft Defender bola ukončená s nasledujúcou chybou:
General access denied error
Error: (08/04/2023 12:48:29 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-J0PJPO6)
Description: Unable to start a DCOM Server: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/04/2023 12:47:25 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-J0PJPO6)
Description: Unable to start a DCOM Server: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Windows Defender:
================Event[0]:
Date: 2023-05-11 01:09:26
Description:
Antivirová ochrana v programu Microsoft Defender engine has been terminated due to an unexpected error.
Failure Type: Chyba
Exception code: 0xc0000005
Resource:
Engine Code: 0
Date: 2023-05-10 15:28:21
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.313.53.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16900.4
Error code: 0x8024001e
Error description: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
CodeIntegrity:
===============
Date: 2023-08-04 12:27:58
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2023-08-02 20:04:31
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2023-08-02 20:03:39
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2023-08-02 20:02:44
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\aswVmm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: American Megatrends Inc. FX502VE.302 04/20/2017
Motherboard: ASUSTeK COMPUTER INC. FX502VE
Processor: Intel(R) Core(TM) i7-7700HQ CPU @ 2.80GHz
Percentage of memory in use: 67%
Total physical RAM: 8076.84 MB
Available physical RAM: 2608.77 MB
Total Virtual: 13964.84 MB
Available Virtual: 5864.71 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:117.73 GB) (Free:30.55 GB) (Model: HFS128G39TND-N210A) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Lagerplads) (Fixed) (Total:928.87 GB) (Free:897.02 GB) (Model: Microsoft Storage Space Device) NTFS
\\?\Volume{b6fa713b-5c5f-4537-b4cf-1d505354f1e4}\ () (Fixed) (Total:0.46 GB) (Free:0.03 GB) NTFS
\\?\Volume{b4096786-284d-4920-bdcb-cbc4c3217fd9}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.44 GB) NTFS
\\?\Volume{159527f6-9e86-4f7f-994f-012b74f7f252}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 2.
==================== End of Addition.txt =======================
Ďakujem Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-08-2023
Ran by linco (administrator) on DESKTOP-J0PJPO6 (ASUSTeK COMPUTER INC. FX502VE) (04-08-2023 19:12:36)
Running from C:\Users\linco\OneDrive\Počítač\FRST64.exe
Loaded Profiles: defaultuser0 & linco
Platform: Microsoft Windows 10 Home Version 22H2 19045.3271 (X64) Language: Čeština (Česká republika) -> Slovenčina (Slovensko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe ->) (Avast Software s.r.o. -> Software Security System) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\Ekag20nt.exe
(C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe ->) (Avast Software s.r.o. -> The CefSharp Authors) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\CefSharp.BrowserSubprocess.exe <5>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_2bee269ff6068a49\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_2bee269ff6068a49\igfxEM.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\BreachGuard\bgui.exe <4>
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe <3>
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe <3>
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe <4>
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\78.0.1.0\crashpad_handler.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.292\GoogleCrashHandler64.exe
(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AntiTrackSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\BreachGuard\bgsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_2bee269ff6068a49\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_b56b111c605faf54\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0f12908b4ff13ff7\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_0f12908b4ff13ff7\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_7ed3bacbb0a8cc67\RstMwService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_a4e83a4bfff92e83\Display.NvContainer\NVDisplay.Container.exe <2>
(Slack Technologies, LLC -> Slack Technologies Inc.) C:\Users\linco\AppData\Local\slack\app-4.33.84\slack.exe <5>
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2329.5.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spaceman.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Avast BreachGuard] => C:\Program Files\Avast Software\BreachGuard\bgui.exe [7777688 2023-08-01] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [4543384 2023-07-22] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [4992920 2023-08-02] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [256408 2023-07-25] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\78.0.1.0\GoogleDriveFS.exe [146495256 2023-07-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\78.0.1.0\GoogleDriveFS.exe [146495256 2023-07-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1000\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\78.0.1.0\GoogleDriveFS.exe [146495256 2023-07-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\78.0.1.0\GoogleDriveFS.exe [146495256 2023-07-19] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4371816 2023-07-11] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [41572768 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\linco\AppData\Local\slack\slack.exe [310576 2023-08-02] (Slack Technologies, LLC -> Slack Technologies Inc.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\78.0.1.0\GoogleDriveFS.exe [146495256 2023-07-19] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\ssm4mPC: C:\Windows\System32\spool\prtprocs\x64\ssm4mpc.dll [61736 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\ssm4m Langmon: C:\Windows\system32\ssm4mlm.dll [40744 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\115.0.5790.111\Installer\chrmstp.exe [2023-08-02] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2023-07-26]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
Startup: C:\Users\linco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2023-05-25]
ShortcutTarget: DeepL auto-start.lnk -> C:\Users\linco\AppData\Roaming\0install.net\desktop-integration\stubs\1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d\auto-start.exe () [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {9AC3B822-A126-4F56-8768-F12E5685B199} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-13] (Adobe Inc. -> Adobe)
Task: {188876BF-EDEE-4E8A-9387-CE265DA9046E} - System32\Tasks\ASUS Battery Health Charging Notification => C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe [2478776 2016-11-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {4FE10946-A7FF-4118-B9A9-310A4EB98032} - System32\Tasks\ASUS HotfixChecker => C:\Program Files (x86)\ASUS\HotfixChecker\HotfixChecker.exe [153808 2021-09-29] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {AEB63488-B184-44F6-9A95-2FD682825BE1} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19967504 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {95B6C707-EEC3-4992-9DAE-1C9189872243} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122552 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {CC41892C-860D-4898-A9DB-8C98DC996881} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122552 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {19ED9964-838E-4084-80CB-4D131EE83709} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4944792 2023-07-25] (Avast Software s.r.o. -> AVAST Software)
Task: {782667B0-E94B-4FFB-A873-46BBFCAC7D81} - System32\Tasks\Avast SecureLine VPN Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [1294232 2023-07-26] (Avast Software s.r.o. -> AVAST Software)
Task: {DA42EC08-1EF7-4A7A-975E-3918EC39090C} - System32\Tasks\Avast Software\Avast BreachGuard Crash Reporter => C:\Program Files\Avast Software\BreachGuard\AvBugReport.exe [4758424 2023-08-01] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 135 --path "C:\ProgramData\Avast Software\BreachGuard\log" --logpath "C:\ProgramData\Avast Software\BreachGuard\log" --configpath "C:\Program Files\Avast Software\BreachGuard\Setup" --programpath "C:\Program Files\Avast Software\BreachGuard" --guid b0276285-2 (the data entry has 26 more characters).
