Prosím o kntrolu logu. Děkuji.
Napsal: 06 dub 2025 20:40
Prosím o kontrolu logu zpomalené pc a internet.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-04-2025
Ran by Roman (administrator) on DESKTOP-9RDGM5O (Gigabyte Technology Co., Ltd. B550 GAMING X V2) (06-04-2025 21:31:45)
Running from C:\Users\rosmy\Desktop\FRST64.exe
Loaded Profiles: Roman
Platform: Microsoft Windows 11 Pro Version 23H2 22631.5039 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.260.564.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\Avast Software\AntiTrack\x86\ATServiceHost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\AntiTrack\x86\ATTray.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe <4>
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.5100.40.0_x64__cw5n1h2txyewy\WidgetBoard.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\134.0.3124.93\msedgewebview2.exe <8>
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(cmd.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\AntiTrack\x86\ATNMHost.exe
(DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\atieclxx.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Gigabyte Technology CO.) C:\Program Files\GIGABYTE\Smart Backup\RPMDaemon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2>
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\AntiTrack\x86\ATServiceHost.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c2fa179f72a88c18\RtkAudUService64.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.25022.57.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.296.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.5100.40.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [455976 2025-03-21] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c2fa179f72a88c18\RtkAudUService64.exe [2257752 2024-09-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [6928680 2025-04-01] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Sovos] => C:\Program Files (x86)\Canyon CND-SGM14RGB Gaming Mouse\OemDrv.exe [2450944 2019-08-22] () [File not signed]
HKLM-x32\...\Run: [AvastAntiTrack] => C:\Program Files\Avast Software\AntiTrack\x86\ATTray.exe [240936 2025-02-17] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\GIGABYTE\Smart Backup\RPMKickstartEx.exe [2320384 2014-04-01] (TODO: <Company name>) [File not signed]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3398037617-877173979-1485582407-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45875504 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
HKU\S-1-5-21-3398037617-877173979-1485582407-1001\...\Run: [STUISpeedLauncher] => C:\Program Files\Samsung\Stylish UI Pack\TouchBasedUI.exe [411136 2015-02-09] () [File not signed]
HKU\S-1-5-21-3398037617-877173979-1485582407-1001\...\Run: [MicrosoftEdgeAutoLaunch_8C26541BB0E90087424048CEDDA8EBAF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4418088 2025-04-03] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\us016PC: C:\Windows\System32\spool\prtprocs\x64\us016pc.dll [61736 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\WINDOWS\system32\pxcpmL.dll [912208 2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
HKLM\...\Print\Monitors\us016 Langmon: C:\WINDOWS\system32\us016lm.dll [40744 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\133.0.29113.143\Installer\chrmstp.exe [2025-03-26] (Avast Software s.r.o. -> Gen Digital Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2025-04-06]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {9D738C3E-20FB-404C-8DB6-2E316CB950B4} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [671440 2024-07-24] (Advanced Micro Devices -> )
Task: {CC44BC7D-9BA6-4ACD-B4D8-DB7025D1BE33} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {6577067C-EA62-43F7-8AFB-417F266FC654} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {BFF657B6-085A-4332-8F86-FF67962A4E38} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [184024 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {8EB333A3-B17D-475C-AC9B-074CA7BD291C} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3738496 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {3E41EA70-0247-49A3-AB56-A61EF1A5AB09} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3738496 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {9E619488-391E-4B4B-A6EC-CDE4980261BC} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [8543016 2025-02-26] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {125D64E3-7D1F-42A1-9C20-01D01F469482} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [6079272 2025-04-01] (Avast Software s.r.o. -> Gen Digital Inc.) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup" --configpath "C:\ProgramData\Avast Software\Cleanup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\Avast Software\Cle (the data entry has 53 more characters).
Task: {DE552F44-D6DA-497F-8F54-494E37B33706} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [8594216 2025-03-31] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {72DCAF4A-C225-44B8-BA6D-215F0D3E3D02} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5286696 2025-03-21] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {82A5154E-CE57-42A9-B0E6-E9DCED2B030A} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [6101800 2025-04-06] (Avast Software s.r.o. -> Gen Digital Inc.) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {56A2C882-6D12-4442-B7C6-46B554FD642C} - System32\Tasks\Avast Software\Avast SecureLine VPN Emergency Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [3964200 2025-04-06] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {FC11A5C0-A082-4CA2-AE6B-20123FDE5FD2} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [8289064 2025-03-27] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {2B217388-9CD4-4E9E-9AEF-896CE417608C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2564904 2024-11-19] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {1C195D11-92A2-488B-B81F-F3976018B61D} - System32\Tasks\AvastBrowserProtectS-1-5-21-3398037617-877173979-1485582407-1001 => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1690008 2024-04-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {0CCD4B86-66E2-4131-9A15-9360A72B929F} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {089E6D52-65FA-44B3-941D-62B9C4C5C47D} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {9B0572D0-F6B9-4413-9A6A-8FFDD2676DB7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [3480504 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {79F34EE2-EC08-4B95-BC2F-51D19A0DED66} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [6139696 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "a6108a6b-07b7-475f-b5c7-fa4c9abad6b0" --version "6.34.0.11482" --silent
Task: {90FFD2A9-E249-4B28-81BE-5383D1713D0A} - System32\Tasks\CCleanerSkipUAC - Roman => C:\Program Files\CCleaner\CCleaner.exe [39616304 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {4CEA4CD4-1BE0-4833-8108-F6513736CFF0} - System32\Tasks\cFos\Registration Tasks\Open Browser => c:\program files (x86)\avast software\browser\application\avastbrowser.exe [3171424 2024-11-06] (Avast Software s.r.o. -> Gen Digital Inc.) -> "hxxps://www.cfos.de/en/traffic-shaping/speed-gu ... cfops:3926, (the data entry has 1001 more characters).
