Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-11-2023 02
Ran by marti (administrator) on DESKTOP-8VOP8FR (Hewlett-Packard p6521cs-m) (12-11-2023 07:33:22)
Running from C:\Portableapps\PortableApps\FRST64\FRST64.exe
Loaded Profiles: marti
Platform: Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <5>
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\KeyboardManagerEngine\PowerToys.KeyboardManagerEngine.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.AlwaysOnTop.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.Awake.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.ColorPickerUI.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.CropAndLock.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.FancyZones.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.PowerLauncher.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.PowerOCR.exe
(C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\WinUI3Apps\PowerToys.Peek.UI.exe
(C:\Users\marti\AppData\Local\PowerToys\WinUI3Apps\PowerToys.Peek.UI.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.44\msedgewebview2.exe <6>
(explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\marti\AppData\Local\FluxSoftware\Flux\flux.exe
(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD64.EXE
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <22>
(nvvsvc.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Rare Ideas, LLC -> PortableApps.com) C:\Portableapps\PortableApps\PortableApps.com\PortableAppsPlatform.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(services.exe ->) (Ashampoo GmbH & Co. KG -> ) C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 19\LiveTunerService.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572536 2022-12-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [411584 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Ashampoo WinOptimizer Live-Tuner2] => C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 19\LiveTuner2.exe [6378720 2022-01-14] (Ashampoo GmbH & Co. KG -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-10-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-10-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-10-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Run: [f.lux] => C:\Users\marti\AppData\Local\FluxSoftware\Flux\flux.exe [1527416 2023-09-22] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Run: [GoogleChromeAutoLaunch_5F88CFF07A6B0239025DD2C7ABAE8BA7] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [2680608 2023-11-07] (Google LLC -> Google LLC)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Run: [MicrosoftEdgeAutoLaunch_4A886EB596DDE810C696BFE47BAAC943] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3894824 2023-11-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {1a21ebfe-9d74-11e8-9923-806e6f6e6963} - "F:\startdvd.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {1a21ec04-9d74-11e8-9923-806e6f6e6963} - "M:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {2ebf689c-81eb-11ed-9da4-001a7dda7111} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {544205f9-c2ed-11ed-9ddc-001a7dda7111} - "M:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {b25ce089-4a56-11eb-9c1b-001a7dda7111} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {d46568e7-445d-11ea-9b19-001a7dda7111} - "L:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\83.0.2.0\GoogleDriveFS.exe [57620256 2023-10-25] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\shj2mPC: C:\Windows\System32\spool\prtprocs\x64\shj2mpc.dll [91216 2022-01-24] (联想图像(天津)科技有限公司 -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\HP BA11 Status Monitor: C:\WINDOWS\system32\hpinkstsBA11LM.dll [331664 2012-06-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\shj2m Langmon: C:\WINDOWS\system32\shj2mlm.dll [44264 2019-03-31] (联想图像(天津)科技有限公司 -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\118.0.22847.89\Installer\chrmstp.exe [2023-10-27] (AVG Technologies USA, LLC -> AVG Technologies)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\119.0.6045.124\Installer\chrmstp.exe [2023-11-10] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2023-01-16]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
Startup: C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Start.exe.lnk [2023-04-25]
ShortcutTarget: Start.exe.lnk -> C:\Portableapps\Start.exe (Rare Ideas, LLC -> PortableApps.com)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {E1FB93A9-26BD-49EC-A109-764193A25273} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5190080 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {B3D3674D-A914-4336-A4D8-1564F78A98B6} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [3419016 2023-10-18] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {D5FB62FB-12DB-4B5F-83CF-A852B03B2EDC} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [3419016 2023-10-18] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {88AE53BB-F7F6-45C9-8970-5DCB9E1E8044} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2181560 2023-08-01] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {36227EEB-4515-4C0A-BDA3-E26A93C5270B} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {9984CF99-D1AB-4490-BA76-D07A36560C3D} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {7E223C46-3A1E-4432-A4CC-DC924084D095} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {2062ED67-4945-45DA-A3E3-B9EB4144F9AE} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "0aadb7e4-1ad8-4f1f-b936-6e1a1dcfe210" --version "6.17.10746" --silent
Task: {C73B90AF-8BA0-407A-9394-4083886F7135} - System32\Tasks\CCleanerSkipUAC - marti => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {AEC4FB71-3197-4A79-AB5B-611AB2FADA47} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [5329808 2023-10-11] (Microsoft Windows -> Microsoft Corporation)
Task: {F78E1403-9A44-4634-ACE7-801AE93D2CCE} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\Scheduler.exe [160744 2023-09-13] (IObit CO., LTD -> IObit)
Task: {82EFB63F-AF9B-4E26-B66C-08682203BADF} - System32\Tasks\Driver Booster SkipUAC (marti) => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\DriverBooster.exe [8974312 2023-09-13] (IObit CO., LTD -> IObit)
Task: {69D908D4-88F1-497D-9E17-CB1F5A83F23E} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\AutoUpdate.exe [2524648 2023-09-01] (IObit CO., LTD -> IObit)
Task: {15601068-A644-424F-A898-13F8961F5863} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-11] (Google Inc -> Google Inc.)
Task: {1784D6A2-0E17-42D0-8B65-18BFF17C23FE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-11] (Google Inc -> Google Inc.)
Task: {987D24E8-EDDC-44B2-98A1-096AA79464BA} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60368 2023-09-07] (HP Inc. -> HP Inc.)
Task: {C35E4708-94EC-4836-8412-9DD67B99727E} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60368 2023-09-07] (HP Inc. -> HP Inc.)
Task: {D89136DA-81C6-4AF7-B5ED-BE5996D554A1} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
Task: {32692620-93F1-42BD-961C-6D7CF8426591} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {8C7ACF74-D095-47FF-BD3C-A4F351BE0196} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {6E92B472-4B75-4B01-B981-4E4FB1BA623E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305088 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {C51A909E-C678-4C07-96BB-B4869F2B65C8} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305088 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {900C1525-0EBB-417F-AAD9-3B7709A67C4E} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169656 2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {9906AE47-AD70-42CC-9C61-69836AC0CD24} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4431688 2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {0AE9067C-3D70-4491-B0F5-B1CFBE266441} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [549504 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {AC720F10-815D-4F54-A236-3FC1283E00A2} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676256 2023-11-08] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {88BD3502-B7A2-43E5-A118-A174F9B44C99} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [723872 2023-11-08] (Mozilla Corporation -> Mozilla Foundation)
Task: {9949371C-58FF-4897-820B-630E829AD5B6} - System32\Tasks\PowerToys\Autorun for marti => C:\Users\marti\AppData\Local\PowerToys\PowerToys.exe [1234464 2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {93A26AAB-ECCF-435F-9585-FE40DB49D0A1} - System32\Tasks\Uninstaller_SkipUac_marti => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [9825288 2023-09-19] (IObit CO., LTD -> IObit)
Task: {6E44806A-0AD9-475C-970E-6A114CCC9278} - System32\Tasks\WinSysCleanUC => C:\Program Files\WinSysClean X11 PRO\WinSysClean.exe (No File)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864 2010-05-18] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [193824 2010-05-18] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e62b3bb6-bf1d-4b4b-bf4e-179c945db085}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-12]
Edge Extension: (Avira Safe Shopping) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2022-04-16]
Edge Extension: (Avira Password Manager) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2023-11-05]
Edge Extension: (Dokumenty Google offline) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-05]
Edge Extension: (Edge relevant text changes) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-11-05]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF DefaultProfile: 7927ltx3.default-1540227861642
FF ProfilePath: C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\h2oul36n.default-release [2023-11-10]
FF user.js: detected! => C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\h2oul36n.default-release\user.js [2023-05-17]
FF Homepage: Mozilla\Firefox\Profiles\h2oul36n.default-release -> hxxps://www.google.com/
FF SearchPlugin: C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\h2oul36n.default-release\searchplugins\mybingsearch.xml [2022-01-28]
FF ProfilePath: C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642 [2023-11-12]
FF user.js: detected! => C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\user.js [2023-05-17]
FF DownloadDir: E:\Downloads
FF Homepage: Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642 -> hxxps://www.seznam.cz/
FF Extension: (Save as PDF) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\save-as-pdf-ff@pdfcrowd.com.xpi [2022-12-17]
FF Extension: (Gesturefy) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\{506e023c-7f2b-40a3-8066-bc5deb40aebe}.xpi [2023-10-09]
FF Extension: (Copy/Paste and Save tabs list) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\{a596357b-5d1f-4e04-ba81-4013c6d7d34e}.xpi [2022-01-28]
FF Extension: (Video DownloadHelper) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-08-26]
FF Extension: (No Name) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-06-20]
FF Extension: (DownThemAll!) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2023-08-28]
FF SearchPlugin: C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\searchplugins\mybingsearch.xml [2022-01-28]
FF Plugin: @java.com/DTPlugin,version=11.381.2 -> C:\Program Files\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.381.2 -> C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1582.3\npAvgBrowserUpdate3.dll [2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1582.3\npAvgBrowserUpdate3.dll [2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
Chrome:
=======
CHR Profile: C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default [2023-11-08]
CHR Notifications: Default -> hxxps://www.youtube.com
CHR Extension: (Překladač Google) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-31]
CHR Extension: (Avira Password Manager) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2023-11-05]
CHR Extension: (Videostream for Google Chromecast™) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnciopoikihiagdjbjpnocolokfelagl [2021-06-01]
CHR Extension: (Google+) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdidnckmm [2018-08-11]
CHR Extension: (Legacy MindMup (discontinued)) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnenaecjcgeppfpaokiifokeieopppej [2018-08-11]
CHR Extension: (Avira Browser Safety) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2022-10-31]
CHR Extension: (Dokumenty Google offline) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-07]
CHR Extension: (Atavi bookmarks) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfephclnnkjfkfnmmcjampphpfgijgae [2018-08-11]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-10-28]
CHR Extension: (Chrome Remote Desktop) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2022-12-11]
CHR Extension: (Dropbox) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2018-08-11]
CHR Extension: (CrxMouse Chrome™ Gestures) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlgkpaicikihijadgifklkbpdajbkhjo [2022-12-11]
CHR Extension: (uExport - Export Youtube Playlist) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\lejaffghgmobbadpemdfahpemdppddmf [2022-01-29]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-26]
CHR Extension: (Video DownloadHelper) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2023-08-26]
CHR Extension: (Mapy Google) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2018-08-11]
CHR Extension: (AVG SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2023-05-29]
CHR Extension: (OneDrive) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2018-08-11]
CHR Extension: (Save to Pocket) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2022-11-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Extension: (Picasa) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2018-08-11]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKU\S-1-5-21-909500843-76453422-3379895302-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5525576 2023-11-09] (philandro Software GmbH -> AnyDesk Software GmbH)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [843192 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2406848 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [875960 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [9136568 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\118.0.22847.89\elevation_service.exe [1879832 2023-10-18] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12876472 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2358800 2022-05-20] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-09-07] (HP Inc. -> HP Inc.)