Task: {3279FF1E-3530-46A0-AA60-4FE931007910} - System32\Tasks\Avast Software\Avast BreachGuard Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-bg\icarus.exe [7212952 2023-07-31] (Avast Software s.r.o. -> Avast Software)
Task: {2DED5E38-118B-4F10-BB9D-15D85559DB71} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [4758936 2023-07-22] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "C:\Program Files\Avast Software\Cleanup\Setup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\A (the data entry has 70 more characters).
Task: {C7752F36-C2C8-4D38-B9CF-C184D0E86668} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [7212952 2023-07-18] (Avast Software s.r.o. -> Avast Software)
Task: {9582A0ED-6EAD-4A8B-89A2-09B7740F11CD} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [4758936 2023-08-02] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --log (the data entry has 99 more characters).
Task: {B54C976B-3EE4-45CD-9279-96D6377A49BE} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [7212952 2023-08-02] (Avast Software s.r.o. -> Avast Software)
Task: {401A042E-34A0-42CA-A5FD-7E1CCBA2FF66} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [4759448 2023-07-26] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {DDDC9EDA-60FC-4017-90A5-5D07BA46BE2D} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [7092120 2023-07-18] (Avast Software s.r.o. -> Avast Software)
Task: {A42697B3-40AC-40C4-BE37-9003ACF46DF9} - System32\Tasks\Avast Software\AvastAntiTrackPremiumStart => C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AvastAntiTrackPremium.exe [813008 2023-05-11] (Avast Software s.r.o. -> AVAST Software)
Task: {C1CF8F2B-3B56-44B3-B8F7-870ECB0813EA} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software)
Task: {C804D29A-72E2-4EBA-BFC2-D8BF8FEAFDB0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {50E6A135-E750-4EFB-8403-C352454921AA} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "a3264604-1b06-42cf-a539-7219549c5ae9" --version "6.14.10584" --silent
Task: {523B0D20-DE49-4BF3-A2D3-9970D09ADCB4} - System32\Tasks\CCleanerSkipUAC - linco => C:\Program Files\CCleaner\CCleaner.exe [34677664 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {0D4FFF2D-9A82-4983-9D66-82F740EA0894} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\linco\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007456 2021-05-13] (ESET, spol. s r.o. -> ESET)
Task: {6A1DF42B-4775-4EE1-A55F-94814F1C2EF9} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\linco\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007456 2021-05-13] (ESET, spol. s r.o. -> ESET)
Task: {BF866BC6-24CB-472F-AF9A-433609A0BBDD} - System32\Tasks\GoogleUpdateTaskMachineCore{071AD593-33C4-406F-8DFF-4096EA3AC3BC} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-31] (Google LLC -> Google LLC)
Task: {0FE0C442-C3DB-447F-9599-27E81D7E11D3} - System32\Tasks\GoogleUpdateTaskMachineUA{121C0600-F6C4-488C-9739-1112C847895F} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-31] (Google LLC -> Google LLC)
Task: {9DE4561B-12A2-4861-B70D-80355F153286} - System32\Tasks\IcarusAvastVpnUpgrade => C:\Program Files\AVAST Software\SecureLine\setup\avast_vpn_online_setup.exe -> /silent /ShowVpnGui=0 /RestartUpdaterTaskName=IcarusAvastVpnUpgrade /RestartUpdaterAppExe="C:\Program Files\AVAST Software\SecureLine\setup\avast_vpn_online_setup.exe"
Task: {38D14A50-F3B3-40AC-8A3E-B9FAFF8557F6} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002480 2023-02-21] (Intel Corporation -> Intel Corporation)
Task: {4EDDE650-AB4B-4675-81CB-D15B23A9D914} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [5002480 2023-02-21] (Intel Corporation -> Intel Corporation)
Task: {8A084819-B742-4822-907C-3C5AC74C189E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {8FD46559-9889-42C0-AC8A-758A322F650D} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-2298117505-976418258-3832342613-1001 => C:\Users\linco\AppData\Local\Programs\Messenger\MessengerHelper.exe --lassie (No File)
Task: {A2A1F382-568E-48B3-A74E-88E2C67154C0} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(1): %windir%\system32\compattelrunner.exe -> -m:aeinv.dll -f:UpdateSoftwareInventoryW invsvc
Task: {A2A1F382-568E-48B3-A74E-88E2C67154C0} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(2): %windir%\system32\compattelrunner.exe -> -m:appraiser.dll -f:DoScheduledTelemetryRun
Task: {A2A1F382-568E-48B3-A74E-88E2C67154C0} - System32\Tasks\Microsoft\Windows\Application Experience\MareBackup => Command(3): %windir%\system32\compattelrunner.exe -> -m:aemarebackup.dll -f:BackupMareData
Task: {02253619-98FF-4241-937D-9DFD172FB739} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B7FC27D6-78A5-48EE-8F6C-3F47033397DD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B8146115-84C9-4DA8-A417-B9910D5E44F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5D312B20-D74C-4942-A886-9BDD252048F5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BBEA69AE-FCF9-483F-B095-6051A4364299} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [733088 2023-08-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {024C885E-79B2-4C3F-84F4-3289524ED59F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-15] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {F04ED9B6-D40D-4C93-A074-C1825A7AED64} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-01-27] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FDA1742F-A359-4621-BA40-D9C01691CA4A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B2FF2D3E-8D7E-453C-8F64-DAE08994D1D5} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {93108BA7-FFFD-4224-AC26-1E7A6B082700} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {96B69981-8597-4CEB-B58B-EA3BBB231561} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {93EF2981-27FE-4BC0-803C-8232088B574C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {52ACB30C-421F-48CB-87A3-3385F2B161C8} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {27BD42CB-7889-4340-AB5B-C4A058001F65} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-01-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {42D5785A-35ED-43AA-AFA0-D6A8E6793A5A} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617856 2021-09-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {36535DC6-14B1-42EB-A962-BD22196A1949} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617856 2021-09-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {669BA5FE-B7DF-4A9D-AF12-4A8603F3A1D5} - System32\Tasks\UMonitor Task => C:\WINDOWS\SysWOW64\UMonit64.exe [61752 2016-08-19] (GENESYS LOGIC, INC. -> )
Task: {BA5F0E74-46B4-4CC7-86E7-64EE18F46184} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\WINDOWS\System32\Wscript.exe [170496 2021-09-17] (Microsoft Windows -> Microsoft Corporation) -> //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\WpsExternal_20161114022915.job => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 193.162.153.164 194.239.134.83
Tcpip\..\Interfaces\{cb788683-62bb-49bd-a2bd-8c95f035c6d8}: [DhcpNameServer] 193.162.153.164 194.239.134.83
Tcpip\..\Interfaces\{ce166e0c-1abd-4573-a63b-a0ac72c5ca8a}: [DhcpNameServer] 10.66.0.1
FireFox:
========
FF DefaultProfile: zlodulmp.default-1666245238037
FF ProfilePath: C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037 [2023-08-04]
FF Session Restore: Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037 -> is enabled.
