Stránka 1 z 2

Neustálé vytížení CPU

Napsal: 02 pro 2024 20:23
od krysarr
Před nějakou dobou jsem řešil velké vytížení CPU ve vlákně zde:

https://forum.viry.cz/viewtopic.php?t=160050

Tenkrát jsme na nic nepřišli.
Od té doby se situace zhoršuje a procesor je skoro pořád na 100 %, bez ohledu na to, zda je používán Zoom nebo jiný program.
V podstatě každá operace, i sebejednodušší, vyžene vytížení procesoru nahoru a vše trvá neúměrně dlouho. :(

Chci vyloučit napadení počítače, abych pak mohl promyslet další způsoby řešení.
V extrémním případě, pokud situaci nevyřeším, budu muset koupit nový počítač (ačkoli tento není ani deset let starý a doteď fungoval bez problémů).

-----------------------------------
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-11-2024
Ran by fbart (administrator) on DESKTOP-1NAN9QR (HP HP ProBook 450 G4) (02-12-2024 20:10:24)
Running from D:\SOFTWARE\FRST\FRST64.exe
Loaded Profiles: fbart
Platform: Microsoft Windows 10 Home Version 22H2 19045.5198 (X64) Language: Czech (Czech Republic) -> English (United Kingdom)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5>
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\bckp_amgr.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\monitoring-mini.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\bin\task-manager.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Acronis\Agent\bin\adp-agent.exe
(C:\Program Files (x86)\Acronis\Agent\aakore.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Acronis\Agent\bin\updater.exe
(C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe ->) (Acronis International GmbH -> Acronis International GmbH.) C:\Program Files (x86)\Acronis\Agent\bin\adp-rest-util.exe
(C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.63\msedgewebview2.exe <16>
(C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\Google\Drive File Stream\100.0.2.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\100.0.2.0\crashpad_handler.exe
(C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe ->) (DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpCardEngine.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Program Files\Zoom\bin\Zoom.exe ->) (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Program Files\Zoom\bin\zWebview2Agent.exe
(C:\Windows\CxSvc\CxAudioSvc.exe ->) (Synaptics Incorporated -> Conexant Systems LLC.) C:\Program Files\CONEXANT\SA3\HP-NB-AIO\SmartAudio3.exe
(C:\Windows\CxSvc\CxAudioSvc.exe ->) (Synaptics Incorporated -> Conexant Systems, Inc) C:\Program Files\CONEXANT\Flow\Flow.exe
(DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_fa320f297f405a33\HotKeyServiceUWP.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_fa320f297f405a33\HPHotkeyNotification.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\igfxEM.exe
(explorer.exe ->) (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\Audition.exe
(explorer.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe
(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\100.0.2.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Lingea s.r.o. -> Lingea s.r.o.) C:\Program Files (x86)\Lingea\Lexicon7\Lexicon.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office10\EXCEL.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE
(explorer.exe ->) (Microsoft Corporation) [File not signed] C:\Program Files\Classic Paint\mspaint1.exe <7>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\perfmon.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SndVol.exe
(explorer.exe ->) (MUSIC Tribe Brands DE GmbH -> ) C:\Program Files\BEHRINGER\UMC_Audio_Driver\x64\UMCAudioCplApp.exe
(explorer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <6>
(explorer.exe ->) (VideoLAN -> VideoLAN) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(explorer.exe ->) (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) C:\Program Files\Zoom\bin\Zoom.exe <3>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <42>
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <43>
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(services.exe ->) (Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Acronis\Agent\aakore.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(services.exe ->) (Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Cloud Client Services\Hub.exe
(services.exe ->) (Avid Technology, Inc. -> Avid Technology, Inc.) C:\Program Files\Avid\Cloud Client Services\TransportClient.exe
(services.exe ->) (Avid Technology, Inc.) [File not signed] C:\Program Files\Avid\Pro Tools First\MMERefresh.exe
(services.exe ->) (Comodo Security Solutions Inc -> Comodo) C:\Program Files (x86)\COMODO\Dragon\dragon_updater.exe
(services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
(services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe <2>
(services.exe ->) (Conexant Systems LLC.) [File not signed] C:\Windows\CxSvc\CxUtilSvc.exe
(services.exe ->) (DigitalPersona, Inc. -> Crossmatch, Inc.) C:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Hewlett Packard Enterprise Company -> Hewlett Packard Enterprise Company) C:\Program Files (x86)\HP\HP Device Access Manager\HPE.DeviceAccessManager.ServiceHost.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_fa320f297f405a33\HotKeyServiceUWP.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_fa320f297f405a33\HPAudioAnalytics.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_fa320f297f405a33\LanWlanWwanSwitchingServiceUWP.exe
(services.exe ->) (HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\fpCSEvtSvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Shanghai Microvirt Software Technology Co., Ltd. -> ) D:\Program Files\Microvirt\MEmu\MemuService.exe
(services.exe ->) (Smart Sound Technology -> Intel) C:\Windows\System32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
(services.exe ->) (Softland SRL -> Microsoft) C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe
(services.exe ->) (Synaptics Incorporated -> Conexant Systems LLC.) C:\Windows\CxSvc\CxAudioSvc.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2445.7.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(svchost.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <5>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Synaptics Incorporated -> Conexant) C:\Windows\System32\MicTray64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2018-01-18] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320584 2016-06-30] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [427816 2024-11-13] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\...\Run: [DigidesignMMERefresh] => C:\Program Files\Avid\Pro Tools First\MMERefresh.exe [117760 2018-04-03] (Avid Technology, Inc.) [File not signed]
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4116904 2024-10-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [644000 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM\...\Run: [PowerDVD22Agent] => C:\Program Files\CyberLink\PowerDVD22\PowerDVD22Agent.exe [569976 2022-07-14] (CyberLink Corp. -> CyberLink Corp.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [369488 2024-10-12] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-07-23] (Adobe Inc. -> )
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6206360 2021-03-23] (Acronis International GmbH -> )
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\tib_mounter_monitor.exe [446392 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [4834712 2024-11-05] (Opera Norway AS -> Opera Software)
HKLM-x32\...\Run: [CLMLServer_For_P2G13] => C:\Program Files (x86)\CyberLink\Power2Go13\CLMLSvc_P2G13.exe [154296 2019-05-23] (CyberLink Corp. -> CyberLink)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.70\Installer\setup.exe [6871592 2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\100.0.2.0\GoogleDriveFS.exe [61417568 2024-11-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\100.0.2.0\GoogleDriveFS.exe [61417568 2024-11-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45227312 2024-10-15] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\fbart\AppData\Local\Microsoft\Teams\Update.exe [2593928 2024-10-28] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\100.0.2.0\GoogleDriveFS.exe [61417568 2024-11-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [Titan Backup] => C:\Program Files (x86)\Titan Backup\Launcher.exe [142784 2008-12-18] (Neobyte Solutions SRL -> Neobyte Solutions)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [com.squirrel.WhatsApp.WhatsApp] => C:\Users\fbart\AppData\Local\WhatsApp\Update.exe [2412768 2023-06-29] (WhatsApp LLC -> )
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [AvastBrowserAutoLaunch_A606C3A23F722394777472C3610F9B5A] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3171424 2024-11-06] (Avast Software s.r.o. -> Gen Digital Inc.)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [MicrosoftEdgeAutoLaunch_CBC3A2C48DD08E53B4E467E37B52CD84] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3911232 2024-11-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [Power2GoExpress13] => C:\Program Files (x86)\CyberLink\Power2Go13\Power2GoExpress.exe [3699184 2020-08-25] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [CyberlinkPowerPlayerMediaServer_PowerDVD22] => C:\Program Files\CyberLink\PowerDVD22\Common\CLMediaServer\clmediaserver.exe [6775928 2022-07-14] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [Mozilla-Firefox-E7CF176E110C211B] => "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -os-autostart [671808 2024-12-01] (Mozilla Corporation -> Mozilla Corporation)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Run: [Opera Stable] => C:\Program Files\Opera\opera.exe [1573784 2024-12-02] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\fbart\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\fbart\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\RunOnce: [Uninstall 24.211.1020.0001\i386] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\fbart\AppData\Local\Microsoft\OneDrive\24.211.1020.0001\i386" [0 2024-11-27] () <==== ATTENTION [zero byte File/Folder]
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\RunOnce: [Uninstall 24.211.1020.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\fbart\AppData\Local\Microsoft\OneDrive\24.211.1020.0001" [0 2024-11-27] () <==== ATTENTION [zero byte File/Folder]
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\100.0.2.0\GoogleDriveFS.exe [61417568 2024-11-18] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2017-01-10] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\doPDF 7 Monitor: C:\windows\system32\dopdfmn7.dll [25920 2016-12-29] (Softland S.R.L. -> Softland)
HKLM\...\Print\Monitors\HPLJ1020LM: C:\windows\system32\zlhp1020.dll [192512 2017-01-10] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\novaPDF 10 Port Monitor: C:\windows\system32\novamn10.dll [18944 2020-04-01] (Softland) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\92.2.11577.159\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\131.0.6778.86\Installer\chrmstp.exe [2024-11-22] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\130.0.27176.93\Installer\chrmstp.exe [2024-11-12] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\86.1.6782.183\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{77B7ED10-A641-4766-A428-8B9EE42E830A}] -> C:\windows\system32\DPCrProv2.dll [2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{E85E7D14-653B-4E51-9BC5-E5F9EC9BC51D}] -> C:\windows\system32\DPCrProv2.dll [2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F0C31759-99A6-493E-AD7D-7F69126CDFBC}] -> C:\windows\system32\DPCrProv2.dll [2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F731030D-3272-4D8B-A21A-3940EF268453}] -> C:\windows\system32\DPCrProv2.dll [2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{DCFB2A33-814B-4236-BFBD-FFEA3F528385}] -> C:\windows\system32\DPCrProv2.dll [2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
Lsa: [Notification Packages] DPPassFilter scecli
Startup: C:\Users\fbart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\englishme!.lnk [2023-04-27]
ShortcutTarget: englishme!.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avid Link.lnk [2019-06-24]
ShortcutTarget: Avid Link.lnk -> C:\Program Files\Avid\Avid Link\Avid Link.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP JumpStart Launch.lnk [2016-10-30]
ShortcutTarget: HP JumpStart Launch.lnk -> c:\Windows\Installer\{0F5EBB0D-DF6D-4DBE-9789-57BF05B3B0FD}\HPlogo_blue.ico () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2018-05-28]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\UMC Control Panel Autostart.lnk [2023-07-26]
ShortcutTarget: UMC Control Panel Autostart.lnk -> C:\Program Files\BEHRINGER\UMC_Audio_Driver\x64\UMCAudioCplApp.exe (MUSIC Tribe Brands DE GmbH -> )
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {493ED88C-79E7-4817-9B2A-FE032ABEB371} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {1CC38B53-A328-4DB6-AEEB-82D4015A1931} - System32\Tasks\Adobe Creative Cloud => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [779504 2021-07-23] (Adobe Inc. -> Adobe Inc.)
Task: {6B5B4081-A1E3-4A3B-BADE-0B52049EDD6F} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4116904 2024-10-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {88230B8F-345E-49AC-BD10-725BEAFDB554} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [4455336 2024-10-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {E7302411-1508-44D7-8596-AC3C28BC26CD} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3171424 2024-11-06] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {BD0EB86B-ADC0-476E-854A-748D90D679C8} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3171424 2024-11-06] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {6D3DE139-8514-4DF0-817B-B4EC38A6961F} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [5209384 2024-11-13] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {94333FE9-C5A2-412C-B30A-BFC66C47FF8E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2295192 2023-01-31] (Avast Software s.r.o. -> Avast Software)
Task: {E22EA86F-0E37-4E75-876E-920F204553E4} - System32\Tasks\AvastBrowserProtectS-1-5-21-2002658774-1703651359-3694545506-1002 => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1690008 2024-04-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {98A0AFCD-BB66-4C41-B5EE-F58EC42B9728} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {0315D22F-55A8-4872-B593-CBA6743545C8} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {1B722D39-16E9-4443-8BB6-4524377057C7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-10-15] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {EE5CEC18-FC7D-4F36-A6E1-F3287FF74EBF} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536 2024-10-15] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "d69b8913-fbe2-4c6b-8e6b-b8083f51231d" --version "6.29.11342" --silent
Task: {E4043D11-6B42-41B7-A790-963B06103110} - System32\Tasks\CCleanerSkipUAC - fbart => C:\Program Files\CCleaner\CCleaner.exe [39090480 2024-10-15] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {1F61D2F6-8386-4C6F-ACF2-0958A10E5709} - System32\Tasks\CLToast => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2319632 2022-04-14] (CyberLink Corp. -> )
Task: {A7ACEEE8-0335-4289-8C2C-34EFF6E15D2A} - System32\Tasks\CLToastRun => C:\Program Files (x86)\CyberLink\Shared files\CLToast.exe [2319632 2022-04-14] (CyberLink Corp. -> )
Task: {338E88A2-EDFB-4A81-98EA-CBAD8E7F6728} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {C0C70F2E-A974-4FF8-95A4-661E8091DA9C} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {C11EB089-78EE-48DE-9BA7-359A83745372} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {2364088E-19F8-4F7A-8A88-80C74475F615} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {93E3645D-9929-4696-B45E-6727B7D982D3} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {15F9F943-91F3-431B-A068-68EF69CFC841} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {1A0E7D9A-2E5D-49C7-A1B9-997A203B84D5} - System32\Tasks\doPDF 10 Telemetry => C:\Program Files\Softland\novaPDF 10\Driver\GoogleAnalytics.exe [51504 2020-04-01] (Softland SRL -> )
Task: {C41907C5-040E-47F9-B799-F8BF33066A01} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{CB8D6017-2993-48A7-AE06-D4F2E3C424E4} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {6E63C272-93D0-4442-908D-4D969E42433F} - System32\Tasks\HPEA3JOBS => C:\Program -> Files\HP\HP ePrint\hpeprint.exe /CheckJobs
Task: {468B8D09-A923-4767-A43B-646993EA1D39} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [17335976 2017-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9BF8FCA5-10F7-470D-B2A8-275CC647D078} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [17335976 2017-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD5A8FA8-06EA-446B-A5F8-180A99237DD3} - System32\Tasks\Microsoft\Windows\Conexant\MicTray => C:\Windows\System32\MicTray64.exe [5009512 2020-06-13] (Synaptics Incorporated -> Conexant)
Task: {F32BBD50-5B69-4697-B343-05065404B3A6} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [34368 2024-12-01] (Mozilla Corporation -> Mozilla Foundation)
Task: {8176DF82-1E23-48FD-968F-63FBE865BFA3} - System32\Tasks\Opera scheduled assistant Autoupdate 1582720617 => C:\Program Files\Opera\launcher.exe [1573784 2024-12-02] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {B2EDA764-D656-4202-BA98-2F4510505CDF} - System32\Tasks\Opera scheduled Autoupdate 1487236436 => C:\Program Files\Opera\autoupdate\opera_autoupdate.exe [5812120 2024-11-28] (Opera Norway AS -> Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.10.10.10 10.100.0.100
Tcpip\..\Interfaces\{7bb2afef-f054-4d68-bdc1-066d09ae6753}: [NameServer] 156.154.70.22,156.154.71.22
Tcpip\..\Interfaces\{7bb2afef-f054-4d68-bdc1-066d09ae6753}: [DhcpNameServer] 10.10.10.10 10.100.0.100
Tcpip\..\Interfaces\{7bb2afef-f054-4d68-bdc1-066d09ae6753}\6556A6D696E656B6: [NameServer] 156.154.70.22,156.154.71.22
Tcpip\..\Interfaces\{7bb2afef-f054-4d68-bdc1-066d09ae6753}\6556A6D696E656B6: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7bb2afef-f054-4d68-bdc1-066d09ae6753}\D6F647F602764313F553130343: [NameServer] 156.154.70.22,156.154.71.22
Tcpip\..\Interfaces\{7bb2afef-f054-4d68-bdc1-066d09ae6753}\D6F647F602764313F553130343: [DhcpNameServer] 192.168.132.130
Tcpip\..\Interfaces\{9a41f277-0fa9-4555-953f-aa9788cd4df8}: [DhcpNameServer] 10.10.10.10 10.100.0.100