S3 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-12-27] (Huawei Technologies Co., Ltd. -> ) [File not signed]
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [167432 2023-07-26] (IObit CO., LTD -> IObit)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9316040 2023-10-28] (Malwarebytes Inc. -> Malwarebytes)
S3 nebula; C:\Program Files\Logitech\Collaboration\Services\Video\ServiceLayer.exe [4490376 2020-09-18] (Logitech Inc -> Logitech)
S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [22488 2023-10-11] (Microsoft Windows -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [18035512 2023-10-18] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 TeraCopyService; C:\Program Files\TeraCopy\TeraCopyService.exe [112944 2020-08-15] (Code Sector -> )
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [802752 2023-10-12] (Oracle Corporation -> Oracle and/or its affiliates)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WO_LiveService2; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 19\LiveTunerService.exe [307936 2022-01-14] (Ashampoo GmbH & Co. KG -> )
S3 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.231\WsAppService.exe [493792 2017-10-24] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [135296 2022-12-19] (Alcorlink Corp. -> )
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 AVER_H193; C:\WINDOWS\system32\drivers\AVer888RC_64.sys [543616 2009-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AVerMedia TECHNOLOGIES, Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [240616 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [394048 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [297912 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [96504 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [25064 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [39680 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [275208 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [561816 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [105280 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [80568 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [952384 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [710056 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [213336 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [319712 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
S3 cpuz145; no ImagePath
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 DSI_SiUSBXp_3_1; C:\WINDOWS\system32\drivers\DSI_SiUSBXp_3_1.sys [16384 2007-09-06] (Silicon Laboratories) [File not signed]
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HPMoA407; C:\WINDOWS\System32\drivers\HPMoA407.sys [25088 2011-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
R3 HPubA407; C:\WINDOWS\System32\Drivers\HPubA407.sys [18944 2012-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
R2 LiveTuner2PM; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 19\LiveTuner64.sys [24200 2022-01-28] (Ashampoo GmbH & Co. KG -> )
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-02-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 MDA_NTDRV; C:\WINDOWS\system32\MDA_NTDRV.sys [21208 2018-09-02] (北京铠信神州科技有限责任公司 -> )
R3 pikbd; C:\WINDOWS\System32\drivers\pikbd.sys [26088 2016-04-09] (Christian Gulden -> Christian Gulden)
R3 pimou; C:\WINDOWS\System32\drivers\pimou.sys [24600 2015-09-13] (Christian Gulden -> Christian Gulden)
S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2018-03-02] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2019-04-21] (Shenzhen Wondershare Information Technology Co., Ltd. -> Apple, Inc.)
S3 usbscan; C:\WINDOWS\System32\drivers\usbscan.sys [49152 2020-08-31] (Microsoft Corporation) [File not signed]
R3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [251776 2023-10-12] (Oracle Corporation -> Oracle and/or its affiliates)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [262648 2023-10-12] (Oracle Corporation -> Oracle and/or its affiliates)
R1 VBoxSup; C:\WINDOWS\system32\DRIVERS\VBoxSup.sys [1060600 2023-10-12] (Oracle Corporation -> Oracle and/or its affiliates)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [187752 2023-07-12] (Oracle Corporation -> Oracle and/or its affiliates)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55856 2023-10-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [572712 2023-10-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-07] (Microsoft Windows -> Microsoft Corporation)
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\drivers\win10_amd64\AscRegistryFilter.sys [X]
U3 aswbdisk; no ImagePath
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]
S3 cpuz152; \??\C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [X]
S3 HWiNFO_180; \??\C:\Users\marti\AppData\Local\Temp\HWiNFO64A_180.SYS [X] <==== ATTENTION
S3 iobit_monitor_server2021; \??\C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\drivers\Monitor_win10_x64.sys [X]
U3 SARPSvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-11-10 17:24 - 2023-11-12 07:33 - 000002850 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-909500843-76453422-3379895302-1001
2023-11-10 17:24 - 2023-11-10 17:24 - 000002422 _____ C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-08 18:15 - 2023-11-10 12:06 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-11-05 18:56 - 2023-11-12 05:49 - 000000000 ____D C:\WINDOWS\system32\Tasks\PowerToys
2023-11-05 18:56 - 2023-11-05 18:56 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview)
2023-11-05 18:56 - 2023-11-05 18:56 - 000000000 ____D C:\Users\marti\AppData\Local\ToastNotificationManagerCompat
2023-11-05 18:56 - 2023-11-05 18:56 - 000000000 ____D C:\Users\marti\AppData\Local\PowerToys
2023-11-05 18:54 - 2023-11-05 18:56 - 000000000 ____D C:\Users\marti\AppData\Local\Package Cache
2023-11-04 11:05 - 2023-11-04 11:05 - 000002205 _____ C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk
2023-11-04 11:05 - 2023-11-04 11:05 - 000000000 ____D C:\Users\marti\AppData\Local\FluxSoftware
2023-11-03 18:15 - 2023-11-03 18:15 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-11-03 17:01 - 2023-11-03 17:01 - 000638508 _____ C:\WINDOWS\Minidump\110323-67671-01.dmp
2023-11-03 17:00 - 2023-11-10 17:16 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-31 16:06 - 2023-10-31 16:06 - 000000000 ____D C:\Users\marti\AppData\Roaming\PhotoFiltre 7
2023-10-31 06:05 - 2023-11-12 07:33 - 000003250 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2023-10-31 06:05 - 2023-10-31 06:05 - 000313272 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2023-10-29 18:58 - 2023-10-29 18:58 - 000446096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-29 04:49 - 2023-10-29 04:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView MP
2023-10-25 15:50 - 2023-10-29 04:17 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-10-25 15:50 - 2023-10-29 04:06 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-10-25 15:50 - 2023-10-27 05:28 - 000003102 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-10-25 04:44 - 2023-10-25 04:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2023-10-25 04:44 - 2023-10-12 10:05 - 001060600 _____ (Oracle and/or its affiliates) C:\WINDOWS\system32\Drivers\VBoxSup.sys
2023-10-25 04:44 - 2023-10-12 10:05 - 000201328 _____ (Oracle and/or its affiliates) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-11-12 07:33 - 2022-12-27 16:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2023-11-12 07:33 - 2022-12-16 17:36 - 000000000 ____D C:\FRST
2023-11-12 07:33 - 2022-06-05 05:07 - 000002248 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - marti
2023-11-12 07:33 - 2022-02-15 21:26 - 000002584 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2023-11-12 07:33 - 2021-12-14 17:58 - 000003054 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-909500843-76453422-3379895302-1001
2023-11-12 07:33 - 2020-08-31 21:13 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-11-12 07:33 - 2020-08-31 21:13 - 000003410 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-11-12 07:33 - 2020-08-31 21:13 - 000003342 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-11-12 07:33 - 2020-08-31 21:13 - 000003186 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-11-12 07:33 - 2020-08-31 21:13 - 000003094 _____ C:\WINDOWS\system32\Tasks\Java Platform SE Auto Updater
2023-11-12 07:33 - 2020-08-31 21:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-12 06:53 - 2021-12-18 00:28 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-11-12 06:53 - 2018-08-11 14:49 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-12 06:49 - 2022-12-16 17:40 - 000000000 ____D C:\Program Files\trend micro
2023-11-12 06:20 - 2018-08-11 14:47 - 000000000 ____D C:\Users\marti\AppData\Local\Avg
2023-11-12 06:00 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-12 05:50 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-12 05:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-11 21:05 - 2021-02-09 16:23 - 000000000 ____D C:\Users\marti\AppData\Roaming\vlc
2023-11-11 19:18 - 2020-08-10 04:47 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-10 17:54 - 2018-08-11 14:50 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-11-10 17:21 - 2023-10-07 17:24 - 000000000 ____D C:\ProgramData\ProductData3
2023-11-10 17:20 - 2020-08-31 21:14 - 001847486 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-10 17:20 - 2019-12-07 15:41 - 000779128 _____ C:\WINDOWS\system32\perfh005.dat
2023-11-10 17:20 - 2019-12-07 15:41 - 000168364 _____ C:\WINDOWS\system32\perfc005.dat
2023-11-10 17:20 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-11-10 17:16 - 2020-12-21 20:50 - 000000000 ____D C:\ProgramData\AVG
2023-11-10 17:16 - 2020-08-31 21:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-10 17:16 - 2018-08-12 11:34 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2023-11-10 17:14 - 2023-01-16 20:05 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2023-11-10 17:14 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-11-10 16:36 - 2020-11-25 11:25 - 000000000 ____D C:\Users\marti\AppData\Roaming\TeraCopy