FF Extension: (Facebook Container) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\@contain-facebook.xpi [2023-07-21]
FF Extension: (AdBlocker Ultimate) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\adblockultimate@adblockultimate.net.xpi [2023-05-25]
FF Extension: (Easy Screenshot) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\easyscreenshot@mozillaonline.com.xpi [2023-04-22]
FF Extension: (Avast Passwords) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2023-05-19] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Language: Slovenčina (Slovak)) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\langpack-sk@firefox.mozilla.org.xpi [2023-08-03]
FF Extension: (Avast SecureLine VPN) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\secureline-vpn@avast.com.xpi [2023-04-22]
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\sp@avast.com.xpi [2023-07-04]
FF Extension: (Avast Online Security & Privacy) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\wrc@avast.com.xpi [2023-05-11]
FF Extension: (Image Search Options) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\{4a313247-8330-4a81-948e-b79936516f78}.xpi [2023-04-22]
FF Extension: (Plná Peňaženka Líštička Lite) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\{5f383f45-0de3-43b3-838c-ea98916167e3}.xpi [2022-11-17]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2023-05-09]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-06-25]
FF Extension: (To DeepL) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\zlodulmp.default-1666245238037\Extensions\{db420ff1-427a-4cda-b5e7-7d395b9f16e1}.xpi [2023-06-02]
FF HKLM\...\Firefox\Extensions: [sparalarm@chip.de] - C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi
FF Extension: (CHIP Sparalarm) - C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi [2019-09-11]
FF HKLM-x32\...\Firefox\Extensions: [sparalarm@chip.de] - C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-13] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-13] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-06-02] (FOXIT SOFTWARE INC. -> Foxit Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\linco\AppData\Local\Google\Chrome\User Data\Default [2023-07-30]
CHR HomePage: Default -> hxxp://www.google.com
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\linco\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2023-05-15]
CHR Extension: (Google Docs Offline) - C:\Users\linco\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-07-20]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\linco\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2023-05-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\linco\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-11]
CHR Extension: (Avast AntiTrack Premium) - C:\Users\linco\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdidpcihajhihmghhhkfnpklgdehold [2023-05-25]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-13] (Adobe Inc. -> Adobe)
S4 AsBhcService; C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe [114360 2016-10-20] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8901016 2023-07-25] (Avast Software s.r.o. -> AVAST Software)
R2 Avast BreachGuard Service; C:\Program Files\Avast Software\BreachGuard\bgsvc.exe [8098712 2023-08-01] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [586136 2023-07-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2102168 2023-07-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [587160 2023-07-25] (Avast Software s.r.o. -> AVAST Software)
R2 AvastAntiTrackSvc; C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AntiTrackSvc.exe [5779160 2023-05-11] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-05-17] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-07-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [17765272 2023-07-22] (Avast Software s.r.o. -> AVAST Software)
R2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [9697688 2023-08-02] (Avast Software s.r.o. -> AVAST Software)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [43272 2023-07-03] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [212744 2023-07-03] (Intel Corporation -> Intel)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-11-22] (EasyAntiCheat Oy -> Epic Games, Inc)
R4 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2358800 2022-05-19] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-11-19] (Huawei Technologies Co., Ltd. -> ) [File not signed]
S4 Mobile Broadband HL Service; C:\Program Files (x86)\MobileBrServ\mbbservice.exe [242264 2016-03-24] (Huawei Technologies Co.,Ltd. -> )
S4 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> )
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [10781080 2023-07-26] (Avast Software s.r.o. -> AVAST Software)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [17845048 2023-07-19] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2304.8-0\NisSrv.exe [3216064 2023-05-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2304.8-0\MsMpEng.exe [133544 2023-05-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_a4e83a4bfff92e83\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_a4e83a4bfff92e83\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [29312 2016-11-14] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 AsusHFilter; C:\WINDOWS\System32\drivers\AsusHFilter.sys [30200 2016-12-22] (ASUSTeK Computer Inc. -> )
R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_314b5cb6bf57f471\AsusPTPFilter.sys [116712 2021-12-02] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237984 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [392880 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297880 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95960 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2023-05-17] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39600 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [272568 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [559136 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105240 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80416 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [946048 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [705376 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212632 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319512 2023-07-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [76568 2023-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [51112 2023-03-25] (Avast Software s.r.o. -> AVAST Software)
S3 aswWireGuard; C:\WINDOWS\System32\drivers\aswWireguard.sys [184544 2023-03-25] (Avast Software s.r.o. -> Avast Software)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [147808 2023-04-12] (GENESYS LOGIC, INC. -> Genesys Logic)
R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R3 iaLPSS2_I2C; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_skl.inf_amd64_363c7132639e12a6\iaLPSS2_I2C_ICL.sys [200456 2020-04-28] (Intel Corporation -> Intel Corporation)
S3 MpKsl281a76c5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1A70285A-755D-4EAC-8FD2-16BB7AA0B79A}\MpKslDrv.sys [212264 2023-05-11] (Microsoft Windows -> Microsoft Corporation)
R1 netfilter2; C:\WINDOWS\System32\drivers\netfilter2.sys [124952 2023-05-11] (Avast Software s.r.o. -> Windows (R) Win 7 DDK provider)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [14224 2021-04-02] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2023-05-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-05-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-05-11] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29592 2022-03-13] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 cpuz148; \??\C:\WINDOWS\temp\cpuz148\cpuz148_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-02 22:45 - 2023-08-02 22:45 - 000000000 ____D C:\Users\linco\AppData\Local\DeepL_SE