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\fbart\AppData\Local\Microsoft\Edge\User Data\Default [2024-12-02]
Edge Session Restore: Default -> is enabled.
Edge Extension: (Google Docs Offline) - C:\Users\fbart\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-07-27]
Edge Extension: (Edge relevant text changes) - C:\Users\fbart\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-03]

FireFox:
========
FF DefaultProfile: xs1zf06h.default-1602174025168
FF ProfilePath: C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168 [2024-12-02]
FF Session Restore: Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168 -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168 -> hxxps://app.slack.com; hxxps://my.jdownloader.org; hxxps://www.facebook.com
FF Extension: (Facebook Container) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\@contain-facebook.xpi [2023-07-21]
FF Extension: (German Dictionary, extended for Austria) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\de-AT@dictionaries.addons.mozilla.org.xpi [2022-11-24]
FF Extension: (German Dictionary (Switzerland)) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\de-CH@dictionaries.addons.mozilla.org.xpi [2022-11-24]
FF Extension: (German Dictionary) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\de-DE@dictionaries.addons.mozilla.org.xpi [2022-11-24]
FF Extension: (LexFox) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\info@lingea.com.xpi [2021-08-17] [UpdateUrl:hxxps://www.lingea.eu/updates/lexfox/update.json]
FF Extension: (MyJDownloader Browser Extension) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2023-04-28] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: (Language: Deutsch (German)) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\langpack-de@firefox.mozilla.org.xpi [2024-12-01]
FF Extension: (Photon Colors) - C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168\Extensions\{2c6c94f3-c656-41e9-aa4b-1edba5be9c21}.xpi [2021-07-31]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2021-07-23] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-09-14] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-09-14] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-09-14] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-09-14] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-09-14] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.18 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.19 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.21 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2021-07-23] (Adobe Inc. -> Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\fbart\AppData\Local\Google\Chrome\User Data\Default [2024-12-02]
CHR Notifications: Default -> hxxps://www.instagram.com
CHR Session Restore: Default -> is enabled.
CHR Extension: (Application Launcher For Drive (by Google)) - C:\Users\fbart\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-09-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\fbart\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-05-21]
CHR Extension: (ZED: Zoom Easy Downloader) - C:\Users\fbart\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdadlkbckhinonakkfkdaadceojbekep [2024-09-26]
CHR HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\fbart\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx <not found>
CHR HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

Opera:
=======
OPR DefaultProfile: Default
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\opera.exe