2023-11-10 12:06 - 2018-08-11 16:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-11-09 22:45 - 2018-08-11 19:23 - 000000000 ____D C:\Users\marti\.VirtualBox
2023-11-09 21:29 - 2019-01-30 20:14 - 000000000 ____D C:\ProgramData\VirtualBox
2023-11-09 21:29 - 2018-09-27 18:06 - 000000000 ____D C:\Users\marti\AppData\Local\CrashDumps
2023-11-07 12:09 - 2020-08-31 21:02 - 000000000 ____D C:\Users\marti
2023-11-05 14:11 - 2018-08-12 11:35 - 000000000 ____D C:\Users\marti\AppData\Roaming\TeamViewer
2023-11-05 12:59 - 2023-01-16 18:41 - 000000000 ____D C:\Users\marti\AppData\Roaming\AnyDesk
2023-11-05 07:44 - 2018-09-08 11:39 - 000000000 ____D C:\Users\marti\AppData\Roaming\foobar2000
2023-11-04 20:52 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-11-04 10:56 - 2018-08-11 14:44 - 000000000 ____D C:\Users\marti\AppData\Local\Packages
2023-11-04 10:49 - 2020-07-11 16:02 - 000000000 ____D C:\Users\marti\AppData\LocalLow\Temp
2023-11-04 10:43 - 2018-08-12 08:11 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Word
2023-11-03 18:14 - 2018-08-11 16:11 - 000000000 ____D C:\Program Files\Microsoft Office
2023-11-03 18:04 - 2020-01-27 05:23 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Teams
2023-11-03 17:02 - 2021-07-11 16:08 - 000000000 ____D C:\WINDOWS\Minidump
2023-11-03 17:01 - 2023-08-22 17:09 - 970273942 _____ C:\WINDOWS\MEMORY.DMP
2023-11-03 16:43 - 2021-01-22 06:50 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-10-31 06:05 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-10-29 06:54 - 2018-08-12 11:30 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\PowerPoint
2023-10-29 06:10 - 2019-04-23 05:09 - 000000000 ____D C:\Users\marti\AppData\Roaming\XnViewMP
2023-10-29 04:49 - 2019-04-23 05:09 - 000000000 ____D C:\Program Files\XnViewMP
2023-10-29 04:09 - 2021-01-30 09:34 - 000000000 ____D C:\Program Files\CCleaner
2023-10-28 20:45 - 2018-08-12 08:11 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Office
2023-10-28 14:09 - 2023-05-12 18:47 - 000000000 ____D C:\Users\marti\AppData\Local\Malwarebytes
2023-10-28 03:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration
2023-10-27 09:24 - 2023-09-28 18:53 - 000003446 _____ C:\WINDOWS\SysWOW64\pubfreeware.ini
2023-10-27 05:45 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-27 05:29 - 2023-03-04 15:28 - 000002210 _____ C:\WINDOWS\system32\Tasks\WinSysCleanUC
2023-10-27 05:28 - 2023-10-07 17:24 - 000002644 _____ C:\WINDOWS\system32\Tasks\Uninstaller_SkipUac_marti
2023-10-27 05:28 - 2023-09-24 05:19 - 000002806 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (marti)
2023-10-27 05:28 - 2023-09-24 05:19 - 000002628 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler
2023-10-27 05:28 - 2023-09-24 05:19 - 000002614 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update
2023-10-27 05:22 - 2022-01-04 17:51 - 000002381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk
2023-10-25 20:54 - 2021-09-22 17:27 - 000002140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-10-23 15:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-10-22 14:33 - 2023-01-16 20:05 - 000000000 ____D C:\ProgramData\AnyDesk
2023-10-20 05:10 - 2020-12-23 16:35 - 000000000 ____D C:\ProgramData\IObit
2023-10-20 04:43 - 2018-08-11 14:46 - 000000000 ____D C:\Users\marti\AppData\Local\PlaceholderTileLogoFolder
==================== Files in the root of some directories ========
2023-04-07 21:30 - 2023-07-22 08:44 - 000000000 _____ () C:\Users\marti\yt-dlp.exe
2020-03-18 13:55 - 2020-03-18 13:55 - 000000017 _____ () C:\Users\marti\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivní kontrola PC (mmmzzz@seznam.cz)
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventivní kontrola PC (mmmzzz@seznam.cz)
ahoj,
odinstaluj VSETKO od IOBit
restart - potom vycisti PC s CCleanerom, vcetne registrov a vloz oba logy FRST na kontrolu
odinstaluj VSETKO od IOBit
restart - potom vycisti PC s CCleanerom, vcetne registrov a vloz oba logy FRST na kontrolu
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola PC (mmmzzz@seznam.cz)
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-11-2023 02
Ran by marti (administrator) on DESKTOP-8VOP8FR (Hewlett-Packard p6521cs-m) (16-11-2023 18:34:05)
Running from C:\Portableapps\PortableApps\FRST64\FRST64.exe
Loaded Profiles: marti
Platform: Microsoft Windows 10 Home Version 22H2 19045.3693 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(C:\Portableapps\PortableApps\PortableApps.com\PortableAppsPlatform.exe ->) (Rare Ideas, LLC -> PortableApps.com) C:\Portableapps\PortableApps\RevoUninstallerPortable\RevoUninstallerPortable.exe <2>
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\marti\AppData\Local\FluxSoftware\Flux\flux.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\Microsoft\OneDrive\23.221.1024.0002\Microsoft.SharePoint.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <13>
(nvvsvc.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2>
(Rare Ideas, LLC -> PortableApps.com) C:\Portableapps\PortableApps\PortableApps.com\PortableAppsPlatform.exe
(services.exe ->) (Ashampoo GmbH & Co. KG -> ) C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 19\LiveTunerService.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2>
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
(svchost.exe ->) (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(VS Revo Group Ltd. -> VS Revo Group) C:\Portableapps\PortableApps\RevoUninstallerPortable\App\RevoUninstaller\x64\RevoUn.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572536 2022-12-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [411584 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Ashampoo WinOptimizer Live-Tuner2] => C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 19\LiveTuner2.exe [6378720 2022-01-14] (Ashampoo GmbH & Co. KG -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.1.0\GoogleDriveFS.exe [58442528 2023-11-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.1.0\GoogleDriveFS.exe [58442528 2023-11-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.1.0\GoogleDriveFS.exe [58442528 2023-11-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Run: [f.lux] => C:\Users\marti\AppData\Local\FluxSoftware\Flux\flux.exe [1527416 2023-09-22] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Run: [GoogleChromeAutoLaunch_5F88CFF07A6B0239025DD2C7ABAE8BA7] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [2680608 2023-11-07] (Google LLC -> Google LLC)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Run: [MicrosoftEdgeAutoLaunch_4A886EB596DDE810C696BFE47BAAC943] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3894824 2023-11-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {1a21ebfe-9d74-11e8-9923-806e6f6e6963} - "F:\startdvd.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {1a21ec04-9d74-11e8-9923-806e6f6e6963} - "M:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {2ebf689c-81eb-11ed-9da4-001a7dda7111} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {544205f9-c2ed-11ed-9ddc-001a7dda7111} - "M:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {b25ce089-4a56-11eb-9c1b-001a7dda7111} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {d46568e7-445d-11ea-9b19-001a7dda7111} - "L:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.1.0\GoogleDriveFS.exe [58442528 2023-11-15] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\shj2mPC: C:\Windows\System32\spool\prtprocs\x64\shj2mpc.dll [91216 2022-01-24] (联想图像(天津)科技有限公司 -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\HP BA11 Status Monitor: C:\WINDOWS\system32\hpinkstsBA11LM.dll [331664 2012-06-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\shj2m Langmon: C:\WINDOWS\system32\shj2mlm.dll [44264 2019-03-31] (联想图像(天津)科技有限公司 -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\118.0.22914.118\Installer\chrmstp.exe [2023-11-12] (AVG Technologies USA, LLC -> AVG Technologies)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\119.0.6045.125\Installer\chrmstp.exe [2023-11-16] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2023-01-16]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
Startup: C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Start.exe.lnk [2023-04-25]
ShortcutTarget: Start.exe.lnk -> C:\Portableapps\Start.exe (Rare Ideas, LLC -> PortableApps.com)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {E1FB93A9-26BD-49EC-A109-764193A25273} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5190080 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {B3D3674D-A914-4336-A4D8-1564F78A98B6} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [3419016 2023-10-25] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {D5FB62FB-12DB-4B5F-83CF-A852B03B2EDC} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [3419016 2023-10-25] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {88AE53BB-F7F6-45C9-8970-5DCB9E1E8044} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2181560 2023-08-01] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {36227EEB-4515-4C0A-BDA3-E26A93C5270B} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {9984CF99-D1AB-4490-BA76-D07A36560C3D} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {7E223C46-3A1E-4432-A4CC-DC924084D095} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {2062ED67-4945-45DA-A3E3-B9EB4144F9AE} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "0aadb7e4-1ad8-4f1f-b936-6e1a1dcfe210" --version "6.17.10746" --silent
Task: {C73B90AF-8BA0-407A-9394-4083886F7135} - System32\Tasks\CCleanerSkipUAC - marti => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {AEC4FB71-3197-4A79-AB5B-611AB2FADA47} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [5340232 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
Task: {15601068-A644-424F-A898-13F8961F5863} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-11] (Google Inc -> Google Inc.)