2023-07-31 21:06 - 2023-07-31 21:06 - 000652912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-07-26 14:31 - 2023-07-26 14:31 - 000000000 ___HD C:\$WinREAgent
2023-07-25 20:10 - 2023-07-25 20:10 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-07-19 17:49 - 2023-07-14 09:13 - 000848952 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-07-19 17:49 - 2023-07-14 09:13 - 000848952 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-07-19 17:49 - 2023-07-14 09:13 - 000713776 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-07-19 17:49 - 2023-07-14 09:13 - 000713776 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-07-19 17:49 - 2023-07-14 09:12 - 001487912 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-07-19 17:49 - 2023-07-14 09:12 - 001226776 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-07-19 17:49 - 2023-07-14 09:12 - 000653408 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-07-19 17:49 - 2023-07-14 09:12 - 000653408 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-07-19 17:49 - 2023-07-14 09:12 - 000637024 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-07-19 17:49 - 2023-07-14 09:12 - 000637024 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-07-19 17:48 - 2023-07-14 09:08 - 000933912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-07-19 17:48 - 2023-07-14 09:08 - 000669184 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-07-19 17:48 - 2023-07-14 09:08 - 000503832 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-07-19 17:48 - 2023-07-14 09:07 - 002167792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-07-19 17:48 - 2023-07-14 09:07 - 001622016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-07-19 17:48 - 2023-07-14 09:07 - 001538088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-07-19 17:48 - 2023-07-14 09:07 - 001194992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-07-19 17:48 - 2023-07-14 09:07 - 000992240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-07-19 17:48 - 2023-07-14 09:07 - 000776688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-07-19 17:48 - 2023-07-14 09:07 - 000769024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-07-19 17:48 - 2023-07-14 09:06 - 012066328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-07-19 17:48 - 2023-07-14 09:06 - 000459288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-07-19 17:48 - 2023-07-14 09:05 - 014520832 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-07-19 17:48 - 2023-07-14 09:05 - 006190632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-07-19 17:48 - 2023-07-14 09:05 - 005844976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-07-19 17:48 - 2023-07-14 09:05 - 005550632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-07-19 17:48 - 2023-07-14 09:05 - 003482648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-07-19 17:48 - 2023-07-14 09:05 - 000852976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-07-19 17:48 - 2023-07-14 09:03 - 006738032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-07-19 17:47 - 2023-07-13 06:45 - 000108142 _____ C:\WINDOWS\system32\nvinfo.pb
2023-07-12 13:24 - 2023-07-12 13:24 - 000000000 ____H C:\Users\linco\OneDrive\Dokumenty\Default.rdp
2023-07-06 17:28 - 2023-07-06 17:28 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.5
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-08-04 19:13 - 2020-08-22 14:05 - 000000000 ____D C:\FRST
2023-08-04 19:09 - 2022-02-08 18:18 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-08-04 19:09 - 2018-09-15 21:01 - 000000000 ____D C:\Users\linco\AppData\Local\AVAST Software
2023-08-04 19:06 - 2023-04-27 22:35 - 000000000 ____D C:\Program Files\CCleaner
2023-08-04 19:01 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-08-04 18:55 - 2021-02-08 21:53 - 000000445 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2023-08-04 18:55 - 2020-06-20 23:01 - 002229564 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-08-04 18:55 - 2020-06-20 21:24 - 000460920 _____ C:\WINDOWS\system32\perfh006.dat
2023-08-04 18:55 - 2020-06-20 21:24 - 000081102 _____ C:\WINDOWS\system32\perfc006.dat
2023-08-04 18:55 - 2019-12-07 16:41 - 000709160 _____ C:\WINDOWS\system32\perfh005.dat
2023-08-04 18:55 - 2019-12-07 16:41 - 000145492 _____ C:\WINDOWS\system32\perfc005.dat
2023-08-04 18:55 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-08-04 18:40 - 2020-06-20 22:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-08-04 18:21 - 2021-12-16 20:58 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-08-04 18:21 - 2020-07-31 23:19 - 000000000 ____D C:\Program Files (x86)\Google
2023-08-04 18:16 - 2020-12-23 11:05 - 000000000 ____D C:\Users\linco\AppData\Roaming\Slack
2023-08-04 18:13 - 2023-04-27 22:35 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - linco
2023-08-04 18:13 - 2023-04-12 18:39 - 000003470 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{121C0600-F6C4-488C-9739-1112C847895F}
2023-08-04 18:13 - 2023-04-12 18:39 - 000003246 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{071AD593-33C4-406F-8DFF-4096EA3AC3BC}
2023-08-04 18:12 - 2023-05-11 07:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-08-04 17:57 - 2020-04-13 20:56 - 000000000 ____D C:\Users\linco\AppData\Roaming\Microsoft\Skype for Desktop
2023-08-04 12:57 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-08-04 12:28 - 2023-05-11 07:42 - 000000000 ____D C:\Users\linco\AppData\Local\AvastAntiTrackPremium
2023-08-04 12:27 - 2018-09-15 20:55 - 000000000 __SHD C:\Users\linco\IntelGraphicsProfiles
2023-08-04 12:27 - 2017-07-04 20:03 - 000000000 ____D C:\ProgramData\NVIDIA
2023-08-02 20:05 - 2023-05-11 08:26 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-08-02 20:02 - 2023-05-11 07:40 - 000004028 _____ C:\WINDOWS\system32\Tasks\Avast SecureLine VPN Update
2023-08-02 20:02 - 2023-04-26 08:02 - 000008192 ___SH C:\DumpStack.log.tmp
2023-08-02 20:02 - 2020-06-20 23:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-08-02 20:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-08-02 20:02 - 2018-09-15 20:59 - 000000000 ____D C:\ProgramData\AVAST Software
2023-08-02 20:02 - 2017-07-04 19:59 - 000000000 ___HD C:\Intel
2023-08-02 18:33 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-08-02 17:43 - 2023-05-21 20:01 - 000000000 ____D C:\Users\linco\AppData\Local\slack
2023-08-02 17:43 - 2023-04-17 08:24 - 000000000 ____D C:\Users\linco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies Inc
2023-08-02 13:32 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-08-01 18:22 - 2023-05-24 22:11 - 000000000 ____D C:\Users\linco\AppData\Roaming\DeepL_SE
2023-08-01 17:39 - 2018-09-15 21:01 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-08-01 08:34 - 2018-09-20 10:59 - 000000000 ____D C:\Users\linco\AppData\Local\D3DSCache
2023-07-31 21:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-07-31 14:38 - 2020-06-20 21:45 - 000000000 ____D C:\Users\linco
2023-07-30 21:42 - 2016-11-14 04:29 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2023-07-30 21:38 - 2022-12-06 21:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2023-07-29 01:18 - 2022-08-25 08:28 - 000000000 ____D C:\WINDOWS\Minidump
2023-07-27 19:11 - 2018-12-25 22:42 - 000918960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2023-07-26 20:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-07-26 20:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-07-26 20:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-07-26 20:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-07-26 20:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-07-26 20:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-07-26 20:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\appcompat
2023-07-26 14:43 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-07-26 14:40 - 2020-06-20 22:57 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-07-25 20:11 - 2020-06-20 21:45 - 000000000 ____D C:\Users\defaultuser0