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aakore; C:\Program Files (x86)\Acronis\Agent\aakore.exe [9022120 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [12952232 2021-03-23] (Acronis International GmbH -> )
S4 AcronisCyberProtectionService; C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe [1425256 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1052280 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S3 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [842480 2021-07-23] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6391536 2021-08-01] (Acronis International GmbH -> )
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [103776 2024-10-02] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7308072 2024-11-13] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [776488 2024-11-13] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [1222952 2024-11-13] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\130.0.27176.93\elevation_service.exe [1880632 2024-11-06] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
R2 AvidHubService; C:\Program Files\Avid\Cloud Client Services\Hub.exe [2299208 2017-11-09] (Avid Technology, Inc. -> Avid Technology, Inc.)
R2 AvidTransportClient; C:\Program Files\Avid\Cloud Client Services\TransportClient.exe [7067464 2017-11-09] (Avid Technology, Inc. -> Avid Technology, Inc.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-10-15] (Gen Digital Inc. -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7923888 2017-10-12] (Microsoft Corporation -> Microsoft Corporation)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2675504 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R2 CxAudioSvc; C:\WINDOWS\CxSvc\CxAudioSvc.exe [96432 2020-09-08] (Synaptics Incorporated -> Conexant Systems LLC.)
R2 CxUtilSvc; C:\WINDOWS\CxSvc\CxUtilSvc.exe [166400 2019-06-25] (Conexant Systems LLC.) [File not signed]
R2 DigiRefresh; C:\Program Files\Avid\Pro Tools First\MMERefresh.exe [117760 2018-04-03] (Avid Technology, Inc.) [File not signed]
S3 digiSPTIService64; C:\Program Files\Avid\Pro Tools First\digisptiservice64.exe [197632 2018-04-03] (Avid Technology, Inc.) [File not signed]
R2 DpHost; c:\Program Files\HP\HP ProtectTools Security Manager\Bin\DpHostW.exe [527296 2016-07-19] (DigitalPersona, Inc. -> Crossmatch, Inc.)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2261768 2024-10-29] (Comodo Security Solutions Inc -> Comodo)
S3 FLCDLOCK; c:\windows\SysWOW64\flcdlock.exe [567888 2016-08-11] (Hewlett Packard Enterprise Company -> Hewlett-Packard Company)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2494448 2024-09-12] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 fpCsEvtSvc; C:\WINDOWS\System32\fpCSEvtSvc.exe [22424 2019-05-05] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 HotKeyServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_fa320f297f405a33\HotKeyServiceUWP.exe [1497672 2024-04-30] (HP Inc. -> HP Inc.)
R2 HPAudioAnalytics; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_fa320f297f405a33\HPAudioAnalytics.exe [541152 2024-04-30] (HP Inc. -> HP Inc.)
R2 HpDamServiceHost; c:\Program Files (x86)\HP\HP Device Access Manager\HPE.DeviceAccessManager.ServiceHost.exe [20376 2016-08-09] (Hewlett Packard Enterprise Company -> Hewlett Packard Enterprise Company)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1083200 2016-12-22] (HP Inc. -> HP)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
R2 LanWlanWwanSwitchingServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_fa320f297f405a33\LanWlanWwanSwitchingServiceUWP.exe [605152 2024-04-30] (HP Inc. -> HP Inc.)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe [270336 2001-02-23] (Microsoft Corporation) [File not signed]
R2 MEmuSVC; D:\Program Files\Microvirt\MEmu\MemuService.exe [85304 2019-09-12] (Shanghai Microvirt Software Technology Co., Ltd. -> )
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4878840 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [2136488 2021-03-23] (Acronis International GmbH -> )
R2 NovaPdf10Server; C:\Program Files\Softland\novaPDF 10\Server\novapdfs.exe [52528 2020-04-01] (Softland SRL -> Microsoft)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7398360 2021-03-23] (Acronis International GmbH -> )
R3 Tib Mounter Service; C:\Program Files (x86)\Common Files\Acronis\TibMounter64\tib_mounter_service.exe [5910328 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
R2 valWBFPolicyService; C:\WINDOWS\System32\valWBFPolicyService.exe [91032 2019-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\NisSrv.exe [2484256 2020-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2005.5-0\MsMpEng.exe [103168 2020-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 ZoomCptService; "C:\Program Files\Common Files\Zoom\Support\CptService.exe" -user_path "C:\Users\fbart\AppData\Roaming\Zoom"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [20552 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [234056 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [383040 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [296008 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84552 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [28280 2024-11-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [28736 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [274504 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [550984 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [97864 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69184 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [954944 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1424448 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [203848 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [381512 2024-11-13] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2021-03-23] (Bitdefender SRL -> Bitdefender)
R2 CLFCL5.22; C:\WINDOWS\System32\drivers\CLFCL5.22\000.fcl [47792 2022-07-15] (CyberLink Corp. -> CyberLink Corp.)
S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17576 2020-01-27] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [38880 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [844000 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [47104 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 DAMDrv; C:\WINDOWS\system32\DRIVERS\DAMDrv64.sys [76432 2016-08-11] (Hewlett Packard Enterprise Company -> Hewlett-Packard Enterpise Company)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ewusbmbb; C:\WINDOWS\System32\drivers\ewusbwwan.sys [421376 2010-12-23] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_hwusbdev; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [117248 2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 FFUsbAudio; C:\WINDOWS\System32\drivers\ffusbaudio.sys [53080 2011-10-31] (Focusrite Audio Engineering Limited -> Focusrite Audio Engineering Ltd.)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [720392 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [392840 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R0 fltsrv; C:\WINDOWS\System32\DRIVERS\fltsrv.sys [183944 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R2 googledrivefs31626; C:\Program Files\Google\Drive File Stream\Drivers\31626\googledrivefs31626.sys [384096 2024-07-22] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [86016 2011-01-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwdatacard; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [221312 2010-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusbdev; C:\WINDOWS\system32\DRIVERS\ewusbdev.sys [114304 2016-12-29] (Huawei Technologies Co., Ltd.) [File not signed]
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [130256 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-29] (Comodo Security Solutions, Inc. -> COMODO)
R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [320360 2021-01-04] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation)
S0 ngelam; C:\WINDOWS\System32\drivers\ngelam.sys [15816 2021-03-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Acronis International GmbH)
R1 ngscan; C:\WINDOWS\System32\DRIVERS\ngscan.sys [179104 2021-03-23] (Acronis International GmbH -> Acronis International GmbH)
S3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [1063520 2017-04-06] (SUNPLUS INNOVATION TECHNOLOGY INC. -> Sunplus Innovation Technology Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [887032 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [175648 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [694920 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [334984 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [251016 2021-08-01] (Acronis International GmbH -> Acronis International GmbH)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-06-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [401120 2020-06-01] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64224 2020-06-01] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40200 2023-11-17] (HP Inc. -> HP)
S3 YMIDUSBW; C:\WINDOWS\system32\drivers\ymidusbx64.sys [43744 2015-07-28] (Yamaha Corporation -> Yamaha Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-11-27 22:13 - 2024-11-27 22:13 - 000149581 _____ C:\Users\fbart\Downloads\Konfektionsgroessen.PDF
2024-11-23 21:56 - 2024-11-23 21:56 - 000267339 _____ C:\Users\fbart\Downloads\mb-podminky-pro-provadeni-platebniho-styku-4102022.pdf
2024-11-23 00:14 - 2024-11-23 00:14 - 000029014 _____ C:\Users\fbart\Downloads\RR_SK.MRK..xml,pdf_IE.pdf
2024-11-22 11:24 - 2024-11-22 11:24 - 001179614 _____ C:\Users\fbart\Downloads\A1_HueberWort_F-Essen_Einkaufen.pdf.pdf
2024-11-21 23:49 - 2024-11-21 23:49 - 000022205 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-11-21 23:48 - 2024-11-21 23:48 - 000022205 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-11-21 22:46 - 2024-11-21 22:46 - 000000000 ___HD C:\$WinREAgent
2024-11-14 15:54 - 2024-11-14 15:54 - 000262123 _____ C:\Users\fbart\Downloads\A1_HueberWort_H1-H6.pdf
2024-11-13 21:19 - 2024-11-13 21:19 - 000315688 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2024-11-10 23:47 - 2024-11-10 23:47 - 002795873 _____ C:\Users\fbart\Downloads\BSN5-26_PLANOVACI s anglictinou VN 2026_autor-corr_FKB.pdf
2024-11-10 00:12 - 2024-11-10 00:12 - 002913330 _____ C:\Users\fbart\Downloads\BSN5-26_PLANOVACI s anglictinou VN 2026-corr_FKB.pdf
2024-11-09 13:49 - 2024-11-09 13:49 - 000002284 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Private Browsing.lnk
2024-11-09 13:49 - 2024-11-09 13:49 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-11-08 14:12 - 2024-11-08 14:12 - 000658084 _____ C:\Users\fbart\Downloads\informacni-prehled-o-systemu-pojisteni-pohledavek-z-vkladu.pdf
2024-11-08 13:45 - 2024-11-08 13:45 - 000728930 _____ C:\Users\fbart\Downloads\BSN5-26_PLANOVACI s anglictinou OB 2026-2-corr_FKB.pdf
2024-11-08 13:21 - 2024-11-08 13:22 - 000132209 _____ C:\Users\fbart\Downloads\Faktura 202411081 - Tomas Vojtech - F_Bartak.pdf
2024-11-07 12:51 - 2024-11-07 12:51 - 000747794 _____ C:\Users\fbart\Downloads\BSN5-26_PLANOVACI s anglictinou OB 2026.pdf
2024-11-05 16:35 - 2024-11-05 16:35 - 002478505 _____ C:\Users\fbart\Downloads\Kafchen_SPRACHQUIZZE_ukazka.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-12-02 20:12 - 2017-12-01 22:30 - 000000000 ____D C:\FRST
2024-12-02 19:42 - 2016-12-20 23:19 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Microsoft\Word
2024-12-02 19:33 - 2024-10-28 10:14 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2002658774-1703651359-3694545506-1002
2024-12-02 19:33 - 2024-10-28 10:14 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2002658774-1703651359-3694545506-1002
2024-12-02 19:33 - 2023-10-12 08:29 - 000002654 _____ C:\WINDOWS\system32\Tasks\CLToast
2024-12-02 19:33 - 2023-10-12 08:29 - 000002480 _____ C:\WINDOWS\system32\Tasks\CLToastRun
2024-12-02 19:33 - 2023-07-28 12:54 - 000002508 _____ C:\WINDOWS\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0
2024-12-02 19:33 - 2022-10-05 12:57 - 000002954 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-12-02 19:33 - 2022-10-05 12:57 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-12-02 19:33 - 2021-12-15 21:57 - 000002254 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - fbart
2024-12-02 19:33 - 2021-07-23 17:51 - 000002596 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2024-12-02 19:33 - 2021-05-19 13:55 - 000003508 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1582720617
2024-12-02 19:33 - 2021-05-19 13:55 - 000003464 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-12-02 19:33 - 2021-05-19 13:55 - 000003366 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1487236436
2024-12-02 19:33 - 2021-05-19 13:55 - 000003240 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-12-02 19:33 - 2021-05-19 13:55 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-12-02 19:33 - 2021-05-19 13:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2024-12-02 19:29 - 2016-12-30 20:15 - 000000000 ____D C:\Users\fbart\Documents\Lexicon
2024-12-02 19:24 - 2016-12-20 22:33 - 000000000 ___SD C:\Users\fbart\AppData\Roaming\Microsoft\Credentials
2024-12-02 19:21 - 2016-12-26 16:31 - 000000000 ____D C:\Users\fbart\AppData\Roaming\vlc
2024-12-02 17:14 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-12-02 15:30 - 2017-06-28 13:38 - 000001101 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera browser.lnk
2024-12-02 15:30 - 2017-02-16 10:12 - 000000000 ____D C:\Program Files\Opera
2024-12-02 15:26 - 2021-07-23 17:47 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2024-12-02 15:20 - 2021-05-19 13:41 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-12-01 22:20 - 2016-12-26 23:58 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Microsoft\Excel
2024-12-01 22:05 - 2021-05-19 13:53 - 001885574 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-12-01 22:05 - 2019-12-07 15:41 - 000785556 _____ C:\WINDOWS\system32\perfh005.dat
2024-12-01 22:05 - 2019-12-07 15:41 - 000182314 _____ C:\WINDOWS\system32\perfc005.dat
2024-12-01 22:05 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-12-01 21:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2024-12-01 18:59 - 2022-02-09 19:15 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-12-01 18:58 - 2016-12-20 22:40 - 000001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-12-01 18:58 - 2016-12-20 22:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-12-01 18:58 - 2016-12-20 22:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2024-12-01 00:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-11-28 16:03 - 2017-01-12 16:34 - 000000000 ____D C:\My PDF
2024-11-28 15:04 - 2021-07-20 14:09 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Microsoft\Teams
2024-11-27 21:46 - 2020-07-07 12:27 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-11-27 21:46 - 2020-07-07 12:27 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-11-27 15:38 - 2021-05-19 13:45 - 000002436 _____ C:\Users\fbart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-11-27 10:58 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-11-27 10:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-11-23 21:21 - 2018-05-28 16:30 - 000000000 ____D C:\Users\fbart\AppData\Roaming\Microsoft\Paint
2024-11-23 14:16 - 2018-04-16 16:25 - 000000000 ____D C:\Users\fbart\AppData\Local\AVAST Software
2024-11-23 13:54 - 2018-05-28 17:39 - 000000000 ____D C:\Users\fbart\AppData\Local\D3DSCache
2024-11-23 13:44 - 2018-08-14 18:08 - 000000000 ____D C:\Users\fbart\AppData\Local\CrashDumps
2024-11-23 13:41 - 2017-06-12 18:12 - 000000000 ____D C:\ProgramData\NVIDIA
2024-11-23 13:41 - 2016-12-20 22:34 - 000000000 __SHD C:\Users\fbart\IntelGraphicsProfiles
2024-11-23 13:40 - 2021-12-22 22:01 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-11-23 13:40 - 2021-05-19 13:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-11-23 13:40 - 2021-05-19 13:41 - 000008192 ___SH C:\DumpStack.log.tmp
2024-11-23 13:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2024-11-23 13:40 - 2017-06-12 18:13 - 000000000 ____D C:\ProgramData\Synaptics
2024-11-23 13:40 - 2016-12-20 22:53 - 000000000 ____D C:\ProgramData\AVAST Software
2024-11-23 13:40 - 2016-10-29 23:18 - 000000000 ____D C:\Intel
2024-11-23 13:39 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-11-23 13:38 - 2024-07-14 12:58 - 000000000 ____D C:\WINDOWS\system32\compatrel
2024-11-23 13:38 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-11-23 13:38 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-11-23 13:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-11-23 13:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-11-23 13:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-11-23 13:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-11-23 13:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-11-23 13:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-11-23 13:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-11-23 13:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-11-22 14:16 - 2022-02-27 20:04 - 000000000 ____D C:\Program Files\RUXIM
2024-11-22 11:37 - 2016-10-29 23:59 - 000000000 ___HD C:\ProgramData\CyberLink
2024-11-22 10:17 - 2020-05-13 21:14 - 000002300 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-11-22 10:17 - 2020-05-13 21:14 - 000002259 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-11-21 23:53 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-11-21 23:48 - 2021-05-19 13:44 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-11-21 17:30 - 2019-11-17 10:37 - 000000000 ____D C:\Users\fbart\Documents\Zoom
2024-11-18 20:01 - 2021-09-23 18:31 - 000002180 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2024-11-18 20:01 - 2021-09-23 18:31 - 000002015 _____ C:\Users\Default\Desktop\Google Slides.lnk
2024-11-18 20:01 - 2021-09-23 18:31 - 000002015 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2024-11-18 20:01 - 2021-09-23 18:31 - 000002003 _____ C:\Users\Default\Desktop\Google Docs.lnk
2024-11-18 20:01 - 2018-10-12 09:50 - 000002055 _____ C:\Users\fbart\Desktop\Google Drive.lnk
2024-11-15 20:10 - 2021-10-11 14:15 - 000000000 ____D C:\Video
2024-11-13 21:35 - 2018-05-28 17:06 - 000000000 ____D C:\Users\fbart\AppData\Roaming\hpqLog
2024-11-13 21:34 - 2021-05-19 13:41 - 000560984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-11-13 21:34 - 2016-12-26 16:39 - 000000000 ____D C:\Program Files\WinRAR
2024-11-13 21:34 - 2016-12-20 22:45 - 000000000 ____D C:\Program Files\CCleaner
2024-11-13 21:33 - 2024-02-13 20:53 - 000000000 ____D C:\Users\fbart\AppData\Local\GHISLER
2024-11-13 21:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-11-13 21:19 - 2022-10-13 15:33 - 000028280 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswElam.sys
2024-11-13 21:19 - 2020-10-24 17:03 - 000274504 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2024-11-13 21:19 - 2020-04-20 20:08 - 000550984 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2024-11-13 21:19 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-11-13 21:19 - 2019-01-14 14:47 - 000383040 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2024-11-13 21:19 - 2019-01-09 12:05 - 000296008 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2024-11-13 21:19 - 2019-01-09 12:05 - 000084552 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2024-11-13 21:19 - 2019-01-09 12:05 - 000020552 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2024-11-13 21:19 - 2018-10-23 23:01 - 000028736 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2024-11-13 21:19 - 2018-03-09 10:33 - 001424448 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2024-11-13 21:19 - 2018-03-09 10:33 - 000954944 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2024-11-13 21:19 - 2018-03-09 10:33 - 000381512 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2024-11-13 21:19 - 2018-03-09 10:33 - 000234056 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2024-11-13 21:19 - 2018-03-09 10:33 - 000097864 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2024-11-13 21:19 - 2018-03-09 10:33 - 000069184 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2024-11-13 20:48 - 2016-12-22 19:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-11-13 20:31 - 2016-12-22 19:42 - 202035632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-11-13 19:29 - 2017-04-11 13:17 - 000000000 ____D C:\Program Files (x86)\COMODO
2024-11-13 16:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2024-11-13 00:47 - 2018-02-23 19:46 - 000000000 ____D C:\Users\fbart\AppData\Roaming\MPC-HC
2024-11-12 19:36 - 2018-04-16 16:25 - 000002505 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2024-11-12 19:36 - 2018-04-16 16:25 - 000002470 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2024-11-02 22:26 - 2018-03-09 17:09 - 000000000 ____D C:\Users\fbart\AppData\Local\Packages