Task: {1784D6A2-0E17-42D0-8B65-18BFF17C23FE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-11] (Google Inc -> Google Inc.)
Task: {B3032501-26D3-47A5-A876-195513CD818F} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60880 2023-11-15] (HP Inc. -> HP Inc.)
Task: {D3088F9A-2FAE-4462-93AD-7077013DAF30} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60880 2023-11-15] (HP Inc. -> HP Inc.)
Task: {D89136DA-81C6-4AF7-B5ED-BE5996D554A1} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
Task: {32692620-93F1-42BD-961C-6D7CF8426591} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {8C7ACF74-D095-47FF-BD3C-A4F351BE0196} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {6E92B472-4B75-4B01-B981-4E4FB1BA623E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305088 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {C51A909E-C678-4C07-96BB-B4869F2B65C8} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305088 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {900C1525-0EBB-417F-AAD9-3B7709A67C4E} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169656 2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {9906AE47-AD70-42CC-9C61-69836AC0CD24} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4431688 2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {0AE9067C-3D70-4491-B0F5-B1CFBE266441} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [549504 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {1BC2699B-910F-4164-9E01-B0DA820C5550} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [278016 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
Task: {DF5FA2C7-3BEE-4669-87A4-B89408B05541} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [251904 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
Task: {AC720F10-815D-4F54-A236-3FC1283E00A2} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676256 2023-11-08] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {88BD3502-B7A2-43E5-A118-A174F9B44C99} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [723872 2023-11-08] (Mozilla Corporation -> Mozilla Foundation)
Task: {6E44806A-0AD9-475C-970E-6A114CCC9278} - System32\Tasks\WinSysCleanUC => C:\Program Files\WinSysClean X11 PRO\WinSysClean.exe (No File)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e62b3bb6-bf1d-4b4b-bf4e-179c945db085}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-16]
Edge Extension: (Avira Safe Shopping) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2022-04-16]
Edge Extension: (Avira Password Manager) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2023-11-05]
Edge Extension: (Google Docs Offline) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-05]
Edge Extension: (Edge relevant text changes) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-11-05]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF DefaultProfile: 7927ltx3.default-1540227861642
FF ProfilePath: C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\h2oul36n.default-release [2023-11-16]
FF user.js: detected! => C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\h2oul36n.default-release\user.js [2023-05-17]
FF Homepage: Mozilla\Firefox\Profiles\h2oul36n.default-release -> hxxps://www.google.com/
FF SearchPlugin: C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\h2oul36n.default-release\searchplugins\mybingsearch.xml [2022-01-28]
FF ProfilePath: C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642 [2023-11-16]
FF user.js: detected! => C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\user.js [2023-05-17]
FF DownloadDir: E:\Downloads
FF Homepage: Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642 -> hxxps://www.seznam.cz/
FF Extension: (AVG Online Security) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\aos@avg.com.xpi [2023-11-12]
FF Extension: (Save as PDF) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\save-as-pdf-ff@pdfcrowd.com.xpi [2022-12-17]
FF Extension: (Gesturefy) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\{506e023c-7f2b-40a3-8066-bc5deb40aebe}.xpi [2023-10-09]
FF Extension: (Copy/Paste and Save tabs list) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\{a596357b-5d1f-4e04-ba81-4013c6d7d34e}.xpi [2022-01-28]
FF Extension: (Video DownloadHelper) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-08-26]
FF Extension: (No Name) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-06-20]
FF Extension: (DownThemAll!) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2023-08-28]
FF SearchPlugin: C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\searchplugins\mybingsearch.xml [2022-01-28]
FF Plugin: @java.com/DTPlugin,version=11.381.2 -> C:\Program Files\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.381.2 -> C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1582.3\npAvgBrowserUpdate3.dll [2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1582.3\npAvgBrowserUpdate3.dll [2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
Chrome:
=======
CHR Profile: C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default [2023-11-16]
CHR Extension: (Google Translate) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-31]
CHR Extension: (Avira Password Manager) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2023-11-05]
CHR Extension: (Videostream for Google Chromecast™) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnciopoikihiagdjbjpnocolokfelagl [2021-06-01]
CHR Extension: (Google+) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdidnckmm [2018-08-11]
CHR Extension: (Legacy MindMup (discontinued)) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnenaecjcgeppfpaokiifokeieopppej [2018-08-11]
CHR Extension: (Avira Browser Safety) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2022-10-31]
CHR Extension: (Google Docs Offline) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-07]
CHR Extension: (Atavi bookmarks) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfephclnnkjfkfnmmcjampphpfgijgae [2018-08-11]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-11-12]
CHR Extension: (Chrome Remote Desktop) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2022-12-11]
CHR Extension: (Dropbox) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2018-08-11]
CHR Extension: (CrxMouse Chrome™ Gestures) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlgkpaicikihijadgifklkbpdajbkhjo [2022-12-11]
CHR Extension: (uExport - Export Youtube Playlist) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\lejaffghgmobbadpemdfahpemdppddmf [2022-01-29]
CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-26]
CHR Extension: (Video DownloadHelper) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2023-08-26]
CHR Extension: (Google Maps) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2018-08-11]
CHR Extension: (AVG SafePrice | Comparison, deals, coupons) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2023-05-29]
CHR Extension: (OneDrive) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2018-08-11]
CHR Extension: (Save to Pocket) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2022-11-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Extension: (Picasa) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2018-08-11]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKU\S-1-5-21-909500843-76453422-3379895302-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5525576 2023-11-09] (philandro Software GmbH -> AnyDesk Software GmbH)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [843192 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2406848 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [875960 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [9136576 2023-11-15] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\118.0.22914.118\elevation_service.exe [1879832 2023-10-25] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12876472 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2358800 2022-05-20] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230360 2023-11-15] (HP Inc. -> HP Inc.)
S3 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-12-27] (Huawei Technologies Co., Ltd. -> ) [File not signed]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9316040 2023-10-28] (Malwarebytes Inc. -> Malwarebytes)
S3 nebula; C:\Program Files\Logitech\Collaboration\Services\Video\ServiceLayer.exe [4490376 2020-09-18] (Logitech Inc -> Logitech)
S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [22384 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [18035512 2023-10-18] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 TeraCopyService; C:\Program Files\TeraCopy\TeraCopyService.exe [112944 2020-08-15] (Code Sector -> )
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [802752 2023-10-12] (Oracle Corporation -> Oracle and/or its affiliates)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WO_LiveService2; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 19\LiveTunerService.exe [307936 2022-01-14] (Ashampoo GmbH & Co. KG -> )
S3 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.231\WsAppService.exe [493792 2017-10-24] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [135296 2022-12-19] (Alcorlink Corp. -> )
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 AVER_H193; C:\WINDOWS\system32\drivers\AVer888RC_64.sys [543616 2009-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AVerMedia TECHNOLOGIES, Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [240616 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [394048 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [297912 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [96504 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [25064 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [39680 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [275208 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [561816 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [105280 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [80568 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [952384 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [710072 2023-11-15] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [213336 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [319712 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
S3 cpuz145; no ImagePath
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 DSI_SiUSBXp_3_1; C:\WINDOWS\system32\drivers\DSI_SiUSBXp_3_1.sys [16384 2007-09-06] (Silicon Laboratories) [File not signed]
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HPMoA407; C:\WINDOWS\System32\drivers\HPMoA407.sys [25088 2011-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
R3 HPubA407; C:\WINDOWS\System32\Drivers\HPubA407.sys [18944 2012-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
R2 LiveTuner2PM; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 19\LiveTuner64.sys [24200 2022-01-28] (Ashampoo GmbH & Co. KG -> )
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-02-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 MDA_NTDRV; C:\WINDOWS\system32\MDA_NTDRV.sys [21208 2018-09-02] (北京铠信神州科技有限责任公司 -> )
R3 pikbd; C:\WINDOWS\System32\drivers\pikbd.sys [26088 2016-04-09] (Christian Gulden -> Christian Gulden)
R3 pimou; C:\WINDOWS\System32\drivers\pimou.sys [24600 2015-09-13] (Christian Gulden -> Christian Gulden)
S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2018-03-02] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2019-04-21] (Shenzhen Wondershare Information Technology Co., Ltd. -> Apple, Inc.)