2023-07-25 20:10 - 2023-05-17 21:29 - 000946048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000705376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000559136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000392880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000319512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000297880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000272568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000237984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000105240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000095960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000080416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000039600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-07-25 20:10 - 2023-05-17 21:29 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-07-25 20:10 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-07-22 21:27 - 2023-04-27 22:35 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-07-22 21:25 - 2023-04-27 22:35 - 000003106 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-07-22 21:25 - 2023-04-27 22:35 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-07-22 21:25 - 2023-04-12 18:39 - 000002738 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2023-07-22 21:25 - 2023-01-11 11:33 - 000003102 _____ C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2023-07-22 21:25 - 2020-06-20 23:03 - 000003458 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-22 21:25 - 2020-06-20 23:03 - 000002974 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-22 09:50 - 2020-09-16 11:53 - 000000000 ____D C:\Users\linco\AppData\Roaming\Microsoft\Teams
2023-07-22 09:50 - 2018-12-05 20:57 - 000000000 ____D C:\Users\linco\AppData\Local\SquirrelTemp
2023-07-22 09:50 - 2018-10-16 19:01 - 000000000 ____D C:\Program Files\Defraggler
2023-07-21 18:55 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-07-21 16:21 - 2020-06-20 23:03 - 000003212 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-21 16:21 - 2020-06-20 23:03 - 000002406 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_ListenToDevice
2023-07-21 16:21 - 2020-06-20 23:03 - 000002362 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2023-07-21 16:16 - 2022-08-21 23:08 - 000003030 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2023-07-21 16:16 - 2022-08-21 23:08 - 000002664 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2023-07-21 16:16 - 2020-06-20 23:03 - 000003044 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-21 16:16 - 2020-06-20 23:03 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-21 16:16 - 2020-06-20 23:03 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-21 16:16 - 2020-06-20 23:03 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-21 16:16 - 2020-06-20 23:03 - 000003008 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-21 16:16 - 2020-06-20 23:03 - 000002804 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-07-19 18:00 - 2018-09-15 20:59 - 000000000 ____D C:\Users\linco\AppData\Local\NVIDIA
2023-07-19 15:29 - 2021-09-21 18:09 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-07-15 22:27 - 2017-07-04 20:07 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2023-07-14 09:03 - 2020-05-31 19:17 - 007858064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-07-12 13:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-07-12 13:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-07-12 13:15 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-07-12 12:57 - 2018-09-16 14:50 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-07-12 12:52 - 2018-09-16 14:50 - 173351160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-07-12 12:37 - 2018-09-20 18:10 - 000000000 ____D C:\Users\linco\AppData\Local\CrashDumps
2023-07-10 20:48 - 2022-11-20 18:50 - 000000000 ____D C:\Users\linco\AppData\Local\T2GP Launcher
2023-07-06 22:31 - 2023-05-12 08:20 - 000001472 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
2023-07-06 22:31 - 2017-07-04 19:59 - 000000000 ____D C:\ProgramData\Package Cache
2023-07-05 04:37 - 2023-02-17 10:51 - 000000000 ____D C:\Users\linco\AppData\Roaming\Zoom
==================== Files in the root of some directories ========
2020-11-13 15:22 - 2020-11-13 15:22 - 000000046 _____ () C:\Users\linco\AppData\Roaming\Camdata.ini
2020-11-13 15:22 - 2020-11-13 15:22 - 000000408 _____ () C:\Users\linco\AppData\Roaming\CamLayout.ini
2020-11-13 15:22 - 2020-11-13 15:22 - 000000408 _____ () C:\Users\linco\AppData\Roaming\CamShapes.ini
2020-11-13 15:22 - 2020-11-13 15:22 - 000004536 _____ () C:\Users\linco\AppData\Roaming\CamStudio.cfg
2018-09-15 20:58 - 2019-07-07 11:46 - 000000200 _____ () C:\Users\linco\AppData\Roaming\sp_data.sys
2020-11-13 15:20 - 2020-11-13 15:20 - 000000096 _____ () C:\Users\linco\AppData\Roaming\version2.xml
2020-12-01 11:07 - 2020-12-01 11:07 - 000415507 _____ () C:\Users\linco\AppData\Local\ars.cache
2020-12-01 11:08 - 2020-12-01 11:08 - 001139162 _____ () C:\Users\linco\AppData\Local\census.cache
2020-12-01 10:38 - 2020-12-01 10:38 - 000000036 _____ () C:\Users\linco\AppData\Local\housecall.guid.cache
2020-12-01 10:42 - 2020-12-01 10:42 - 000000010 _____ () C:\Users\linco\AppData\Local\sponge.last.runtime.cache
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-08-2023
Ran by linco (04-08-2023 19:15:36)
Running from C:\Users\linco\OneDrive\Počítač
Microsoft Windows 10 Home Version 22H2 19045.3271 (X64) (2020-06-20 21:03:20)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2298117505-976418258-3832342613-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2298117505-976418258-3832342613-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2298117505-976418258-3832342613-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-2298117505-976418258-3832342613-501 - Limited - Disabled)
linco (S-1-5-21-2298117505-976418258-3832342613-1001 - Administrator - Enabled) => C:\Users\linco
WDAGUtilityAccount (S-1-5-21-2298117505-976418258-3832342613-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Any Video Converter 7.1.7 (HKLM-x32\...\Any Video Converter) (Version: 7.1.7 - Anvsoft)
ASUS Battery Health Charging (HKLM-x32\...\{3A7E73B6-3A04-49ED-811E-CC39F7EA2E34}) (Version: 1.0.0002 - ASUS)
ASUS Input Configuration (HKLM-x32\...\{7DDF7571-64BD-4232-9729-20FF10CE6C62}) (Version: 1.0.3 - ASUS)
ASUS PTP Driver (HKLM-x32\...\{7618E419-9124-4E6C-9AF4-487A6DDEC1C5}) (Version: 11.0.16 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.2.0 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0051 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.3.32 - ICEpower a/s)
Avast AntiTrack Premium (HKLM-x32\...\AvastAntiTrackPremium) (Version: 3.3.983.1074 - Avast Software)
Avast BreachGuard (HKLM\...\AvastBreachGuard) (Version: 23.3.2118.7768 - Avast Software)
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 23.2.13795.13400 - Avast Software)
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 23.2.3825.14816 - Avast Software)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 23.7.6074 - Avast Software)
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 5.26.8502.8974 - Avast Software)
Backup and Sync from Google (HKLM\...\{696895F7-52C7-4C9E-998B-C7E0CC907092}) (Version: 3.57.4256.0809 - Google, Inc.)
Blackmagic RAW Common Components (HKLM\...\{94C42023-ECF5-46E6-ACB4-2AED536B205D}) (Version: 2.2 - Blackmagic Design)
CamStudio 2.7.4 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.4 - CamStudio Open Source)
CCleaner (HKLM\...\CCleaner) (Version: 6.14 - Piriform)
CyberLink PhotoDirector 5 (HKLM\...\{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6515 - CyberLink Corp.) Hidden
CyberLink PhotoDirector 5 (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6515 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4010.0 - CyberLink Corp.) Hidden
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4010.0 - CyberLink Corp.)