==================== Files in the root of some directories ========

2022-09-19 14:35 - 2022-09-19 14:35 - 000000000 _____ () C:\Program Files (x86)\test.txt
2019-06-24 15:45 - 2019-06-24 15:46 - 002535362 _____ () C:\Users\fbart\AppData\Roaming\AvidLink_Install.log
2018-06-26 21:25 - 2018-06-26 21:25 - 000000861 _____ () C:\Users\fbart\AppData\Roaming\Avid_CCS_Service_Stop.log
2021-07-23 18:06 - 2021-07-23 18:06 - 000000000 _____ () C:\Users\fbart\AppData\Local\oobelibMkey.log
2017-01-09 21:48 - 2024-10-14 12:50 - 000007602 _____ () C:\Users\fbart\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Neustálé vytížení CPU

Napsal: 02 pro 2024 20:24
od krysarr
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-11-2024
Ran by fbart (02-12-2024 20:15:23)
Running from D:\SOFTWARE\FRST
Microsoft Windows 10 Home Version 22H2 19045.5198 (X64) (2021-05-19 12:55:54)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2002658774-1703651359-3694545506-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2002658774-1703651359-3694545506-503 - Limited - Disabled)
fbart (S-1-5-21-2002658774-1703651359-3694545506-1002 - Administrator - Enabled) => C:\Users\fbart
Guest (S-1-5-21-2002658774-1703651359-3694545506-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2002658774-1703651359-3694545506-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: COMODO Firewall (Enabled) {3D87FB90-B561-70B4-3B0B-BCEFE7656ABC}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acronis Drivers (HKLM\...\{7C36ADC0-5219-4D31-90D1-4211321481EF}) (Version: 25.8.39216 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{F0A1A9E1-CD4B-4504-836F-1946F5815ECB}) (Version: 25.8.39216 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{F0A1A9E1-CD4B-4504-836F-1946F5815ECB}Visible) (Version: 25.8.39216 - Acronis)
Adobe Audition 3.0 (HKLM-x32\...\Adobe Audition 3.0) (Version: 3.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.5.0.617 - Adobe Inc.)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.12 - Adobe Systems Incorporated)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.5.1.48 - Adobe Inc.)
Adobe Premiere Pro 2021 (HKLM-x32\...\PPRO_15_4) (Version: 15.4 - Adobe Inc.)
AIR Xpand!2 (HKLM\...\{69A89482-FEC4-4E34-97F9-46BB287D0953}) (Version: 2018.1.0.1440 - AIR Music Technology)
Aktualizace NVIDIA 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.0 - NVIDIA Corporation)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Apple Mobile Device Support (HKLM\...\{AAFEC555-4154-4A21-9523-30B8CDE94533}) (Version: 18.0.0.33 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{B292D163-23D2-4523-A699-1ABEC1875609}) (Version: 2.7.0.3 - Apple Inc.)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.15_Beta2 - tippach engineering)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.11.6137 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 130.0.27176.93 - Gen Digital Inc.)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
Avid Cloud Client Services (HKLM\...\{66E7D4F4-F044-428D-A734-59138A626A52}) (Version: 2.4.0.15 - Avid Technology, Inc.)
Avid Effects (HKLM\...\{F53B2C5A-9739-425A-B74C-E8D94DF2EFB5}) (Version: 18.4.0.317 - Avid Technology, Inc.)
Avid Link (HKLM\...\{4865F211-1BDF-42B1-A863-EA828CA43431}) (Version: 19.1.0.315 - Avid Technology, Inc.)
Backup and Sync from Google (HKLM\...\{696895F7-52C7-4C9E-998B-C7E0CC907092}) (Version: 3.57.4256.0809 - Google, Inc.)
Bandicut (HKLM-x32\...\Bandicut) (Version: 3.8.5.2442 - Bandicam.com)
BandLab Assistant 8.1.1 (HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\9b08bea4-021c-5f9d-a74e-ac0ceb51fb28) (Version: 8.1.1 - BandLab Technologies)
BEHRINGER UMC Series USB Audio Driver v5.57.0 (HKLM\...\{F4158E52-FF27-4599-A397-5F3776945A1D}) (Version: 5.57.0 - BEHRINGER)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 6.29 - Piriform)
CDex - Digital Audio CD Extractor and Converter (HKLM-x32\...\CDex) (Version: 1.82.0.2016 - CDex.mu)
Classic Paint (HKLM\...\Classic Paint_is1) (Version: 1.1 - Winaero)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 129.0.6668.90 - Comodo)
COMODO Firewall (HKLM\...\{0E9AFD45-C3BA-41D1-B54B-495A22CB3409}) (Version: 12.2.2.8012 - COMODO Security Solutions Inc.) Hidden
COMODO Firewall (HKLM\...\COMODO Internet Security) (Version: 12.2.2.8012 - COMODO Security Solutions Inc.)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Conexant ISST Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 9.0.239.70 - Conexant)
CPUID CPU-Z 1.86 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.86 - CPUID, Inc.)
CrystalDiskMark 5.2.0 (HKLM\...\CrystalDiskMark5_is1) (Version: 5.2.0 - Crystal Dew World)
CyberLink Power2Go 13 (HKLM-x32\...\{7BB5FFC9-EC40-47c7-B10A-E0E6A296074D}) (Version: 13.0.2024.0 - CyberLink Corp.)
CyberLink PowerDVD 22 (HKLM-x32\...\{3584CCD3-8938-45F3-8103-0F3F7ABF4419}) (Version: 22.0.1915.62 - CyberLink Corp.)
CyberLink WaveEditor 2 (HKLM-x32\...\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 2.1.9529.0 - CyberLink Corp.)
doPDF (HKLM\...\{FB1982DB-B680-41EE-9B30-43BFFA2D7F33}) (Version: 10.7.124 - Softland) Hidden
doPDF 10 (HKLM-x32\...\{21a6faa3-2645-4c5e-9092-39093ff41d46}) (Version: 10.7.124 - Softland)
doPDF 10 add-in for Microsoft Office (x64) (HKLM\...\{A1C2AAB8-C06D-4593-9A9B-4B3760C019AF}) (Version: 10.7.124 - Softland)
doPDF 10 add-in for Microsoft Office (x86) (HKLM-x32\...\{73503AFE-4AEF-4671-930A-5EC755606EB1}) (Version: 10.7.124 - Softland)
doPDF 10 Printer Driver (HKLM\...\{12D66221-EFBC-4BEF-9382-5C7F33889C91}) (Version: 10.7.124 - Softland)
doPDF 7.3 printer (HKLM\...\doPDF 7 printer_is1) (Version: - Softland)
DoulosSIL 5.000 (HKLM-x32\...\DoulosSIL) (Version: - )
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
DVDFab 12 (x64) (29/10/2020) (HKLM-x32\...\DVDFab 12 (x64)) (Version: 12.0.0.4 - DVDFab Software Inc.)
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
englishme! (HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\805538b69ac74f372fb2a7f66f50783b) (Version: 1.0 - englishme!)
Focusrite USB Audio Driver 1.10 (HKLM\...\Focusrite USB Audio Driver_is1) (Version: 1.10 - Focusrite Audio Engineering Ltd.)
FoneTool (HKLM-x32\...\{AD04677C-79B8-4B7A-BB39-FEE6F138E716}_is1) (Version: 2.0.0 - AOMEI International Network Limited.)
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 2024.3.0.26795 - Foxit Software Inc.)
Free DOCX To DOC Converter (HKLM-x32\...\{775F4A03-DF72-4122-88F4-2D2549FB05F0}) (Version: 1.0.0 - Media Freeware)
Free Slideshow Maker (3.5.4.0) (HKLM-x32\...\Free Slideshow Maker_is1) (Version: 3.5.4.0 - Amazing Studio)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 131.0.6778.86 - Google LLC)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 100.0.2.0 - Google LLC)
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
HP Client Security Manager (HKLM\...\{B4A0B76D-EAE6-4717-AEB3-58C1BCD7B9E8}) (Version: 9.0.0.2116 - HP Inc.) Hidden
HP Client Security Manager (HKLM\...\HPProtectTools) (Version: 9.0.0.2116 - HP Inc.)
HP Customer Experience Enhancements (HKLM-x32\...\{64228DFB-7450-49B7-935C-B97342CB6659}) (Version: 6.0.10.1 - HP Development Company, L.P.) Hidden
HP Device Access Manager (HKLM\...\{766ED263-4CA0-4D2F-9FA8-717827F718D6}) (Version: 8.3.16.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP ePrint SW (HKLM\...\{872897C1-CDCD-4466-82AA-5483BCCF09C7}) (Version: 5.1.20088 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{B0D5BCD0-8DFB-48A3-9BDF-4E183159E420}) (Version: 5.1.20088 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{C0407127-4831-47CD-8A7A-E5ED7A2D398B}) (Version: 5.1.20088 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{FC292FE3-B7B0-492C-BC2E-C0DFCA30FC92}) (Version: 5.1.20088 - HP Inc.) Hidden
HP ePrint SW (HKLM-x32\...\{39404020-C431-4331-9241-62956555DA49}) (Version: 5.1.20088 - HP Inc.) Hidden
HP ePrint SW (HKLM-x32\...\{3efaef38-ee9e-4421-bea3-e0a4d835d3f4}) (Version: 5.1.20088 - HP Inc.)
HP ePrint SW (HKLM-x32\...\{C5AD7A64-6DDF-482A-8E7D-FA1DED0A201A}) (Version: 5.1.20088 - HP Inc.) Hidden
HP ESU for Microsoft Windows 10 (HKLM-x32\...\{94D0EB60-8B2F-4A80-BA74-3D312434415F}) (Version: 11.2.2 - HP)
HP JumpStart Bridge (HKLM-x32\...\{6B4A5299-4837-485A-B71D-7F1CE6F8F018}) (Version: 1.0.0.143 - HP Inc.)
HP JumpStart Launch (HKLM-x32\...\{0F5EBB0D-DF6D-4DBE-9789-57BF05B3B0FD}) (Version: 1.0.145.0 - HP Inc.)
HP Recovery Manager (HKLM-x32\...\{64BAA990-F1FC-4145-A7B1-E41FBBC9DA47}) (Version: 1.2.1510 - HP) Hidden
HP SoftPaq Download Manager (HKLM-x32\...\{92db00b4-c4ee-4893-bc4e-8be6548b2742}) (Version: 4.3.4.0 - HP)
HP Software Setup (HKLM-x32\...\{C968E860-054F-490F-95C6-C9A29601459E}) (Version: 9.2.2 - HP)
HP System Default Settings (HKLM-x32\...\{E570B9C2-9A83-4938-BBD5-0A8C068083C1}) (Version: 1.2.3.1 - HP INC)