S3 usbscan; C:\WINDOWS\System32\drivers\usbscan.sys [49152 2020-08-31] (Microsoft Corporation) [File not signed]
R3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [251776 2023-10-12] (Oracle Corporation -> Oracle and/or its affiliates)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [262648 2023-10-12] (Oracle Corporation -> Oracle and/or its affiliates)
R1 VBoxSup; C:\WINDOWS\system32\DRIVERS\VBoxSup.sys [1060600 2023-10-12] (Oracle Corporation -> Oracle and/or its affiliates)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [187752 2023-07-12] (Oracle Corporation -> Oracle and/or its affiliates)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55856 2023-10-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [572712 2023-10-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-07] (Microsoft Windows -> Microsoft Corporation)
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\drivers\win10_amd64\AscRegistryFilter.sys [X]
U3 aswbdisk; no ImagePath
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]
S3 cpuz152; \??\C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [X]
S3 HWiNFO_180; \??\C:\Users\marti\AppData\Local\Temp\HWiNFO64A_180.SYS [X] <==== ATTENTION
S3 iobit_monitor_server2021; \??\C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\drivers\Monitor_win10_x64.sys [X]
U3 SARPSvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-11-15 15:13 - 2023-11-15 15:13 - 000000000 ___HD C:\$WinREAgent
2023-11-15 14:26 - 2023-11-15 14:26 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-909500843-76453422-3379895302-1001
2023-11-15 14:26 - 2023-11-15 14:26 - 000002422 _____ C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-12 08:35 - 2023-11-12 08:35 - 000000000 ____D C:\Users\marti\OneDrive\Dokumenty\PowerToys
2023-11-08 18:15 - 2023-11-10 12:06 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-11-05 18:56 - 2023-11-12 08:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\PowerToys
2023-11-05 18:56 - 2023-11-05 18:56 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview)
2023-11-05 18:56 - 2023-11-05 18:56 - 000000000 ____D C:\Users\marti\AppData\Local\ToastNotificationManagerCompat
2023-11-05 18:56 - 2023-11-05 18:56 - 000000000 ____D C:\Users\marti\AppData\Local\PowerToys
2023-11-05 18:54 - 2023-11-05 18:56 - 000000000 ____D C:\Users\marti\AppData\Local\Package Cache
2023-11-04 11:05 - 2023-11-04 11:05 - 000002205 _____ C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk
2023-11-04 11:05 - 2023-11-04 11:05 - 000000000 ____D C:\Users\marti\AppData\Local\FluxSoftware
2023-11-03 18:15 - 2023-11-03 18:15 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-11-03 17:00 - 2023-11-16 18:15 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-31 16:06 - 2023-10-31 16:06 - 000000000 ____D C:\Users\marti\AppData\Roaming\PhotoFiltre 7
2023-10-31 06:05 - 2023-11-15 14:26 - 000004266 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2023-10-31 06:05 - 2023-10-31 06:05 - 000313272 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2023-10-29 18:58 - 2023-11-16 05:19 - 000446096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-29 04:49 - 2023-10-29 04:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView MP
2023-10-25 15:50 - 2023-10-29 04:17 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-10-25 15:50 - 2023-10-29 04:06 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-10-25 15:50 - 2023-10-27 05:28 - 000003102 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-10-25 04:44 - 2023-10-25 04:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2023-10-25 04:44 - 2023-10-12 10:05 - 001060600 _____ (Oracle and/or its affiliates) C:\WINDOWS\system32\Drivers\VBoxSup.sys
2023-10-25 04:44 - 2023-10-12 10:05 - 000201328 _____ (Oracle and/or its affiliates) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-11-16 18:36 - 2021-02-09 16:23 - 000000000 ____D C:\Users\marti\AppData\Roaming\vlc
2023-11-16 18:34 - 2022-12-16 17:36 - 000000000 ____D C:\FRST
2023-11-16 18:31 - 2022-02-10 17:00 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-11-16 18:30 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-16 18:29 - 2021-12-18 00:28 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-11-16 18:29 - 2018-08-11 14:49 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-16 18:26 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-11-16 18:24 - 2022-12-23 10:56 - 000000000 ____D C:\ProgramData\Piriform
2023-11-16 18:23 - 2021-07-11 16:08 - 000000000 ____D C:\WINDOWS\Minidump
2023-11-16 18:23 - 2018-09-27 18:06 - 000000000 ____D C:\Users\marti\AppData\Local\CrashDumps
2023-11-16 18:22 - 2021-01-30 09:34 - 000000000 ____D C:\Program Files\CCleaner
2023-11-16 18:21 - 2020-08-31 21:14 - 001847486 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-16 18:21 - 2019-12-07 15:41 - 000779128 _____ C:\WINDOWS\system32\perfh005.dat
2023-11-16 18:21 - 2019-12-07 15:41 - 000168364 _____ C:\WINDOWS\system32\perfc005.dat
2023-11-16 18:15 - 2020-12-21 20:50 - 000000000 ____D C:\ProgramData\AVG
2023-11-16 18:15 - 2020-08-31 21:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-16 18:15 - 2018-08-12 11:34 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2023-11-16 06:27 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-11-16 06:26 - 2020-08-31 21:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-16 05:31 - 2018-08-11 14:50 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-11-16 05:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-16 05:22 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-11-16 05:18 - 2020-12-23 16:36 - 000000000 ____D C:\Program Files (x86)\IObit
2023-11-15 20:53 - 2019-12-07 15:44 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-11-15 20:53 - 2019-12-07 15:44 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-11-15 20:53 - 2019-12-07 15:41 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2023-11-15 20:53 - 2019-12-07 15:41 - 000000000 ____D C:\WINDOWS\system32\cs
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-11-15 20:53 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2023-11-15 15:36 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-11-15 15:25 - 2020-08-31 21:05 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-11-15 14:35 - 2018-08-11 16:13 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-11-15 14:32 - 2022-03-24 18:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2023-11-15 14:32 - 2022-01-26 17:22 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2023-11-15 14:32 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-15 14:31 - 2018-08-11 14:45 - 000000000 ____D C:\Users\marti\AppData\Local\Publishers
2023-11-15 14:30 - 2021-09-22 17:27 - 000002140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-11-15 14:29 - 2018-08-11 16:13 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-11-15 14:26 - 2021-12-14 17:58 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-909500843-76453422-3379895302-1001
2023-11-15 14:24 - 2020-08-31 21:13 - 000003830 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-11-15 14:24 - 2020-08-31 21:13 - 000003706 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-11-12 21:30 - 2020-01-19 18:05 - 000000000 ____D C:\Users\marti\AppData\Roaming\FreeFileSync
2023-11-12 14:02 - 2020-12-23 16:35 - 000000000 ____D C:\Users\marti\AppData\Roaming\IObit
2023-11-12 14:02 - 2020-12-23 16:35 - 000000000 ____D C:\ProgramData\IObit
2023-11-12 14:00 - 2020-12-23 16:36 - 000000000 ____D C:\ProgramData\ProductData
2023-11-12 08:52 - 2020-01-19 18:05 - 000000979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeFileSync.lnk
2023-11-12 08:52 - 2020-01-19 18:05 - 000000965 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealTimeSync.lnk
2023-11-12 08:52 - 2020-01-19 18:05 - 000000000 ____D C:\Program Files\FreeFileSync
2023-11-12 08:02 - 2022-01-04 17:51 - 000002381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk
2023-11-12 07:37 - 2022-12-27 16:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2023-11-12 07:37 - 2022-06-05 05:07 - 000002248 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - marti
2023-11-12 07:37 - 2022-02-15 21:26 - 000002584 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2023-11-12 07:37 - 2020-08-31 21:13 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-11-12 07:37 - 2020-08-31 21:13 - 000003342 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-11-12 07:37 - 2020-08-31 21:13 - 000003094 _____ C:\WINDOWS\system32\Tasks\Java Platform SE Auto Updater
2023-11-12 06:49 - 2022-12-16 17:40 - 000000000 ____D C:\Program Files\trend micro
2023-11-12 06:20 - 2018-08-11 14:47 - 000000000 ____D C:\Users\marti\AppData\Local\Avg
2023-11-11 19:18 - 2020-08-10 04:47 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-10 17:21 - 2023-10-07 17:24 - 000000000 ____D C:\ProgramData\ProductData3
2023-11-10 17:14 - 2023-01-16 20:05 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2023-11-10 16:36 - 2020-11-25 11:25 - 000000000 ____D C:\Users\marti\AppData\Roaming\TeraCopy
2023-11-10 12:06 - 2018-08-11 16:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-11-09 22:45 - 2018-08-11 19:23 - 000000000 ____D C:\Users\marti\.VirtualBox
2023-11-09 21:29 - 2019-01-30 20:14 - 000000000 ____D C:\ProgramData\VirtualBox
2023-11-07 12:09 - 2020-08-31 21:02 - 000000000 ____D C:\Users\marti
2023-11-05 14:11 - 2018-08-12 11:35 - 000000000 ____D C:\Users\marti\AppData\Roaming\TeamViewer
2023-11-05 12:59 - 2023-01-16 18:41 - 000000000 ____D C:\Users\marti\AppData\Roaming\AnyDesk
2023-11-05 07:44 - 2018-09-08 11:39 - 000000000 ____D C:\Users\marti\AppData\Roaming\foobar2000
2023-11-04 10:56 - 2018-08-11 14:44 - 000000000 ____D C:\Users\marti\AppData\Local\Packages
2023-11-04 10:49 - 2020-07-11 16:02 - 000000000 ____D C:\Users\marti\AppData\LocalLow\Temp
2023-11-04 10:43 - 2018-08-12 08:11 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Word
2023-11-03 18:14 - 2018-08-11 16:11 - 000000000 ____D C:\Program Files\Microsoft Office
2023-11-03 18:04 - 2020-01-27 05:23 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Teams
2023-11-03 16:43 - 2021-01-22 06:50 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-10-31 06:05 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-10-29 06:54 - 2018-08-12 11:30 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\PowerPoint
2023-10-29 06:10 - 2019-04-23 05:09 - 000000000 ____D C:\Users\marti\AppData\Roaming\XnViewMP
2023-10-29 04:49 - 2019-04-23 05:09 - 000000000 ____D C:\Program Files\XnViewMP
2023-10-28 20:45 - 2018-08-12 08:11 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Office
2023-10-28 14:09 - 2023-05-12 18:47 - 000000000 ____D C:\Users\marti\AppData\Local\Malwarebytes
2023-10-28 03:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration
2023-10-27 09:24 - 2023-09-28 18:53 - 000003446 _____ C:\WINDOWS\SysWOW64\pubfreeware.ini
2023-10-27 05:29 - 2023-03-04 15:28 - 000002210 _____ C:\WINDOWS\system32\Tasks\WinSysCleanUC
2023-10-23 15:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-10-22 14:33 - 2023-01-16 20:05 - 000000000 ____D C:\ProgramData\AnyDesk
2023-10-20 04:43 - 2018-08-11 14:46 - 000000000 ____D C:\Users\marti\AppData\Local\PlaceholderTileLogoFolder
==================== Files in the root of some directories ========
2023-04-07 21:30 - 2023-07-22 08:44 - 000000000 _____ () C:\Users\marti\yt-dlp.exe
2020-03-18 13:55 - 2020-03-18 13:55 - 000000017 _____ () C:\Users\marti\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by marti (administrator) on DESKTOP-8VOP8FR (Hewlett-Packard p6521cs-m) (16-11-2023 18:34:05)
Running from C:\Portableapps\PortableApps\FRST64\FRST64.exe
Loaded Profiles: marti
Platform: Microsoft Windows 10 Home Version 22H2 19045.3693 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(C:\Portableapps\PortableApps\PortableApps.com\PortableAppsPlatform.exe ->) (Rare Ideas, LLC -> PortableApps.com) C:\Portableapps\PortableApps\RevoUninstallerPortable\RevoUninstallerPortable.exe <2>
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\marti\AppData\Local\FluxSoftware\Flux\flux.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\marti\AppData\Local\Microsoft\OneDrive\23.221.1024.0002\Microsoft.SharePoint.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <13>
(nvvsvc.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2>
(Rare Ideas, LLC -> PortableApps.com) C:\Portableapps\PortableApps\PortableApps.com\PortableAppsPlatform.exe
(services.exe ->) (Ashampoo GmbH & Co. KG -> ) C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 19\LiveTunerService.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe <2>
(services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe <2>
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (AVG Technologies USA, LLC -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