DeepL (HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\https%3a##appdownload.deepl.com#windows#0install#deepl.xml) (Version: - DeepL SE)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Documentation Manager (HKLM\...\{30EDBBE7-D455-4B19-B6EC-EF0F4934ABFE}) (Version: 22.180.0.4 - Intel Corporation) Hidden
Fairlight Audio Accelerator Utility (HKLM\...\FairlightAudioAccelerator_is1) (Version: 1.0.13 - Blackmagic Design)
FormatFactory 4.4.1.0 (HKLM-x32\...\FormatFactory) (Version: 4.4.1.0 - Free Time)
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 12.1.2.15332 - Foxit Software Inc.)
Genesys USB Mass Storage Device (HKLM-x32\...\{CA7CA513-2531-4801-83C6-CF8FB6C8711A}) (Version: 4.5.1.1.1001 - Genesys Logic)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 78.0.1.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 115.0.5790.111 - Google LLC)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.0.2.301 - )
Intel Driver && Support Assistant (HKLM-x32\...\{0F7F6F7B-684E-435A-9FCE-C8A1F71EDA14}) (Version: 23.3.25.6 - Intel) Hidden
Intel Security Software Manager (HKLM\...\Intel Security Software Manager) (Version: 1.1.107.0 - Intel Security)
Intel(R) Computing Improvement Program (HKLM\...\{318C30A1-C7AF-414E-890F-6345E6E0FD33}) (Version: 2.4.09084 - Intel Corporation)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.2.11002.3418 - Intel Corporation)
Intel(R) Graphics Driver Software (HKLM-x32\...\{0a00b776-067b-45c6-996b-8a3360ee56a4}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{1fe0084f-3e2b-4ba9-a4a6-c33f56e7f886}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{56b89a97-2659-4931-bffa-4b136a521eb1}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{d8ebe554-4504-4ade-ada9-8617c4525581}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Chipset Device Software (HKLM\...\{81520FC5-3518-40E9-9803-70CE8A801D07}) (Version: 10.1.1.38 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{177F3AF8-1D9D-4C47-AB82-69571F4630DE}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1035 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{DEDA24FF-BA95-42E7-B914-639D32515511}) (Version: 11.6.0.1035 - Intel Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.7325 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.5.1035 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{45F38D16-2016-4BF1-B7FD-011A2B7570F4}) (Version: 15.2.5.1035 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1643.1 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{AEDB97C8-18E1-4053-B7DD-B66E9531B207}) (Version: 30.100.1643.01 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000200-0220-1033-84C8-B8D95FA3C8C3}) (Version: 22.200.0.2 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{0ddcdf18-17cd-44ad-af4e-ba6821421c30}) (Version: 23.3.25.6 - Intel)
Intel® PROSet/Wireless Software (HKLM-x32\...\{5853172b-5520-4089-9ef4-e26c594382b3}) (Version: 19.30.0 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{224CC1EA-2433-4106-81BA-5D5432B11744}) (Version: 19.30.0.0905 - Intel Corporation) Hidden
Intel® Software Installer (HKLM-x32\...\{5815d801-d03c-4911-a46b-75a331ad7265}) (Version: 22.180.0.4 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (HKLM\...\{75FE588B-F158-4BB3-A283-A8D18E522A52}) (Version: 1.43.301.1 - Intel Corporation) Hidden
IrfanView 4.62 (64-bit) (HKLM\...\IrfanView64) (Version: 4.62 - Irfan Skiljan)
kdenlive (HKLM-x32\...\kdenlive) (Version: 21.12.2 - KDE e.V.)
LibreOffice 7.5.4.2 (HKLM\...\{B8BF99B6-750E-45C5-A07D-AF394E5B6139}) (Version: 7.5.4.2 - The Document Foundation)
Microsoft .NET Core Host - 3.1.32 (x64) (HKLM\...\{8A8E3A04-83BC-4CDE-9259-893B666C1AB1}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.32 (x64) (HKLM\...\{ABC6B3C2-1A8D-4C5E-AC16-C2AE44F02743}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.32 (x64) (HKLM\...\{A741B803-3F0E-4684-81EF-FC128D15A92C}) (Version: 24.192.31915 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.32 (x64) (HKLM-x32\...\{784973c8-d618-4ac8-97ed-1fd52c5bdf2f}) (Version: 3.1.32.31915 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Teams) (Version: 1.3.00.30866 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{F72EB01C-8051-488C-AB30-848E38D3598B}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{F29F6D90-52BF-4644-9F61-82EFF42A9268}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
MiVue Manager (HKLM-x32\...\{123BDDDC-D02F-4C6E-A011-9CB265E2483E}) (Version: 1.0.33.32 - Mio Technology Corporation)
Mobile Broadband HL Service (HKLM-x32\...\Mobile Broadband HL Service) (Version: 22.001.29.00.03 - Huawei Technologies Co.,Ltd)
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 116.0 (x64 en-US)) (Version: 116.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 62.0 - Mozilla)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.112 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.112 - NVIDIA Corporation)
NVIDIA Grafický ovládač 536.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 536.67 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 230707 - Kakao Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9235.1 - Realtek Semiconductor Corp.)
Samsung M2070 Series (HKLM-x32\...\Samsung M2070 Series) (Version: 1.29 (28. 3. 2022) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Skype verzia 8.100 (HKLM-x32\...\Skype_is1) (Version: 8.100 - Skype Technologies S.A.)
Slack (HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\slack) (Version: 4.33.84 - Slack Technologies Inc.)
sparalarm (HKLM-x32\...\{8571D985-3EF7-4188-BB5A-9FA20ED130B7}) (Version: 1.0.0.0 - Sparalarm)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.44.4 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-4) (Version: 1.0.33.0 - LunarG, Inc.)
Windows Deployment Tools (HKLM-x32\...\{C4443D4E-AC00-CF0E-9519-C9111E83ADBB}) (Version: 10.1.17134.1 - Microsoft)
Windows Driver Package - ASUS (AsusHFilter) HIDClass (12/19/2016 1.0.0.2) (HKLM\...\EEDD19DDF3F0CA7CFA2F4C500D442DD1FEB434F6) (Version: 12/19/2016 1.0.0.2 - ASUS)
Windows Driver Package - ASUS (AsusPTPDrv) HIDClass (09/23/2016 11.0.0.14) (HKLM\...\F95583A62AB902A3FC263F668380483F9E0113CD) (Version: 09/23/2016 11.0.0.14 - ASUS)
Windows Kontrola stavu počítača (HKLM\...\{8D6B9DC1-A437-41E0-8DF1-9F37748394AE}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Windows Kontrola stavu počítača (HKLM\...\{995C446A-850D-44EA-BB71-156C271D9428}) (Version: 3.7.2204.15001 - Microsoft Corporation)
Windows Kontrola stavu počítača (HKLM\...\{B3A734C8-5FD7-40BD-B967-066E29E58EE1}) (Version: 3.3.2110.22002 - Microsoft Corporation)
Windows PE x86 x64 (HKLM-x32\...\{346FC109-E9A8-2224-5726-843C7283E4F7}) (Version: 10.1.17134.1 - Microsoft)
Windows PE x86 x64 wims (HKLM-x32\...\{64FF0563-D6F1-C8E4-56F8-F678D1158C58}) (Version: 10.1.17134.1 - Microsoft)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.2.2 - ASUSTeK COMPUTER INC.)