HP Universal Camera Driver (HKLM-x32\...\{8B204728-0D90-48BE-97C0-BBEDDFDFA83C}) (Version: 3.5.8.11 - SunplusIT)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel(R) Chipset Device Software (HKLM\...\{3AE6FD56-D431-4B53-94F0-95E844206ADF}) (Version: 10.1.1.32 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{aaa7f0fb-02dc-4576-beef-7d24842c5fbe}) (Version: 10.1.1.32 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{00176A23-1A4E-4429-817E-44B40D9EF692}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{0854C811-6DAD-441D-AB36-2F73631A04A1}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1914.12.0.1255 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{650FF4FD-69E7-4AA4-9F46-6B7DFC8489F7}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{1535E647-D354-4775-9EE8-FD9E8ED0701A}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.0.2.1044 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{AD29B896-0901-4B3E-9C2A-BD59B38A9568}) (Version: 15.0.2.1044 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.52.230.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.52.230.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c6de84fd-ece7-4c2a-9f06-8cabe7ab79a0}) (Version: 1.52.230.1 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{3920BCB0-23AA-4D0D-93E5-404692DAF9D2}) (Version: 19.00.1621.3340 - Intel Corporation)
Intel(R) Wireless Manageability Driver (HKLM\...\{28C2C4DE-AAF6-424D-B018-5142729E1C67}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Wireless Manageability Driver Extension (HKLM\...\{03C415A8-0861-4BB7-8857-27089E6C298A}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® PROSet/Wireless WiFi Software (HKLM\...\{EF71AFFB-85B5-407C-A301-39EA25F98313}) (Version: 20.90.0.2270 - Intel Corporation) Hidden
Internet Security Essentials (HKLM-x32\...\ComodoIse) (Version: 1.6.472587.185 - Comodo)
iTunes (HKLM\...\{463D8E71-682F-46C5-B01F-1D5357E56ADF}) (Version: 12.13.4.4 - Apple Inc.)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Jihosoft Photo Eraser version 1.2.3.0 (HKLM-x32\...\{7EE52565-A8FC-4DDB-9E97-479EF73F1AA0}_is1) (Version: 1.2.3.0 - Shenzhen Jihosoft CO., LIMITED)
Kigo Netflix Video Downloader version 1.73 (HKLM-x32\...\{42614667-F4C9-2021-1983-90091911AAA}_is1) (Version: 1.73 - )
Lingea Lexicon 7 (HKLM-x32\...\Lexicon7) (Version: - Lingea s.r.o.)
MASV 2.3.66 (HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\41a96b90-0c31-5459-8f90-9951b71f7636) (Version: 2.3.66 - The MASV Team)
MEmu (HKLM-x32\...\MEmu) (Version: 7.6.6.0 - Microvirt Software Technology Co. Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 131.0.2903.70 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.70 - Microsoft Corporation) Hidden
Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe (x64) (HKLM\...\{B0169E83-757B-EF66-E2F0-391944D785BC}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Office XP Professional s aplikací FrontPage (HKLM-x32\...\{90280405-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.2627.11 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\OneDriveSetup.exe) (Version: 24.216.1027.0003 - Microsoft Corporation)
Microsoft Teams classic (HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\Teams) (Version: 1.7.00.27855 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{2FAF2A80-5906-467E-8AD2-B83C94383600}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{F85F7FF0-5DFF-4BC0-9045-C9573D1BC11F}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33816 (HKLM-x32\...\{77169412-f642-45e7-b533-0c6f48de12f9}) (Version: 14.40.33816.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33816 (HKLM-x32\...\{4373d0b5-4457-4a80-bad9-029de8df097b}) (Version: 14.40.33816.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33816 (HKLM\...\{5904914B-9FC8-44C2-AE48-5C7F30A603EC}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33816 (HKLM\...\{560D2DA4-096E-4868-B22A-DA6418FDE6FB}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33816 (HKLM-x32\...\{0DF1D9F9-6038-4641-AB6D-13DD654758A7}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33816 (HKLM-x32\...\{D7A66DA5-B103-45C1-A0A7-736C08E2F464}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Movavi Slideshow Maker 3 (HKLM-x32\...\Movavi Slideshow Maker 3) (Version: 3.0.0 - Movavi)
Mozilla Firefox (x64 en-GB) (HKLM\...\Mozilla Firefox 133.0 (x64 en-GB)) (Version: 133.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 132.0.1 - Mozilla)
Mp3tag v3.25 (HKLM\...\Mp3tag) (Version: 3.25 - Florian Heidenreich)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
NVIDIA Ovladače grafiky 516.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 516.69 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
O2 (HKLM-x32\...\O2CZ) (Version: - O2)
Opera Stable 114.0.5282.235 (HKLM-x32\...\Opera 114.0.5282.235) (Version: 114.0.5282.235 - Opera Software)
Opera Stable 55.0.2994.61 (HKLM-x32\...\Opera 55.0.2994.61) (Version: 55.0.2994.61 - Opera Software)
PACE License Support Win64 (HKLM\...\{15ADFA42-BA79-47e4-945F-A8A997FB990C}) (Version: 4.0.3.2024 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (HKLM-x32\...\InstallShield_{15ADFA42-BA79-47e4-945F-A8A997FB990C}) (Version: 4.0.3.2024 - PACE Anti-Piracy, Inc.)
PDF Architect 4 (HKLM-x32\...\PDF Architect 4) (Version: 4.0.26.25466 - pdfforge GmbH)
PDF Architect 4 Asian Fonts Pack (HKLM\...\{E15E5BA3-68C2-4B55-8D38-4DBB3F9B21DD}) (Version: 4.1.5.29097 - pdfforge GmbH)
PDF Architect 4 Convert Module (HKLM\...\{58B672CE-84B3-4FCD-B2BC-85D6832081AF}) (Version: 4.1.5.29097 - pdfforge GmbH)
PDF Architect 4 Create Module (HKLM\...\{72B9DF2C-76FA-40B5-A469-16EAB159CE72}) (Version: 4.1.5.29097 - pdfforge GmbH)
PDF Architect 4 Edit Module (HKLM\...\{BDF7326B-7ED4-4034-B867-F4E88D4E628B}) (Version: 4.1.5.29097 - pdfforge GmbH)
PDF Architect 4 Forms Module (HKLM\...\{BBBB75A5-1B4B-404F-B441-C59E29AC887E}) (Version: 4.1.5.29097 - pdfforge GmbH)
PDF Architect 4 Insert Module (HKLM\...\{F9417A7E-A44D-4318-B479-56D2533F01F8}) (Version: 4.1.5.29097 - pdfforge GmbH)
PDF Architect 4 OCR Module (HKLM\...\{DCD772BD-5EE9-4B00-B976-5EC52C022981}) (Version: 4.1.5.29097 - pdfforge GmbH)
PDF Architect 4 Review Module (HKLM\...\{64D4BCF9-C439-4CBF-8E35-AF14C867F9A2}) (Version: 4.1.5.29097 - pdfforge GmbH)
PDF Architect 4 Secure Module (HKLM\...\{357F5B29-55DD-4799-B85A-C4C5F9CF061F}) (Version: 4.1.5.29097 - pdfforge GmbH)
PDF Architect 4 View Module (HKLM\...\{03E04B47-9270-4613-8D7E-DA4AD2B259A0}) (Version: 4.1.5.29097 - pdfforge GmbH)
PdfMerge (HKLM-x32\...\{238BE990-A412-4129-A434-D03B1A9E396E}) (Version: 1.22.0 - PdfMerge)
Personal Backup 6.2.29.1 (64-bit) (HKLM\...\Personal Backup 6_is1) (Version: 6.2.29.1 - Dr. J. Rathlev)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.131 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.9.422.2016 - Realtek)
Sibelius (HKLM\...\{62892434-57A6-44E7-9C58-7C248DE6181D}) (Version: 19.1.0.1145 - Avid Technology)
Sibelius OpenType Fonts (HKLM-x32\...\{603AEE7A-6967-4CDB-8528-0CAC729A004B}) (Version: 18.6.0 - Avid)
Skype version 8.119 (HKLM-x32\...\Skype_is1) (Version: 8.119 - Skype Technologies S.A.)
Steinberg DDP Player 1.5 (HKLM\...\{36788EEB-FA75-4317-AEA4-90B71F81F460}) (Version: 1.5.0 - Steinberg Media Technologies GmbH)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.8.32 - Synaptics Incorporated)
Synaptics WBF Fingerprint Reader (HKLM\...\{FE645EDA-C5B2-4CF3-B9E7-AFABD5710EEF}) (Version: 4.5.335.0 - Synaptics)
SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 7.6.74.0 - 2BrightSparks)
Titan Backup (HKLM-x32\...\Titan Backup) (Version: 2.0 - Neobyte Solutions)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.03 - Ghisler Software GmbH)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{A9AE164B-A435-4458-A2BF-178365A73505}) (Version: 1.12.0.0 - Microsoft Corporation) Hidden
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.21 - VideoLAN)
Weeny Free Audio Cutter 1.5 (HKLM-x32\...\Weeny Free Audio Cutter_is1) (Version: - Weeny Software)
Weeny Free PDF Cutter 1.4 (HKLM-x32\...\Weeny Free PDF Cutter_is1) (Version: - Weeny Software)
Weeny Free Video Cutter 1.4 (HKLM-x32\...\Weeny Free Video Cutter_is1) (Version: - Weeny Software)
Windows PC Health Check (HKLM\...\{6798C408-2636-448C-8AC6-F4E341102D27}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
Windows Video Editor 2021 (HKLM\...\{9CC29C6A-B5FE-497B-8F23-52A2557A92D9}}_is1) (Version: - VideoWin)
WinRAR 7.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.01.0 - win.rar GmbH)
WMPKeys (HKLM-x32\...\{5D4B3647-9842-4875-B081-EF8D98C02865}) (Version: 1.2.0.0 - lazymf and kbept)
WooTechy iSeeker 4.0.0.4 (HKLM-x32\...\{E0DEC553-FA7A-432F-9D00-D5955FEB099A}_is1) (Version: 4.0.0.4 - Shenzhen WooTechy Technology Co., Ltd.)
Yamaha USB-MIDI Driver (HKLM\...\{2D488455-3E89-49EF-BA6E-92C2503DC89D}) (Version: 3.1.4.1 - Yamaha Corporation) Hidden
Yamaha USB-MIDI Driver (HKLM-x32\...\InstallShield_{2D488455-3E89-49EF-BA6E-92C2503DC89D}) (Version: 3.1.4.1 - Yamaha Corporation)
Zoom Workplace (64-bit) (HKLM\...\{226FFF6C-3704-420E-A649-0840E4B7451D}) (Version: 6.2.49050 - Zoom)

Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2022-07-21] (Adobe Systems Incorporated)
englishme! -> C:\Program Files\WindowsApps\www.englishme.cz-335C82DA_1.0.0.1_neutral__e74myt4s06we2 [2023-10-19] (www.englishme.cz)
englishme! -> C:\Program Files\WindowsApps\www.englishme.cz-37984E71_1.0.0.0_neutral__e74myt4s06we2 [2023-04-27] (www.englishme.cz)
HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.2.228.0_x64__v10z8vjag6ke6 [2022-07-21] (HP Inc.)
HP System Information -> C:\Program Files\WindowsApps\AD2F1837.HPSystemInformation_8.10.39.0_x64__v10z8vjag6ke6 [2023-04-05] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-07-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-07-21] (Microsoft Corporation) [MS Ad]
Movie Creator : Video Editor -> C:\Program Files\WindowsApps\39691Videopix.MovieMakerFreeVideoEditor_1.1.149.0_x64__dxz7h1qnd1pge [2024-09-13] (Videopix)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_7.0.8.0_neutral__mcm4njqhnhss8 [2024-07-16] (Netflix, Inc.)
Photos Media Engine Add-on -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-07-21] (Microsoft Corporation)
TeamViewer: Remote Control -> C:\Program Files\WindowsApps\TeamViewer.31414B719FA93_15.0.100.0_x86__89446h4zmeyyt [2022-07-21] (TeamViewer)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2022-07-21] (Twitter Inc.)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2445.7.0_x64__cv1g1gvanyjgm [2024-11-13] (WhatsApp Inc.) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2002658774-1703651359-3694545506-1002_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-89BC068FA487} -> [Creative Cloud Files] => C:\Users\fbart\Creative Cloud Files [2021-07-23 17:50]
CustomCLSID: HKU\S-1-5-21-2002658774-1703651359-3694545506-1002_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\fbart\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.24257.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2002658774-1703651359-3694545506-1002_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-2002658774-1703651359-3694545506-1002_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\fbart\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2002658774-1703651359-3694545506-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_8_39216.dll [2021-03-23] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_8_39216.dll [2021-03-23] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_8_39216.dll [2021-03-23] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_25_8_39216.dll [2021-03-23] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\100.0.2.0\drivefsext.dll [2024-11-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\100.0.2.0\drivefsext.dll [2024-11-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\100.0.2.0\drivefsext.dll [2024-11-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\100.0.2.0\drivefsext.dll [2024-11-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-08-03] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-08-03] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-08-03] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-11-13] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\100.0.2.0\drivefsext.dll [2024-11-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\100.0.2.0\drivefsext.dll [2024-11-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers-x32: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\100.0.2.0\drivefsext.dll [2024-11-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\100.0.2.0\drivefsext.dll [2024-11-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-11-13] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [$PowerDVD22] -> {E8C54B6B-C540-43A5-BDDA-2B0038830F63} => C:\ProgramData\CyberLink\PowerDVD22\OpenWith\PDVD_Shell64.dll [2022-07-14] (CyberLink Corp. -> CyberLink Corp.)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-08-03] (Adobe Inc. -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-11-13] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [CLVDShellExt13] -> {19476CE9-8B19-4EA5-A6FD-5BB11832C0EA} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt13.dll [2019-05-23] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers1: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\100.0.2.0\drivefsext.dll [2024-11-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files\Mp3tag\Mp3tagShell64.dll [2024-03-28] (Florian Heidenreich -> Florian Heidenreich)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [CLVDShellExt13] -> {19476CE9-8B19-4EA5-A6FD-5BB11832C0EA} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt13.dll [2019-05-23] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files\Mp3tag\Mp3tagShell64.dll [2024-03-28] (Florian Heidenreich -> Florian Heidenreich)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-11-13] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\100.0.2.0\drivefsext.dll [2024-11-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files\Mp3tag\Mp3tagShell64.dll [2024-03-28] (Florian Heidenreich -> Florian Heidenreich)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\100.0.2.0\drivefsext.dll [2024-11-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_e6daaea9afe1e6f6\igfxDTCM.dll [2020-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2022-07-06] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-11-13] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2024-05-12] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.i420] => lvcod64.dll
HKLM\...\Drivers32-x32: [vidc.i420] => lvcodec2.dll
HKLM\...\Drivers32: [VIDC.MPG4] => C:\Windows\SysWOW64\mpg4c32.dll [427520 2000-06-02] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [VIDC.MP42] => C:\Windows\SysWOW64\mpg4c32.dll [427520 2000-06-02] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.msaudio1] => C:\Windows\SysWOW64\msaud32.acm [305152 2000-06-02] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.sl_anet] => C:\Windows\SysWOW64\sl_anet.acm [102400 2000-06-02] (Sipro Lab Telecom Inc.) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\fbart\Desktop\Google Drive.lnk -> C:\Program Files\Google\Drive File Stream\launch.bat ()
Shortcut: C:\Users\fbart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab 12 (x64)\DVDFab 12 Online.lnk -> hxxp://www.dvdfab.cn/?s=dvdfab12&v=12.0.0.
ShortcutWithArgument: C:\Users\fbart\Desktop\englishme!.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=japhkgaioiipoeijdmhpncklbgagkben --app-url=hxxps://www.englishme.cz/app/?source=pwa --app-run-on-os-login-mode=windowed --app-launch-source=19
ShortcutWithArgument: C:\Users\fbart\AppData\Local\Microsoft\Edge\User Data\Default\Web Applications\_crx__japhkgaioiipoeijdmhpncklbgagkben\englishme!.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=japhkgaioiipoeijdmhpncklbgagkben --app-url=hxxps://www.englishme.cz/app/?source=pwa --app-run-on-os-login-mode=windowed --app-launch-source=19
ShortcutWithArgument: C:\Users\fbart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\englishme!.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=japhkgaioiipoeijdmhpncklbgagkben --app-url=hxxps://www.englishme.cz/app/?source=pwa --app-run-on-os-login-mode=windowed --app-launch-source=19

==================== Loaded Modules (Whitelisted) =============

2020-04-08 04:10 - 2020-04-08 04:10 - 002063872 _____ () [File not signed] C:\Program Files (x86)\Lingea\Lexicon7\LibSnd.dll
2017-11-09 15:30 - 2017-11-09 15:30 - 004942848 _____ () [File not signed] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AssetDeliveryCog.acf
2017-11-09 15:27 - 2017-11-09 15:27 - 002111488 _____ () [File not signed] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AssetDeliveryInterfaceCog.acf
2017-11-09 15:21 - 2017-11-09 15:21 - 004502528 _____ () [File not signed] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AvidAssetCog.acf
2017-11-09 15:23 - 2017-11-09 15:23 - 002041856 _____ () [File not signed] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\AvidAssetInterfaceCog.acf
2017-11-09 15:28 - 2017-11-09 15:28 - 002012160 _____ () [File not signed] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\CompressionCog.acf
2017-11-09 15:27 - 2017-11-09 15:27 - 001701376 _____ () [File not signed] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\FileMgrCog.acf
2017-11-09 15:19 - 2017-11-09 15:19 - 004383744 _____ () [File not signed] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\NetworkInterfaceCog.acf
2017-11-09 15:24 - 2017-11-09 15:24 - 002758144 _____ () [File not signed] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\ProjectSyncCog.acf
2017-11-09 15:25 - 2017-11-09 15:25 - 002073088 _____ () [File not signed] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\ProjectSyncInterfaceCog.acf
2017-04-03 21:16 - 2017-04-03 21:16 - 000098304 _____ () [File not signed] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\PXF\PXFPlugin.acf
2017-11-09 15:22 - 2017-11-09 15:22 - 001780224 _____ () [File not signed] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\TransportCog.acf
2004-05-04 13:27 - 2004-05-04 13:27 - 000024064 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\Audit.DLL
2004-05-04 13:58 - 2004-05-04 13:58 - 000061440 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\Dynamics.xfm
2004-05-04 13:56 - 2004-05-04 13:56 - 000015872 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\en_US\Dynamics.DLL
2004-05-04 13:52 - 2004-05-04 13:52 - 000002560 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\en_US\ezbus.DLL
2004-05-04 13:53 - 2004-05-04 13:53 - 000053248 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\en_US\fhtpro.dll
2004-05-04 13:52 - 2004-05-04 13:52 - 000003072 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\en_US\MackieC.DLL
2004-05-04 13:56 - 2004-05-04 13:56 - 000003584 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\en_US\Normal.DLL
2004-05-04 13:56 - 2004-05-04 13:56 - 000015360 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\en_US\PitchCorrect.DLL
2004-05-04 13:57 - 2004-05-04 13:57 - 000006656 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\en_US\qwikverb.DLL
2004-05-04 13:56 - 2004-05-04 13:56 - 000007168 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\en_US\Stretch.DLL
2004-05-04 13:52 - 2004-05-04 13:52 - 000002560 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\en_US\us224.DLL
2004-05-04 13:52 - 2004-05-04 13:52 - 000002560 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\en_US\us428.DLL
2004-05-04 13:53 - 2004-05-04 13:53 - 000004096 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\en_US\Wavepcm.DLL
2004-05-04 13:54 - 2004-05-04 13:54 - 000400896 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\fhtpro.flt
2004-05-04 14:00 - 2004-05-04 14:00 - 000024576 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\Normal.xfm
2004-05-04 13:57 - 2004-05-04 13:57 - 000186880 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\PitchCorrect.xfm
2004-05-04 14:00 - 2004-05-04 14:00 - 000043520 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\qwikverb.xfm
2004-05-04 13:59 - 2004-05-04 13:59 - 000060928 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\Stretch.xfm
2004-05-04 13:53 - 2004-05-04 13:53 - 000035328 _____ (Adobe Systems®, Incorporated) [File not signed] C:\Program Files (x86)\Adobe\Audition 1.5\Wavepcm.flt
2017-04-03 21:13 - 2017-04-03 21:13 - 000099840 _____ (Avid Technology, Inc.) [File not signed] C:\Program Files\Avid\Cloud Client Services\avx2_plug-ins\PXF\ACFString.avx
2022-01-22 17:06 - 2019-04-22 15:50 - 001370112 _____ (Conexant Systems LLC.) [File not signed] C:\Program Files\Conexant\SA3\HP-NB-AIO\CxHDAudioAPI.dll
2016-07-19 11:00 - 2016-07-19 11:00 - 000384512 _____ (Crossmatch, Inc.) [File not signed] c:\Program Files\HP\HP ProtectTools Security Manager\Bin\DPCPFelica.dll
2016-07-19 10:57 - 2016-07-19 10:57 - 000339968 _____ (Crossmatch, Inc.) [File not signed] c:\Program Files\HP\HP ProtectTools Security Manager\Bin\DPDevice2.dll
2016-07-19 11:01 - 2016-07-19 11:01 - 000454144 _____ (Crossmatch, Inc.) [File not signed] c:\Program Files\HP\HP ProtectTools Security Manager\Bin\DPDevice5.dll
2008-05-18 18:49 - 2008-05-18 18:49 - 000068096 _____ (lazymf and kbept) [File not signed] C:\Program Files (x86)\WMPKeys\wmpkeys.dll
2001-01-23 04:39 - 2001-01-23 04:39 - 002498560 _____ (Microsoft Corporation) [File not signed] [File is in use] C:\Program Files (x86)\Common Files\Microsoft Shared\VBA\VBA6\VBE6.DLL
2001-02-10 04:12 - 2001-02-10 04:12 - 000524339 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\office10\riched20.dll
2000-12-19 20:01 - 2000-12-19 20:01 - 000180224 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\Office10\ucs20.dll
2001-01-15 18:32 - 2001-01-15 18:32 - 000325120 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\Office10\usp10.dll
1998-11-05 15:27 - 1998-11-05 15:27 - 000536576 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\Proof\mslid.dll
2001-01-23 04:39 - 2001-01-23 04:39 - 000159744 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\VBA\VBA6\1029\VBE6INTL.DLL
2000-10-30 20:27 - 2000-10-30 20:27 - 000036864 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Microsoft Office\Office10\msostyle.dll
2001-01-03 02:57 - 2001-01-03 02:57 - 000110639 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Microsoft Office\Office10\saext.dll
2016-07-19 10:13 - 2016-07-19 10:13 - 000220160 _____ (RFIDeas) [File not signed] c:\Program Files\HP\HP ProtectTools Security Manager\Bin\pcProxAPI.dll
2022-01-18 12:05 - 2020-03-04 17:16 - 001431552 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\CONEXANT\Flow\x64\SQLite.Interop.dll
2020-04-01 11:29 - 2020-04-01 11:29 - 000018944 _____ (Softland) [File not signed] C:\WINDOWS\System32\novamn10.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2001-01-22] (Microsoft Corporation) [File not signed]
Handler-x32: http - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: http - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [2000-04-19] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 08:24 - 2024-02-13 20:33 - 000000753 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\Control Panel\Desktop\\Wallpaper -> c:\users\fbart\appdata\roaming\microsoft\windows photo viewer\windows photo viewer wallpaper.jpg
DNS Servers: 156.154.70.22 - 156.154.71.22
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is disabled.