(svchost.exe ->) (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(VS Revo Group Ltd. -> VS Revo Group) C:\Portableapps\PortableApps\RevoUninstallerPortable\App\RevoUninstaller\x64\RevoUn.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572536 2022-12-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [411584 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Ashampoo WinOptimizer Live-Tuner2] => C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 19\LiveTuner2.exe [6378720 2022-01-14] (Ashampoo GmbH & Co. KG -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.1.0\GoogleDriveFS.exe [58442528 2023-11-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.1.0\GoogleDriveFS.exe [58442528 2023-11-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.1.0\GoogleDriveFS.exe [58442528 2023-11-15] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42727840 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Run: [f.lux] => C:\Users\marti\AppData\Local\FluxSoftware\Flux\flux.exe [1527416 2023-09-22] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Run: [GoogleChromeAutoLaunch_5F88CFF07A6B0239025DD2C7ABAE8BA7] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 [2680608 2023-11-07] (Google LLC -> Google LLC)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Run: [MicrosoftEdgeAutoLaunch_4A886EB596DDE810C696BFE47BAAC943] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3894824 2023-11-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {1a21ebfe-9d74-11e8-9923-806e6f6e6963} - "F:\startdvd.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {1a21ec04-9d74-11e8-9923-806e6f6e6963} - "M:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {2ebf689c-81eb-11ed-9da4-001a7dda7111} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {544205f9-c2ed-11ed-9ddc-001a7dda7111} - "M:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {b25ce089-4a56-11eb-9c1b-001a7dda7111} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {d46568e7-445d-11ea-9b19-001a7dda7111} - "L:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.1.0\GoogleDriveFS.exe [58442528 2023-11-15] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\shj2mPC: C:\Windows\System32\spool\prtprocs\x64\shj2mpc.dll [91216 2022-01-24] (联想图像(天津)科技有限公司 -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\HP BA11 Status Monitor: C:\WINDOWS\system32\hpinkstsBA11LM.dll [331664 2012-06-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\shj2m Langmon: C:\WINDOWS\system32\shj2mlm.dll [44264 2019-03-31] (联想图像(天津)科技有限公司 -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\118.0.22914.118\Installer\chrmstp.exe [2023-11-12] (AVG Technologies USA, LLC -> AVG Technologies)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\119.0.6045.125\Installer\chrmstp.exe [2023-11-16] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2023-01-16]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
Startup: C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Start.exe.lnk [2023-04-25]
ShortcutTarget: Start.exe.lnk -> C:\Portableapps\Start.exe (Rare Ideas, LLC -> PortableApps.com)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {E1FB93A9-26BD-49EC-A109-764193A25273} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5190080 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {B3D3674D-A914-4336-A4D8-1564F78A98B6} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [3419016 2023-10-25] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {D5FB62FB-12DB-4B5F-83CF-A852B03B2EDC} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [3419016 2023-10-25] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {88AE53BB-F7F6-45C9-8970-5DCB9E1E8044} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2181560 2023-08-01] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {36227EEB-4515-4C0A-BDA3-E26A93C5270B} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {9984CF99-D1AB-4490-BA76-D07A36560C3D} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {7E223C46-3A1E-4432-A4CC-DC924084D095} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {2062ED67-4945-45DA-A3E3-B9EB4144F9AE} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "0aadb7e4-1ad8-4f1f-b936-6e1a1dcfe210" --version "6.17.10746" --silent
Task: {C73B90AF-8BA0-407A-9394-4083886F7135} - System32\Tasks\CCleanerSkipUAC - marti => C:\Program Files\CCleaner\CCleaner.exe [35664800 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {AEC4FB71-3197-4A79-AB5B-611AB2FADA47} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe [5340232 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
Task: {15601068-A644-424F-A898-13F8961F5863} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-11] (Google Inc -> Google Inc.)
Task: {1784D6A2-0E17-42D0-8B65-18BFF17C23FE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-11] (Google Inc -> Google Inc.)
Task: {B3032501-26D3-47A5-A876-195513CD818F} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60880 2023-11-15] (HP Inc. -> HP Inc.)
Task: {D3088F9A-2FAE-4462-93AD-7077013DAF30} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60880 2023-11-15] (HP Inc. -> HP Inc.)
Task: {D89136DA-81C6-4AF7-B5ED-BE5996D554A1} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [748624 2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
Task: {32692620-93F1-42BD-961C-6D7CF8426591} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {8C7ACF74-D095-47FF-BD3C-A4F351BE0196} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27033280 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {6E92B472-4B75-4B01-B981-4E4FB1BA623E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305088 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {C51A909E-C678-4C07-96BB-B4869F2B65C8} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [305088 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {900C1525-0EBB-417F-AAD9-3B7709A67C4E} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169656 2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {9906AE47-AD70-42CC-9C61-69836AC0CD24} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4431688 2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {0AE9067C-3D70-4491-B0F5-B1CFBE266441} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [549504 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {1BC2699B-910F-4164-9E01-B0DA820C5550} - System32\Tasks\Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask => {82aa0895-198a-4c1b-b2d1-c16894218afb} C:\WINDOWS\System32\unifiedconsent.dll [278016 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
Task: {DF5FA2C7-3BEE-4669-87A4-B89408B05541} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [251904 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
Task: {AC720F10-815D-4F54-A236-3FC1283E00A2} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676256 2023-11-08] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {88BD3502-B7A2-43E5-A118-A174F9B44C99} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [723872 2023-11-08] (Mozilla Corporation -> Mozilla Foundation)
Task: {6E44806A-0AD9-475C-970E-6A114CCC9278} - System32\Tasks\WinSysCleanUC => C:\Program Files\WinSysClean X11 PRO\WinSysClean.exe (No File)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e62b3bb6-bf1d-4b4b-bf4e-179c945db085}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default [2023-11-16]
Edge Extension: (Avira Safe Shopping) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caiblelclndcckfafdaggpephhgfpoip [2022-04-16]
Edge Extension: (Avira Password Manager) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emgfgdclgfeldebanedpihppahgngnle [2023-11-05]
Edge Extension: (Google Docs Offline) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-05]
Edge Extension: (Edge relevant text changes) - C:\Users\marti\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-11-05]
Edge HKLM\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [bojobppfploabceghnmlahpoonbcbacn]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]
FireFox:
========
FF DefaultProfile: 7927ltx3.default-1540227861642
FF ProfilePath: C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\h2oul36n.default-release [2023-11-16]
FF user.js: detected! => C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\h2oul36n.default-release\user.js [2023-05-17]
FF Homepage: Mozilla\Firefox\Profiles\h2oul36n.default-release -> hxxps://www.google.com/
FF SearchPlugin: C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\h2oul36n.default-release\searchplugins\mybingsearch.xml [2022-01-28]
FF ProfilePath: C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642 [2023-11-16]
FF user.js: detected! => C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\user.js [2023-05-17]
FF DownloadDir: E:\Downloads
FF Homepage: Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642 -> hxxps://www.seznam.cz/
FF Extension: (AVG Online Security) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\aos@avg.com.xpi [2023-11-12]
FF Extension: (Save as PDF) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\save-as-pdf-ff@pdfcrowd.com.xpi [2022-12-17]
FF Extension: (Gesturefy) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\{506e023c-7f2b-40a3-8066-bc5deb40aebe}.xpi [2023-10-09]
FF Extension: (Copy/Paste and Save tabs list) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\{a596357b-5d1f-4e04-ba81-4013c6d7d34e}.xpi [2022-01-28]
FF Extension: (Video DownloadHelper) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-08-26]
FF Extension: (No Name) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-06-20]
FF Extension: (DownThemAll!) - C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2023-08-28]
FF SearchPlugin: C:\Users\marti\AppData\Roaming\Mozilla\Firefox\Profiles\7927ltx3.default-1540227861642\searchplugins\mybingsearch.xml [2022-01-28]
FF Plugin: @java.com/DTPlugin,version=11.381.2 -> C:\Program Files\Java\jre-1.8\bin\dtplugin\npDeployJava1.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.381.2 -> C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1582.3\npAvgBrowserUpdate3.dll [2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1582.3\npAvgBrowserUpdate3.dll [2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
Chrome:
=======
CHR Profile: C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default [2023-11-16]
CHR Extension: (Google Translate) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2023-03-31]
CHR Extension: (Avira Password Manager) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2023-11-05]
CHR Extension: (Videostream for Google Chromecast™) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\cnciopoikihiagdjbjpnocolokfelagl [2021-06-01]
CHR Extension: (Google+) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdidnckmm [2018-08-11]
CHR Extension: (Legacy MindMup (discontinued)) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnenaecjcgeppfpaokiifokeieopppej [2018-08-11]
CHR Extension: (Avira Browser Safety) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2022-10-31]
CHR Extension: (Google Docs Offline) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-07]
CHR Extension: (Atavi bookmarks) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfephclnnkjfkfnmmcjampphpfgijgae [2018-08-11]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2023-11-12]
CHR Extension: (Chrome Remote Desktop) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2022-12-11]
CHR Extension: (Dropbox) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2018-08-11]
CHR Extension: (CrxMouse Chrome™ Gestures) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlgkpaicikihijadgifklkbpdajbkhjo [2022-12-11]
CHR Extension: (uExport - Export Youtube Playlist) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\lejaffghgmobbadpemdfahpemdppddmf [2022-01-29]
CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-26]
CHR Extension: (Video DownloadHelper) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2023-08-26]
CHR Extension: (Google Maps) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2018-08-11]
CHR Extension: (AVG SafePrice | Comparison, deals, coupons) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2023-05-29]
CHR Extension: (OneDrive) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2018-08-11]
CHR Extension: (Save to Pocket) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2022-11-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Extension: (Picasa) - C:\Users\marti\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2018-08-11]
CHR HKLM\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKU\S-1-5-21-909500843-76453422-3379895302-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [5525576 2023-11-09] (philandro Software GmbH -> AnyDesk Software GmbH)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [843192 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2406848 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [875960 2023-10-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [9136576 2023-11-15] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [209224 2022-12-13] (AVG Technologies USA, LLC -> AVG Technologies)
S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\118.0.22914.118\elevation_service.exe [1879832 2023-10-25] (AVG Technologies USA, LLC -> AVG Technologies)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2021-05-31] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1074080 2023-10-10] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12876472 2023-11-03] (Microsoft Corporation -> Microsoft Corporation)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2358800 2022-05-20] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230360 2023-11-15] (HP Inc. -> HP Inc.)