WinRAR 6.22 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.22.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\ZoomUMX) (Version: 5.15.2 (18096) - Zoom Video Communications, Inc.)
Packages:
=========
All Radio Stations Denmark -> C:\Program Files\WindowsApps\63751xp8bfpy6bx.AllRadioStationsDenmark_1.1.2.0_x64__9p9cnm0bvbk3j [2023-03-06] (xp8bfpy6bx) [MS Ad]
ASUS ZenLink -> C:\Program Files\WindowsApps\B9ECED6F.ZenSync_1.0.7.0_x86__qmba6cd70vzyy [2023-03-06] (ASUSTeK COMPUTER INC.) [MS Ad]
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-08] (Autodesk Inc.)
Bandicut Video Cutter -> C:\Program Files\WindowsApps\BandicamCompany.BandicutVideoCutterFree_3.15.1509.0_x64__4q7dvte5y4xn4 [2020-11-13] (Bandicam Company)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-06-15] (Microsoft Corporation)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-12] (Microsoft Corporation)
eManual -> C:\Program Files\WindowsApps\B9ECED6F.eManual_2.0.3.0_x86__qmba6cd70vzyy [2018-09-15] (ASUSTeK COMPUTER INC.)
freda epub ebook reader -> C:\Program Files\WindowsApps\5957Turnipsoft.freda_4.40.8.0_x64__ypmq2qh89vmny [2023-04-01] (Turnipsoft)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
MyASUS-Service Center -> C:\Program Files\WindowsApps\B9ECED6F.MyASUS_3.3.11.0_x86__qmba6cd70vzyy [2018-09-15] (ASUSTeK COMPUTER INC.) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-07-19] (NVIDIA Corp.)
Ovládacie centrum pre grafiku Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt [2023-07-03] (INTEL CORP) [Startup Task]
radia.sk -> C:\Program Files\WindowsApps\Apptives.radia.sk_1.0.0.33_x64__n63xbxfgjvywe [2023-02-20] (Apptives)
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2018-09-20] (Samsung Electronics Co. Ltd.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-03-20] (Microsoft Studios) [MS Ad]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2329.5.0_x64__cv1g1gvanyjgm [2023-08-02] (WhatsApp Inc.) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2298117505-976418258-3832342613-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\linco\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20275.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2298117505-976418258-3832342613-1001_Classes\CLSID\{b72e6f5e-f6e0-a9eb-461b-6118363bd15c}\localserver32 -> C:\Users\linco\AppData\Local\0install.net\implementations\sha256new_55Y6FHEK7QNKN55ESNMK4VBVZIQYNK4LKTQIF2SCK2UYOCE7A2AQ\DeepL.exe (DeepL SE -> DeepL SE)
CustomCLSID: HKU\S-1-5-21-2298117505-976418258-3832342613-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\linco\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-25] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\78.0.1.0\drivefsext.dll [2023-07-19] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_a4e83a4bfff92e83\nvshext.dll [2023-07-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-07-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\system32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [File not signed]
HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\system32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\system32\alf2cd.acm [38912 2003-05-21] (NCT Company) [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\AC3ACM.acm [81920 2004-02-04] (fccHandler) [File not signed]
HKLM\...\Drivers32: [msacm.lame] => C:\Windows\system32\lame.ax [245760 2005-08-01] () [File not signed]
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\system32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [File not signed]
HKLM\...\Drivers32: [vidc.mpg4] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.mp42] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\system32\xvidvfw.dll [139264 2004-07-03] () [File not signed]
HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\system32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.LAGS] => C:\Windows\system32\lagarith.dll [216064 2011-12-07] () [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2023-05-11 07:41 - 2023-05-11 07:41 - 000180224 _____ (Software Security System) [File not signed] C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\Ekc3220.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-07-16 13:47 - 2023-07-31 21:09 - 000000020 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
2021-02-08 21:53 - 2023-08-04 18:55 - 000000445 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\dotnet\
HKU\S-1-5-21-2298117505-976418258-3832342613-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
DNS Servers: 193.162.153.164 - 194.239.134.83
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "PDF24"
HKU\S-1-5-21-2298117505-976418258-3832342613-1000\...\StartupApproved\Run: => "OneDriveSetup"
HKU\S-1-5-21-2298117505-976418258-3832342613-1000\...\StartupApproved\Run: => "GoogleDriveFS"
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\StartupApproved\StartupFolder: => "DeepL auto-start.lnk"
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\StartupApproved\Run: => "GoogleDriveFS"
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\StartupApproved\Run: => "Gaijin.Net Updater"
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\StartupApproved\Run: => "com.squirrel.slack.slack"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{BD32919E-726D-4E21-A078-65E16B9A9101}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{43AE6A5F-63EE-4DA3-9439-784A4DB05534}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{5CB887D8-7A95-4578-8AFC-5E9DFF87EB48}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{9ECF2400-2897-46C8-9E42-7D418C093246}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{101C8101-91A5-4D9D-8282-F9E0898EB8D5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{BFC35833-B5B6-4F91-9320-070BB4BF0C42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{BB3BDD92-C402-43AE-9691-3CC6192EB39D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A7500D77-F651-44DC-AB54-894899AF73F6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{BC7C3394-A3A0-4A32-9A25-0BB3CD42AC81}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Wireless Connectivity Solutions -> )
FirewallRules: [{361C8061-5D7A-42BE-AD9C-850EEC74FC06}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BA592D17-9141-4AE9-89DB-3C34FD3E85CC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{B405641C-3A86-4AE0-9C3A-4420652905B3}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{26868414-D70F-44E1-A26E-06268B8F929A}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A230E057-E55F-4024-A4A2-32507359D414}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0A7D7996-646F-4CE5-B13A-47EDD6084C65}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{271886E6-F055-44CC-B6D4-D1BE6A4DC556}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B20FE557-FE95-406E-A170-19385F765467}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{62307108-F923-4800-A7F4-A425487F1703}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{BDC5F3F3-D91F-4E92-B2B0-D06B0BF51093}] => (Allow) D:\SteamLibrary\steamapps\common\Sid Meier's Civilization