Network Binding:
=============
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
Ethernet: Realtek PCIe GBE Family Controller -> rt640x64.sys
Wi-Fi: Intel(R) Dual Band Wireless-AC 7265 -> Netwtw04.sys

inspect: COMODO Internet Security Firewall Driver

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: CxMonSvc => 2
MSCONFIG\Services: FoxitReaderService => 2
MSCONFIG\Services: HotKeyServiceUWP => 2
MSCONFIG\Services: HPTouchpointAnalyticsService => 2
MSCONFIG\Services: PDF Architect 4 => 3
MSCONFIG\Services: PDF Architect 4 CrashHandler => 3
MSCONFIG\Services: PDF Architect 4 Creator => 2
MSCONFIG\Services: SkypeUpdate => 2
HKLM\...\StartupApproved\StartupFolder: => "HP JumpStart Launch.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Avid Application Manager.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Avid Link.lnk"
HKLM\...\StartupApproved\Run: => "DigidesignMMERefresh"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "PowerDVD22Agent"
HKLM\...\StartupApproved\Run32: => "Opera Browser Assistant"
HKLM\...\StartupApproved\Run32: => "O2CZ"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKLM\...\StartupApproved\Run32: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G13"
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\StartupApproved\StartupFolder: => "Lingea Update Center.lnk"
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\StartupApproved\StartupFolder: => "englishme!.lnk"
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_A606C3A23F722394777472C3610F9B5A"
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\StartupApproved\Run: => "Titan Backup"
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_CBC3A2C48DD08E53B4E467E37B52CD84"
HKU\S-1-5-21-2002658774-1703651359-3694545506-1002\...\StartupApproved\Run: => "Power2GoExpress13"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{69A89086-06AC-46FC-ACB9-3DF31BA1F028}] => (Allow) C:\Users\fbart\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{6BE8D65A-D76B-4DB8-84B4-C411AA18E771}] => (Allow) C:\Users\fbart\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{DB6E35E8-7C7A-4663-8DE4-0AABEC0A5A2D}] => (Allow) C:\Users\fbart\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [UDP Query User{E5D16002-4D79-43FD-B9D3-DC0380C52FE6}D:\software\skype portable 8\skype portable 8.36\skype.exe] => (Allow) D:\software\skype portable 8\skype portable 8.36\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{5C9BBFAA-855A-46F8-A69D-79948FA6C8FA}D:\software\skype portable 8\skype portable 8.36\skype.exe] => (Allow) D:\software\skype portable 8\skype portable 8.36\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{69363CBA-B7AD-48F2-9E95-D15CC644BF75}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{741FC9D5-21EF-49B6-A414-9A043727C774}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{0274FE66-2F18-48DB-80B7-B41B61B644DC}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{E9268421-CF6B-4134-99FB-0A7D24B26D85}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{30287EF4-C3C0-47ED-8E39-C0D546051C7D}] => (Allow) C:\Program Files\Avid\Cloud Client Services\Hub.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
FirewallRules: [{16DF23C8-46AD-414D-8CBD-070E67AF32CA}] => (Allow) C:\Program Files\Avid\Cloud Client Services\TransportClient.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
FirewallRules: [{7FACE430-6E50-44E1-B0F2-C4363AF67676}] => (Allow) C:\Program Files\Avid\Application Manager\AvidApplicationManager.exe () [File not signed]
FirewallRules: [{7CF9D905-8017-4C04-924E-D574AA388477}] => (Allow) C:\Program Files\Opera\55.0.2994.44\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{93543409-6CA8-4039-A8FC-797D754BBACD}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [{3F3D06FD-A1CB-4B64-80D3-DD0BEDF5A325}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Gen Digital Inc. -> Gen Digital Inc.)
FirewallRules: [TCP Query User{AB7A072F-3D79-4945-B6C2-2F1B1110E95E}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{C78EF2BD-6B06-4E19-B78D-0AAF2B88E559}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{67CA56C9-8518-4E50-8190-79804AE51376}] => (Allow) C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
FirewallRules: [{554A601E-836D-4B1D-9056-C7C5BF1CC7E2}] => (Allow) C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
FirewallRules: [{6B5E9738-6505-48F2-BC67-FB1074EA3180}] => (Allow) C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
FirewallRules: [{EE23C2E2-7DBF-4524-8702-127828CB43A9}] => (Allow) C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
FirewallRules: [{18586248-2882-4F5D-B6BA-8CA6B16AA77E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{EE8FA4E5-C563-4A30-9910-8C4DF2E45B09}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{4E516BE0-D77D-40D0-BE7C-6AEF3186F7C1}D:\software\skype portable\skype portable\app\skype\phone\skype.exe] => (Allow) D:\software\skype portable\skype portable\app\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{A44ED964-FA70-4155-B08F-B0AE65979054}D:\software\skype portable\skype portable\app\skype\phone\skype.exe] => (Allow) D:\software\skype portable\skype portable\app\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3165B40D-1467-4483-9DC7-2FD8ADAAE27B}] => (Allow) C:\Program Files\Avid\Avid Link\jre\bin\java.exe
FirewallRules: [{933B3C40-BFE0-4DE4-B71A-E7375E14560C}] => (Allow) C:\Program Files\Avid\Avid Link\Avid Link.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
FirewallRules: [{49B3BA3B-90C8-433C-9CBB-A7D5DEABE51C}] => (Allow) C:\Program Files\Avid\Avid Link\AvidAppManHelper.exe (Avid Technology, Inc. -> Avid Technology, Inc.)
FirewallRules: [{48D5F37A-2146-4F5D-8246-0BB057DB8581}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> )
FirewallRules: [{00C04EB6-9607-439B-8D17-CC197EE50EB0}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{E9DABEF8-95B0-4D1B-9FC9-F1EA0AB63398}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{8D5F5A8A-C67C-4A07-B335-CF0F63961528}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{75CFBEFE-8F86-49CC-9389-EE3346F15A53}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> ) [File not signed]
FirewallRules: [{CDD529B8-E767-4A52-9651-D2B3F9477C59}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> ) [File not signed]
FirewallRules: [{FBFB51B2-12DD-436C-B2C7-F979ED9DE3EC}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{DCEEB958-D469-4956-9B9A-1440BF517274}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{A4C15F3A-5442-4610-B7F6-D38A77B0778E}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe (Acronis International GmbH -> )
FirewallRules: [{167E2105-A318-4055-AF8E-F328A162EBB7}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{0F58C658-5199-4FCC-A2DF-F9BC0F675A5A}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> )
FirewallRules: [{819A47DA-139F-45B4-B121-880B56D4FB0E}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> )
FirewallRules: [{13035695-483F-45EF-B111-ED4C1391553E}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> )
FirewallRules: [{2F1B3DA9-8BAF-40EB-9C08-646D9372A315}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Home\report_sender.exe (Acronis International GmbH -> )
FirewallRules: [{E0BB3257-DCB0-4B06-9782-C8914FF4BAF0}] => (Allow) C:\Program Files (x86)\Acronis\Agent\bin\bckp_amgr.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{46F02991-6EE7-4779-836E-D0167FE12CB4}] => (Allow) C:\Program Files (x86)\Acronis\Agent\bin\task-manager.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{2BA81B2D-829D-4A67-8341-039B06D1D2E4}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (Acronis International GmbH -> )
FirewallRules: [{E0BD6580-C0C8-4FB1-B19E-B0BFED4B711B}] => (Allow) C:\Program Files (x86)\Acronis\Agent\aakore.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{DF4E5CC3-0508-47DA-A981-F23FC100624A}] => (Allow) C:\Program Files\Acronis\CyberProtect\cyber-protect-service.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{B67569F6-D1AA-4BE7-9FC7-7AB334FF9570}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{C6968038-EDE4-4FCD-840A-6AD2775C443E}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{9090CE30-1EA9-4131-84E8-AF8DD8A0F8BE}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{CC629158-DD5E-49F5-B53F-FF8ABD12E834}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\ShareModule32\Kernel\DMS\CLMSServerPDVD22.exe (CyberLink Corp. -> CyberLink)
FirewallRules: [{B87C326B-8F3F-4287-8A54-F15CFE851F68}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\PowerDVD22Agent.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{8D904831-60CC-4F3B-8F84-C1ECE4C0781B}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{FB4060C5-3645-44B3-AFF7-A2FA8803C7FA}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\CastingStation.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{72711E22-C988-4AC7-AD4C-89066CBFBDCA}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\Common\CLMediaServer\clmediaserver.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{36388C75-95D9-4F4C-AE6D-1481AD80E48A}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\Common\dynamic_transcode.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{776E1035-4E27-4644-A848-92406E09C03B}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\Common\CLMediaServer\clmediaserver.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{583CE5BA-C602-477E-BB5F-0B088A187581}] => (Allow) LPort=31302
FirewallRules: [{F970AE9A-B651-4C24-AA04-C43D572C465A}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7A60AC13-A88F-4F7C-952D-A63B4E14FA59}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DE781B22-C536-4E3E-B4BF-6609466E3449}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{587357BA-FF48-49ED-9218-C10945286422}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B388DB12-05F4-45B8-A1F8-62CD7448AA86}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6A544DB8-5373-4A29-B93A-380239D4F3B8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C0D3C08A-3F66-4738-A37E-EA90BFA1AA32}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1296ED03-E51A-4C04-B194-4673AC6F620D}] => (Allow) C:\Program Files\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{17F06835-F17A-446D-A20B-A125260D03C0}] => (Allow) C:\Program Files\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{C8774B25-3868-4071-A15E-4CF06B3394DB}] => (Allow) C:\Program Files\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{0B82835F-3E06-4FBB-8A90-A1171A8AD654}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{0196D776-9A8F-472B-8A47-0B041ABDB315}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{34F8CE47-25E6-4D3C-9F10-45C082219250}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2912C7FA-441C-46F0-B6BB-6B81B5A4546A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2FAA8960-0389-4D1F-B048-3A40BB26F90C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D0789877-CB99-43B6-8877-188CB7C6955C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{EDB9EA99-4714-4693-ACFD-227AEEB31888}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.63\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7933A90C-AD96-407C-9EE5-30009A58D33C}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{D718F84C-8E8D-4606-BFDA-35D6C910B266}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.70\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1E2E1007-C85F-4487-9CB4-CF33E2BA133C}] => (Allow) C:\Program Files\Opera\opera.exe (Opera Norway AS -> Opera Software)

==================== Restore Points =========================

27-10-2024 20:29:18 2024-10-27 fckn update
13-11-2024 20:48:40 Instalační služba modulů systému Windows
21-11-2024 23:33:23 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (12/01/2024 06:58:19 PM) (Source: Firefox Default Browser Agent) (EventID: 1140) (User: )
Description: Event-ID 1140

Error: (12/01/2024 06:58:19 PM) (Source: Firefox Default Browser Agent) (EventID: 1140) (User: )
Description: Event-ID 1140

Error: (11/30/2024 09:41:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 25 1.0.0.127.in-addr.arpa. PTR DESKTOP-1NAN9QR-2.local.

Error: (11/30/2024 09:41:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 127.0.0.1:5353 23 1.0.0.127.in-addr.arpa. PTR DESKTOP-1NAN9QR.local.