S3 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-12-27] (Huawei Technologies Co., Ltd. -> ) [File not signed]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9316040 2023-10-28] (Malwarebytes Inc. -> Malwarebytes)
S3 nebula; C:\Program Files\Logitech\Collaboration\Services\Video\ServiceLayer.exe [4490376 2020-09-18] (Logitech Inc -> Logitech)
S3 OfficeSvcManagerAddons; C:\WINDOWS\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [22384 2023-11-15] (Microsoft Windows -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [18035512 2023-10-18] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 TeraCopyService; C:\Program Files\TeraCopy\TeraCopyService.exe [112944 2020-08-15] (Code Sector -> )
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [802752 2023-10-12] (Oracle Corporation -> Oracle and/or its affiliates)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WO_LiveService2; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 19\LiveTunerService.exe [307936 2022-01-14] (Ashampoo GmbH & Co. KG -> )
S3 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.231\WsAppService.exe [493792 2017-10-24] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [135296 2022-12-19] (Alcorlink Corp. -> )
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 AVER_H193; C:\WINDOWS\system32\drivers\AVer888RC_64.sys [543616 2009-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AVerMedia TECHNOLOGIES, Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [240616 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [394048 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [297912 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [96504 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [25064 2022-10-14] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [39680 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [275208 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [561816 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [105280 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [80568 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [952384 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [710072 2023-11-15] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [213336 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [319712 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> AVG Technologies CZ, s.r.o.)
S3 cpuz145; no ImagePath
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 DSI_SiUSBXp_3_1; C:\WINDOWS\system32\drivers\DSI_SiUSBXp_3_1.sys [16384 2007-09-06] (Silicon Laboratories) [File not signed]
R1 googledrivefs31357; C:\WINDOWS\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-10-23] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HPMoA407; C:\WINDOWS\System32\drivers\HPMoA407.sys [25088 2011-10-31] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
R3 HPubA407; C:\WINDOWS\System32\Drivers\HPubA407.sys [18944 2012-06-14] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard.)
R2 LiveTuner2PM; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 19\LiveTuner64.sys [24200 2022-01-28] (Ashampoo GmbH & Co. KG -> )
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-02-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 MDA_NTDRV; C:\WINDOWS\system32\MDA_NTDRV.sys [21208 2018-09-02] (北京铠信神州科技有限责任公司 -> )
R3 pikbd; C:\WINDOWS\System32\drivers\pikbd.sys [26088 2016-04-09] (Christian Gulden -> Christian Gulden)
R3 pimou; C:\WINDOWS\System32\drivers\pimou.sys [24600 2015-09-13] (Christian Gulden -> Christian Gulden)
S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU CO LTD -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2018-03-02] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2019-04-21] (Shenzhen Wondershare Information Technology Co., Ltd. -> Apple, Inc.)
S3 usbscan; C:\WINDOWS\System32\drivers\usbscan.sys [49152 2020-08-31] (Microsoft Corporation) [File not signed]
R3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [251776 2023-10-12] (Oracle Corporation -> Oracle and/or its affiliates)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [262648 2023-10-12] (Oracle Corporation -> Oracle and/or its affiliates)
R1 VBoxSup; C:\WINDOWS\system32\DRIVERS\VBoxSup.sys [1060600 2023-10-12] (Oracle Corporation -> Oracle and/or its affiliates)
S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [187752 2023-07-12] (Oracle Corporation -> Oracle and/or its affiliates)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55856 2023-10-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [572712 2023-10-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-07] (Microsoft Windows -> Microsoft Corporation)
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\drivers\win10_amd64\AscRegistryFilter.sys [X]
U3 aswbdisk; no ImagePath
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]
S3 cpuz152; \??\C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [X]
S3 HWiNFO_180; \??\C:\Users\marti\AppData\Local\Temp\HWiNFO64A_180.SYS [X] <==== ATTENTION
S3 iobit_monitor_server2021; \??\C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\drivers\Monitor_win10_x64.sys [X]
U3 SARPSvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-11-15 15:13 - 2023-11-15 15:13 - 000000000 ___HD C:\$WinREAgent
2023-11-15 14:26 - 2023-11-15 14:26 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-909500843-76453422-3379895302-1001
2023-11-15 14:26 - 2023-11-15 14:26 - 000002422 _____ C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-11-12 08:35 - 2023-11-12 08:35 - 000000000 ____D C:\Users\marti\OneDrive\Dokumenty\PowerToys
2023-11-08 18:15 - 2023-11-10 12:06 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-11-05 18:56 - 2023-11-12 08:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\PowerToys
2023-11-05 18:56 - 2023-11-05 18:56 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerToys (Preview)
2023-11-05 18:56 - 2023-11-05 18:56 - 000000000 ____D C:\Users\marti\AppData\Local\ToastNotificationManagerCompat
2023-11-05 18:56 - 2023-11-05 18:56 - 000000000 ____D C:\Users\marti\AppData\Local\PowerToys
2023-11-05 18:54 - 2023-11-05 18:56 - 000000000 ____D C:\Users\marti\AppData\Local\Package Cache
2023-11-04 11:05 - 2023-11-04 11:05 - 000002205 _____ C:\Users\marti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk
2023-11-04 11:05 - 2023-11-04 11:05 - 000000000 ____D C:\Users\marti\AppData\Local\FluxSoftware
2023-11-03 18:15 - 2023-11-03 18:15 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-11-03 17:00 - 2023-11-16 18:15 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-31 16:06 - 2023-10-31 16:06 - 000000000 ____D C:\Users\marti\AppData\Roaming\PhotoFiltre 7
2023-10-31 06:05 - 2023-11-15 14:26 - 000004266 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2023-10-31 06:05 - 2023-10-31 06:05 - 000313272 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2023-10-29 18:58 - 2023-11-16 05:19 - 000446096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-29 04:49 - 2023-10-29 04:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView MP
2023-10-25 15:50 - 2023-10-29 04:17 - 000003048 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-10-25 15:50 - 2023-10-29 04:06 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-10-25 15:50 - 2023-10-27 05:28 - 000003102 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-10-25 04:44 - 2023-10-25 04:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2023-10-25 04:44 - 2023-10-12 10:05 - 001060600 _____ (Oracle and/or its affiliates) C:\WINDOWS\system32\Drivers\VBoxSup.sys
2023-10-25 04:44 - 2023-10-12 10:05 - 000201328 _____ (Oracle and/or its affiliates) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-11-16 18:36 - 2021-02-09 16:23 - 000000000 ____D C:\Users\marti\AppData\Roaming\vlc
2023-11-16 18:34 - 2022-12-16 17:36 - 000000000 ____D C:\FRST
2023-11-16 18:31 - 2022-02-10 17:00 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-11-16 18:30 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-11-16 18:29 - 2021-12-18 00:28 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-11-16 18:29 - 2018-08-11 14:49 - 000000000 ____D C:\Program Files (x86)\Google
2023-11-16 18:26 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-11-16 18:24 - 2022-12-23 10:56 - 000000000 ____D C:\ProgramData\Piriform
2023-11-16 18:23 - 2021-07-11 16:08 - 000000000 ____D C:\WINDOWS\Minidump
2023-11-16 18:23 - 2018-09-27 18:06 - 000000000 ____D C:\Users\marti\AppData\Local\CrashDumps
2023-11-16 18:22 - 2021-01-30 09:34 - 000000000 ____D C:\Program Files\CCleaner