VI\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{B412A4D0-5E24-4660-9BA6-624960CFD348}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AA41FFBE-1692-4B94-AE9E-196F8207217D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C6D7EB89-18FB-43ED-8623-C555864B8428}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{1C4DE68E-B733-4FB4-9EE8-AAEC18634FE2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{06CE48AB-0F26-4B0A-A17D-4AE80B813AC1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{269F9C3D-38B3-4EDF-9D62-C3685896E939}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{24352F77-F81F-4BE8-9400-67BBD13D5284}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{86634922-E2C0-4740-A104-1CDC6894CC6A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{06AD2A55-4D65-4A04-8311-72D8EF35B655}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{91CADB24-0452-430D-B63E-28CECE736455}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{55B9A017-90F0-438E-BE4E-5C9B4A2BCCBD}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{317ED74F-F8A4-422C-97B5-8B8B254174A8}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{BBBE94C4-C549-44EC-8390-51321E1F987C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5B55CB73-8712-4A86-B423-5A0A40DF8F4E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9E6191F2-D792-4297-8031-554B32C8738F}] => (Allow) C:\Program Files\Avast Software\BreachGuard\bgui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5C828883-A4C6-437F-8F2F-65BEA3E8F369}] => (Allow) C:\Program Files\Avast Software\BreachGuard\bgui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2A35E4A6-0B01-4716-9912-895A442BAABA}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1501FE95-AF41-4EB1-B3D7-A80700476D07}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{42A161D0-72FB-4B39-8A8C-F6BDD31160B2}] => (Allow) C:\Users\linco\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{5DEDC385-7316-4F41-B8B5-CC7D186C7DCC}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C313AC62-FD35-4939-A835-86505C3CBD63}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9B8F798A-067E-4A8C-9511-2E7390F36A5C}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{AE030136-561E-4D7D-892F-35B32935AA9A}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1DF5CEFB-7DDA-4DA9-8189-B8E8CA0CA60C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{953CA461-4F6A-4A87-8CEA-0A88A4E15CE4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A0ED1316-C18C-48CA-BFF4-B9B820BF190E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{3E705EA0-E956-4D99-94C8-581185E563A8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B4104794-E08A-413F-B393-678E0CCC2396}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A2350028-565B-4B16-A11E-294734BD9BD4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A09A7467-F190-43A1-827B-476D24AFF4F6}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{FE9DF334-0B12-4B87-B76A-5C8FB0316185}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C605290D-C04E-49E1-BF8F-5F01523DE2EE}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (08/02/2023 01:32:07 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (08/01/2023 08:20:24 AM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/31/2023 09:07:06 PM) (Source: ESENT) (EventID: 455) (User: )
Description: taskhostw (7952,R,98) WebCacheLocal: Error -1811 (0xfffff8ed) occurred while opening logfile C:\Users\linco\AppData\Local\Microsoft\Windows\WebCache\V0100028.log.
Error: (07/31/2023 08:07:05 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/30/2023 08:20:26 AM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/28/2023 01:14:34 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (07/26/2023 09:12:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AntiTrackSvc.exe, verzia: 2.0.0.147, časová značka: 0x63465a8f
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.19041.789, časová značka: 0x82dc99a2
Kód výnimky: 0xc0000409
Odstup chyby: 0x0009eddb
Identifikácia chybujúceho procesu: 0x1824
Čas spustenia chybujúcej aplikácie: 0x01d9bff3b94a00f0
Cesta chybujúcej aplikácie: C:\Program Files (x86)\Avast Software\AvastAntiTrackPremium\AntiTrackSvc.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: 909a757c-828d-4ec2-84f6-b97ab2f2bd5c
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (07/26/2023 08:54:55 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, Probíhá vypnutí systému.
.
System errors:
=============
Error: (08/04/2023 07:07:58 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x8024200b: Aktualizácia analytických nástrojov zabezpečenia pre Microsoft Defender Antivirus - KB2267602 (verzia 1.393.2270.0).
Error: (08/04/2023 07:07:56 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba Antivirová ochrana v programu Microsoft Defender bola ukončená s nasledujúcou chybou:
General access denied error
Error: (08/04/2023 07:07:09 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x8024200b: Aktualizácia analytických nástrojov zabezpečenia pre Microsoft Defender Antivirus - KB2267602 (verzia 1.393.2264.0).
Error: (08/04/2023 07:07:04 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba Antivirová ochrana v programu Microsoft Defender bola ukončená s nasledujúcou chybou:
General access denied error
Error: (08/04/2023 04:32:34 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x8024200b: Aktualizácia analytických nástrojov zabezpečenia pre Microsoft Defender Antivirus - KB2267602 (verzia 1.393.2264.0).
Error: (08/04/2023 04:32:26 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba Antivirová ochrana v programu Microsoft Defender bola ukončená s nasledujúcou chybou:
General access denied error
Error: (08/04/2023 12:48:29 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-J0PJPO6)
Description: Unable to start a DCOM Server: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (08/04/2023 12:47:25 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-J0PJPO6)
Description: Unable to start a DCOM Server: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Windows Defender:
================Event[0]:
Date: 2023-05-11 01:09:26
Description:
Antivirová ochrana v programu Microsoft Defender engine has been terminated due to an unexpected error.
Failure Type: Chyba
Exception code: 0xc0000005
Resource:
Engine Code: 0
Date: 2023-05-10 15:28:21
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.313.53.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16900.4
Error code: 0x8024001e
Error description: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
CodeIntegrity:
===============
Date: 2023-08-04 12:27:58
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2023-08-02 20:04:31
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2023-08-02 20:03:39
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2023-08-02 20:02:44
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\aswVmm.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: American Megatrends Inc. FX502VE.302 04/20/2017
Motherboard: ASUSTeK COMPUTER INC. FX502VE
Processor: Intel(R) Core(TM) i7-7700HQ CPU @ 2.80GHz
Percentage of memory in use: 67%
Total physical RAM: 8076.84 MB
Available physical RAM: 2608.77 MB
Total Virtual: 13964.84 MB
Available Virtual: 5864.71 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:117.73 GB) (Free:30.55 GB) (Model: HFS128G39TND-N210A) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Lagerplads) (Fixed) (Total:928.87 GB) (Free:897.02 GB) (Model: Microsoft Storage Space Device) NTFS
\\?\Volume{b6fa713b-5c5f-4537-b4cf-1d505354f1e4}\ () (Fixed) (Total:0.46 GB) (Free:0.03 GB) NTFS
\\?\Volume{b4096786-284d-4920-bdcb-cbc4c3217fd9}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.44 GB) NTFS
\\?\Volume{159527f6-9e86-4f7f-994f-012b74f7f252}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 2.
==================== End of Addition.txt =======================