Error: (11/30/2024 09:41:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 25 D.7.0.F.D.F.9.7.B.B.4.D.5.A.F.4.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR DESKTOP-1NAN9QR-2.local.

Error: (11/30/2024 09:41:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from FE80:0000:0000:0000:4FA5:D4BB:79FD:F07D:5353 23 D.7.0.F.D.F.9.7.B.B.4.D.5.A.F.4.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR DESKTOP-1NAN9QR.local.

Error: (11/30/2024 09:41:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname DESKTOP-1NAN9QR.local already in use; will try DESKTOP-1NAN9QR-2.local instead

Error: (11/30/2024 09:41:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 0; will deregister 16 DESKTOP-1NAN9QR.local. AAAA FE80:0000:0000:0000:4FA5:D4BB:79FD:F07D


System errors:
=============
Error: (12/02/2024 03:21:41 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the LanWlanWwanSwitchingServiceUWP service.

Error: (12/01/2024 01:36:30 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the afcdpsrv service.

Error: (12/01/2024 01:36:23 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the LanWlanWwanSwitchingServiceUWP service.

Error: (11/30/2024 06:13:59 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the LanWlanWwanSwitchingServiceUWP service.

Error: (11/30/2024 06:13:27 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the CDPSvc service.

Error: (11/29/2024 09:01:22 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1NAN9QR)
Description: The server microsoft.windowscommunicationsapps_16005.14326.22098.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca did not register with DCOM within the required timeout.

Error: (11/28/2024 07:29:47 PM) (Source: Netwtw04) (EventID: 5007) (User: )
Description: 5007 - TX/CMD timeout (TfdQueue hanged)

Error: (11/28/2024 07:29:47 PM) (Source: Netwtw04) (EventID: 5007) (User: )
Description: 5007 - TX/CMD timeout (TfdQueue hanged)


CodeIntegrity:
===============
Date: 2024-12-02 20:21:45
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2024-12-02 20:16:02
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

BIOS: HP P85 Ver. 01.23 07/18/2018
Motherboard: HP 8231
Processor: Intel(R) Core(TM) i3-7100U CPU @ 2.40GHz
Percentage of memory in use: 50%
Total physical RAM: 32663.75 MB
Available physical RAM: 16085.1 MB
Total Virtual: 42663.75 MB
Available Virtual: 16980.13 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:456.44 GB) (Free:7.73 GB) (Model: Samsung SSD 860 EVO M.2 500GB) NTFS
Drive d: (ProDisk II) (Fixed) (Total:931.5 GB) (Free:31 GB) (Model: WDC WD10JFCX-68N6GN0) NTFS
Drive e: (HP_TOOLS) (Fixed) (Total:7.87 GB) (Free:7.85 GB) (Model: Samsung SSD 860 EVO M.2 500GB) FAT32
Drive g: (Google Drive) (Fixed) (Total:200 GB) (Free:7.36 GB) (Model: WDC WD10JFCX-68N6GN0) FAT32
Drive i: (T7-2000) (Fixed) (Total:1862.96 GB) (Free:921.08 GB) (Model: Samsung PSSD T7 SCSI Disk Device) exFAT

\\?\Volume{cb796dc7-0bc6-4a69-a971-345117323ae4}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.17 GB) NTFS
\\?\Volume{4da5b32f-2de3-41b7-9586-92e24a9b437e}\ (SYSTEM) (Fixed) (Total:0.35 GB) (Free:0.26 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: 459B2DC9)

Partition: GPT.

==========================================================
Disk: 2 (Size: 1863 GB) (Disk ID: 3D4331A0)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Re: Neustálé vytížení CPU

Napsal: 02 pro 2024 20:47
od Rudy
Zdravím!
Podívejte se do správce úloh a zjistěte, který program nejvíce zatěžuje CPU.

Re: Neustálé vytížení CPU

Napsal: 04 pro 2024 16:38
od krysarr
Ten, který zrovna používám. :D

Firefox, Chrome, Zoom, Word... cokoli. Střídá se to.
Třeba v tomto okamžiku má Firefox v pěti různých procesech dohromady 60 % a nedají se ani psát příspěvky na fórum, jak je to zpomalené. :(

Re: Neustálé vytížení CPU

Napsal: 04 pro 2024 16:51
od Rudy
Zkusíme prohlížeče vyčistit:

Spusťte postupně tyto utility:

1.
Stahnete Zoek.exe https://sdilej.cz/29519076/zoek.rar, a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize




autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;




Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

Re: Neustálé vytížení CPU

Napsal: 28 pro 2024 18:35
od krysarr
Zkusil jsem Zoek a nic to neudělalo.
V okně je napsáno pouze toto:
----------------------

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by fbart on 28/12/2024 at 18:21:12.94.
Microsoft Windows 10 Home 10.0.19045 x64
Running in: Normal Mode No Internet Access Detected
Launched: D:\SOFTWARE\zoek\zoek.exe [Scan all users] [Script inserted]

===== Runcheck 18:23:37.42 =====

--- Create Environment Variables 18:23:40.38
--- Checking Input 18:23:59.00
--- Reset Hosts File 18:24:25.42
--- AU AppData Check 18:24:28.21
--- Remove From Windows Installer 18:24:36.20

Re: Neustálé vytížení CPU

Napsal: 28 pro 2024 18:43
od Rudy
Spustil jste Zoek jako správce?

Re: Neustálé vytížení CPU

Napsal: 28 pro 2024 23:11
od krysarr
Ano, jako správce.
Ono to pak pokračovalo, ale stejně se to nějak nedokončilo.
Už 4 hodiny je to na stejném bodě:
---------------------

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by fbart on 28/12/2024 at 18:21:12.94.
Microsoft Windows 10 Home 10.0.19045 x64
Running in: Normal Mode No Internet Access Detected
Launched: D:\SOFTWARE\zoek\zoek.exe [Scan all users] [Script inserted]

===== Runcheck 18:23:37.42 =====

--- Create Environment Variables 18:23:40.38
--- Checking Input 18:23:59.00
--- Reset Hosts File 18:24:25.42
--- AU AppData Check 18:24:28.21
--- Remove From Windows Installer 18:24:36.20
--- Empty Folders Check 18:35:58.47
--- Registry HKLM Software Check 18:35:58.50
--- Quick Launch Shortcut Check 18:37:05.81
--- IE Startpage Check 18:37:40.91
--- Program Files DB Check 18:38:43.46
--- C:\Users\Default\AppData DB Check 18:40:32.19
--- C:\Users\Default.migrated\AppData DB Check 18:40:32.19
--- C:\Users\fbart\AppData DB Check 18:40:32.19
--- C:\WINDOWS\SysNative\config\systemprofile\AppData DB Check 18:40:32.19
--- C:\WINDOWS\sysWoW64\config\systemprofile\AppData DB Check 18:40:32.19
--- C:\WINDOWS\serviceprofiles\networkservice\AppData DB Check 18:40:32.19
--- C:\WINDOWS\serviceprofiles\Localservice\AppData DB Check 18:40:32.19
--- C:\Users\fbart DB Check 18:45:34.67
--- C:\PROGRA~3 DB Check 18:46:13.42
--- C:\Users\Default\AppData\Local DB Check 18:50:50.34
--- C:\Users\Default User\AppData\Local DB Check 18:50:50.34
--- C:\Users\Default.migrated\AppData\Local DB Check 18:50:50.34
--- C:\Users\fbart\AppData\Local DB Check 18:50:50.34
--- C:\WINDOWS\SysNative\config\systemprofile\AppData\Local DB Check 18:50:50.34
--- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local DB Check 18:50:50.34
--- C:\WINDOWS\serviceprofiles\networkservice\AppData\Local DB Check 18:50:50.34
--- C:\WINDOWS\serviceprofiles\Localservice\AppData\Local DB Check 18:50:50.34
--- C:\ProgramData\Microsoft\Windows\Start Menu\Programs DB Check 18:54:17.95
--- C:\Users\fbart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs DB Check 18:54:40.94
--- Tasks DB Check 18:54:55.91
--- C:\Users\fbart\AppData\LocalLow DB Check 18:55:05.55
--- C:\WINDOWS\SysNative\config\systemprofile\AppData\LocalLow DB Check 18:55:05.55
--- C:\WINDOWS\sysWoW64\config\systemprofile\AppData\LocalLow DB Check 18:55:05.55
--- C:\WINDOWS\serviceprofiles\networkservice\AppData\LocalLow DB Check 18:55:05.55
--- C:\WINDOWS\serviceprofiles\Localservice\AppData\LocalLow DB Check 18:55:05.55
--- Tasks2 DB Check 18:56:47.75
--- Documents DB Check 18:57:40.53
--- Documents2 DB Check 18:57:55.99
--- C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\5idlmvdg.default DB Check 18:57:59.18
--- C:\Users\fbart\AppData\Roaming\Mozilla\Firefox\Profiles\xs1zf06h.default-1602174025168 DB Check 18:57:59.18
--- C:\Users\Public\Desktop DB Check 18:58:07.26
--- C:\Users\fbart\Desktop DB Check 18:58:22.50
--- Services DB Check 18:58:46.13
--- FF prefs.js DB Check 19:00:07.73
--- Emptyclsid 19:02:49.24
--- Del by CLSID 19:02:54.71
--- Delete Services 19:05:02.03
--- Firefox Fix 19:05:06.66

Re: Neustálé vytížení CPU

Napsal: 28 pro 2024 23:12
od krysarr
Log z JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by fbart (Administrator) on 28/12/2024 at 18:37:50.38
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 5

Successfully deleted: C:\ProgramData\mntemp (File)
Successfully deleted: C:\Users\fbart\AppData\Local\productdata (Folder)
Successfully deleted: C:\Users\fbart\AppData\Roaming\media freeware (Folder)
Successfully deleted: C:\Users\Public\Desktop\free slideshow maker.lnk (Shortcut)
Successfully deleted: C:\Program Files (x86)\media freeware (Folder)

user_pref(browser.search.totalSearches, 101);



Registry: 2

Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 28/12/2024 at 18:45:27.09
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Re: Neustálé vytížení CPU

Napsal: 28 pro 2024 23:12
od krysarr
K restartu nedošlo ani v jednom případě.

Re: Neustálé vytížení CPU

Napsal: 28 pro 2024 23:54
od krysarr
A ještě další věc:
Zoek se odmítá vypnout a dělá v počítači zmatek (ve všech oknech neustále jakoby mačká PageDown).
Když ho vypnu, tak se znovu zapne.
Už se mi to stalo před pár lety a pokud si pamatuju, byl to dost velký problém. :-(

Re: Neustálé vytížení CPU

Napsal: 29 pro 2024 11:30
od Rudy
To je jeho vlastnost. Používáme ho proto, že čistí poměrně dokonalr. Zkuste tedy nouz. režim, ačkilv nechápu, proč se toto děje.

Re: Neustálé vytížení CPU

Napsal: 29 pro 2024 12:09
od krysarr
Omlouvám se, ale nouzový režim jsem ve Win10 už jednou v podobné situaci zkusil (možná to bylo dokonce kvůli Zoeku) a dva dny jsem se nemohl dostat zpátky do systému, takže to už nechci. :(

Jen by mne zajímalo, jak Zoek vypnout.
Čištění vypadá totiž už v téhle fázi celkem úspěšně, počítač je svižný, CPU není zasekané. :)
Takže už se jen zbavit Zoeku. :-D

Re: Neustálé vytížení CPU

Napsal: 29 pro 2024 13:15
od JaRon

Re: Neustálé vytížení CPU

Napsal: 29 pro 2024 16:03
od krysarr
Děkuji, ale to už zkouším bez úspěchu od včera. Jak jsem psal výše, Zoek se okamžitě spustí sám znovu.
A pořád dělá ten nesnesitelný efekt "PageDown", takže se na počítači nedá rozumně pracovat. :-(