2023-11-16 18:21 - 2020-08-31 21:14 - 001847486 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-11-16 18:21 - 2019-12-07 15:41 - 000779128 _____ C:\WINDOWS\system32\perfh005.dat
2023-11-16 18:21 - 2019-12-07 15:41 - 000168364 _____ C:\WINDOWS\system32\perfc005.dat
2023-11-16 18:15 - 2020-12-21 20:50 - 000000000 ____D C:\ProgramData\AVG
2023-11-16 18:15 - 2020-08-31 21:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-11-16 18:15 - 2018-08-12 11:34 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2023-11-16 06:27 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-11-16 06:26 - 2020-08-31 21:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-11-16 05:31 - 2018-08-11 14:50 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-11-16 05:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-11-16 05:22 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-11-16 05:18 - 2020-12-23 16:36 - 000000000 ____D C:\Program Files (x86)\IObit
2023-11-15 20:53 - 2019-12-07 15:44 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-11-15 20:53 - 2019-12-07 15:44 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-11-15 20:53 - 2019-12-07 15:41 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2023-11-15 20:53 - 2019-12-07 15:41 - 000000000 ____D C:\WINDOWS\system32\cs
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-15 20:53 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-11-15 20:53 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2023-11-15 15:36 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-11-15 15:25 - 2020-08-31 21:05 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-11-15 14:35 - 2018-08-11 16:13 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-11-15 14:32 - 2022-03-24 18:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2023-11-15 14:32 - 2022-01-26 17:22 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2023-11-15 14:32 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-11-15 14:31 - 2018-08-11 14:45 - 000000000 ____D C:\Users\marti\AppData\Local\Publishers
2023-11-15 14:30 - 2021-09-22 17:27 - 000002140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-11-15 14:29 - 2018-08-11 16:13 - 182871392 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-11-15 14:26 - 2021-12-14 17:58 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-909500843-76453422-3379895302-1001
2023-11-15 14:24 - 2020-08-31 21:13 - 000003830 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-11-15 14:24 - 2020-08-31 21:13 - 000003706 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-11-12 21:30 - 2020-01-19 18:05 - 000000000 ____D C:\Users\marti\AppData\Roaming\FreeFileSync
2023-11-12 14:02 - 2020-12-23 16:35 - 000000000 ____D C:\Users\marti\AppData\Roaming\IObit
2023-11-12 14:02 - 2020-12-23 16:35 - 000000000 ____D C:\ProgramData\IObit
2023-11-12 14:00 - 2020-12-23 16:36 - 000000000 ____D C:\ProgramData\ProductData
2023-11-12 08:52 - 2020-01-19 18:05 - 000000979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeFileSync.lnk
2023-11-12 08:52 - 2020-01-19 18:05 - 000000965 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealTimeSync.lnk
2023-11-12 08:52 - 2020-01-19 18:05 - 000000000 ____D C:\Program Files\FreeFileSync
2023-11-12 08:02 - 2022-01-04 17:51 - 000002381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk
2023-11-12 07:37 - 2022-12-27 16:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2023-11-12 07:37 - 2022-06-05 05:07 - 000002248 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - marti
2023-11-12 07:37 - 2022-02-15 21:26 - 000002584 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2023-11-12 07:37 - 2020-08-31 21:13 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-11-12 07:37 - 2020-08-31 21:13 - 000003342 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-11-12 07:37 - 2020-08-31 21:13 - 000003094 _____ C:\WINDOWS\system32\Tasks\Java Platform SE Auto Updater
2023-11-12 06:49 - 2022-12-16 17:40 - 000000000 ____D C:\Program Files\trend micro
2023-11-12 06:20 - 2018-08-11 14:47 - 000000000 ____D C:\Users\marti\AppData\Local\Avg
2023-11-11 19:18 - 2020-08-10 04:47 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-11-10 17:21 - 2023-10-07 17:24 - 000000000 ____D C:\ProgramData\ProductData3
2023-11-10 17:14 - 2023-01-16 20:05 - 000000000 ____D C:\Program Files (x86)\AnyDesk
2023-11-10 16:36 - 2020-11-25 11:25 - 000000000 ____D C:\Users\marti\AppData\Roaming\TeraCopy
2023-11-10 12:06 - 2018-08-11 16:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-11-09 22:45 - 2018-08-11 19:23 - 000000000 ____D C:\Users\marti\.VirtualBox
2023-11-09 21:29 - 2019-01-30 20:14 - 000000000 ____D C:\ProgramData\VirtualBox
2023-11-07 12:09 - 2020-08-31 21:02 - 000000000 ____D C:\Users\marti
2023-11-05 14:11 - 2018-08-12 11:35 - 000000000 ____D C:\Users\marti\AppData\Roaming\TeamViewer
2023-11-05 12:59 - 2023-01-16 18:41 - 000000000 ____D C:\Users\marti\AppData\Roaming\AnyDesk
2023-11-05 07:44 - 2018-09-08 11:39 - 000000000 ____D C:\Users\marti\AppData\Roaming\foobar2000
2023-11-04 10:56 - 2018-08-11 14:44 - 000000000 ____D C:\Users\marti\AppData\Local\Packages
2023-11-04 10:49 - 2020-07-11 16:02 - 000000000 ____D C:\Users\marti\AppData\LocalLow\Temp
2023-11-04 10:43 - 2018-08-12 08:11 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Word
2023-11-03 18:14 - 2018-08-11 16:11 - 000000000 ____D C:\Program Files\Microsoft Office
2023-11-03 18:04 - 2020-01-27 05:23 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Teams
2023-11-03 16:43 - 2021-01-22 06:50 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-10-31 06:05 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-10-29 06:54 - 2018-08-12 11:30 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\PowerPoint
2023-10-29 06:10 - 2019-04-23 05:09 - 000000000 ____D C:\Users\marti\AppData\Roaming\XnViewMP
2023-10-29 04:49 - 2019-04-23 05:09 - 000000000 ____D C:\Program Files\XnViewMP
2023-10-28 20:45 - 2018-08-12 08:11 - 000000000 ____D C:\Users\marti\AppData\Roaming\Microsoft\Office
2023-10-28 14:09 - 2023-05-12 18:47 - 000000000 ____D C:\Users\marti\AppData\Local\Malwarebytes
2023-10-28 03:06 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Registration
2023-10-27 09:24 - 2023-09-28 18:53 - 000003446 _____ C:\WINDOWS\SysWOW64\pubfreeware.ini
2023-10-27 05:29 - 2023-03-04 15:28 - 000002210 _____ C:\WINDOWS\system32\Tasks\WinSysCleanUC
2023-10-23 15:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-10-22 14:33 - 2023-01-16 20:05 - 000000000 ____D C:\ProgramData\AnyDesk
2023-10-20 04:43 - 2018-08-11 14:46 - 000000000 ____D C:\Users\marti\AppData\Local\PlaceholderTileLogoFolder
==================== Files in the root of some directories ========
2023-04-07 21:30 - 2023-07-22 08:44 - 000000000 _____ () C:\Users\marti\yt-dlp.exe
2020-03-18 13:55 - 2020-03-18 13:55 - 000000017 _____ () C:\Users\marti\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Re: Preventivní kontrola PC (mmmzzz@seznam.cz)
Pouzi fixlist:
Kód: Vybrat vše
Start
CloseProcesses:
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {1a21ebfe-9d74-11e8-9923-806e6f6e6963} - "F:\startdvd.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {1a21ec04-9d74-11e8-9923-806e6f6e6963} - "M:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {2ebf689c-81eb-11ed-9da4-001a7dda7111} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {544205f9-c2ed-11ed-9ddc-001a7dda7111} - "M:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {b25ce089-4a56-11eb-9c1b-001a7dda7111} - "H:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-909500843-76453422-3379895302-1001\...\MountPoints2: {d46568e7-445d-11ea-9b19-001a7dda7111} - "L:\HiSuiteDownLoader.exe"
Task: {6E44806A-0AD9-475C-970E-6A114CCC9278} - System32\Tasks\WinSysCleanUC => C:\Program Files\WinSysClean X11 PRO\WinSysClean.exe (No File)
2023-11-12 14:02 - 2020-12-23 16:35 - 000000000 ____D C:\ProgramData\IObit
2023-11-16 05:18 - 2020-12-23 16:36 - 000000000 ____D C:\Program Files (x86)\IObit
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\drivers\win10_amd64\AscRegistryFilter.sys [X]
U3 aswbdisk; no ImagePath
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]
S3 cpuz152; \??\C:\WINDOWS\temp\cpuz152\cpuz152_x64.sys [X]
S3 HWiNFO_180; \??\C:\Users\marti\AppData\Local\Temp\HWiNFO64A_180.SYS [X] <==== ATTENTION
S3 iobit_monitor_server2021; \??\C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\drivers\Monitor_win10_x64.sys [X]
U3 SARPSvc; no ImagePath
Task: {6E44806A-0AD9-475C-970E-6A114CCC9278} - System32\Tasks\WinSysCleanUC => C:\Program Files\WinSysClean X11 PRO\WinSysClean.exe (No File)
EmptyTemp:
Reboot:
End
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?