Task: {003BF7EB-175D-4E81-B433-FE4077F6F0BF} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5463968 2025-03-12] (Microsoft Windows -> Microsoft Corporation)
Task: {E39083DB-3B74-4928-B612-BD5C1477CF01} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [738816 2023-04-04] () [File not signed]
Task: {3C43BD24-83FA-4815-A1EE-1584EB78E88C} - System32\Tasks\GigabyteSsdFirmwareUpdateTask => C:\Program Files\GIGABYTE\GBTSsdFirmwareUpdate\GNSSsdFwD.exe [945776 2024-06-19] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {739865A7-D942-4DA9-AFB2-AC3004A50B43} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [237672 2023-06-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {B45267C1-616E-40C4-8A14-571EEDF68566} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-3398037617-877173979-1485582407-1001 => MessengerHelper.exe --lassie (No File)
Task: {B36572CD-920C-4167-AFC2-9D40D85EAF59} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {F90C3417-34BD-4725-995D-3E557D24383C} - System32\Tasks\OneDrive Startup Task-S-1-5-21-3398037617-877173979-1485582407-1001 => C:\Users\rosmy\AppData\Local\Microsoft\OneDrive\25.041.0303.0002\OneDriveLauncher.exe [673064 2025-03-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {5A4B1497-16C7-4F05-9E9B-CF6700EC195F} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [823512 2024-08-02] (Advanced Micro Devices -> AMD)
Task: {2480DEC5-440A-43C1-9ED6-373E346AB25A} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60632 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {9FCE5092-AEF7-4EF0-A49C-8A712C15AE72} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60632 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {9C62FCD0-40C5-4875-AE21-60CB17106795} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [324312 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{99b877ff-3a1c-4207-bddb-9e3233fbea3d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bd812113-704b-4ed9-b905-a3488fc7687b}: [NameServer] 100.120.162.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default [2025-04-06]
Edge HomePage: Default -> hxxp://seznam.cz/
Edge Session Restore: Default -> is enabled.
Edge Extension: (Dokumenty Google offline) - C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-06]hxxps://clients2.google.com/service/update2/crx
Edge Extension: (Edge relevant text changes) - C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-01]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (Avast AntiTrack) - C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\obngolbhcefpehgphiokbippabmkhjeo [2025-03-04]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
FireFox:
========
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin HKU\S-1-5-21-3398037617-877173979-1485582407-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin HKU\S-1-5-21-3398037617-877173979-1485582407-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin HKU\S-1-5-21-3398037617-877173979-1485582407-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7492904 2025-03-21] (Avast Software s.r.o. -> AVAST Software)
R2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe [542424 0] (Advanced Micro Devices -> AMD)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [806696 2025-03-21] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2438440 2025-03-21] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [858920 2025-03-21] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastATServiceHost; C:\Program Files\Avast Software\AntiTrack\x86\ATServiceHost.exe [240936 2025-02-17] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\133.0.29113.143\elevation_service.exe [2207056 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-03-13] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1088816 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [19304744 2025-04-01] (Avast Software s.r.o. -> Gen Digital Inc.)
S4 EasyTuneEngineService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe [150640 2023-11-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S2 GBTECService; C:\Program Files (x86)\Gigabyte\GBTECService\OLEDDisplayService.exe [19568 2024-07-04] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S4 NativePushService; C:\Users\rosmy\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [594320 2023-02-22] (Wondershare Technology Group Co.,Ltd -> Wondershare)
S4 OCButtonService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\OcButtonService.exe [131184 2023-12-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\spdsvc.exe [508488 2018-07-23] (HP Inc. -> )
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [13395752 2025-04-06] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559312 2025-03-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe [3191256 2023-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe [133576 2023-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 GigabyteUpdateService; C:\WINDOWS\system32\GigabyteUpdateService.exe [861328 2025-04-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [36736 2023-05-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [33592 2024-09-12] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R2 AMDRyzenMasterDriverV19; C:\Windows\system32\AMDRyzenMasterDriver.sys [48328 2024-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
S2 AMDRyzenMasterDriverV20; C:\WINDOWS\system32\AMDRyzenMasterDriver.sys [48328 2024-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_960126269e89c62e\amdsafd.sys [113880 2024-05-10] (Advanced Micro Devices -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\amdkmdag.sys [106596128 2024-09-04] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [246880 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [384096 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [296032 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84576 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [28280 2024-11-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [37984 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [278616 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [553568 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [98912 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69728 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [959064 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1427552 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [207456 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [389720 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [85776 2025-02-12] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
R3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [40832 2024-01-17] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 aswWireGuard; C:\WINDOWS\System32\drivers\aswWireguard.sys [174864 2024-11-14] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R1 CTIIO; C:\WINDOWS\system32\drivers\CtiIo64.sys [34920 2024-12-21] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 gdrv3; C:\Windows\System32\drivers\gdrv3.sys [52440 2024-12-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [19672 2025-01-25] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_54848e53264597ab\rt68cx21x64.sys [887768 2024-09-19] (Realtek Semiconductor Corp. -> Realtek)
R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [23320 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2023-03-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473336 2023-03-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99576 2023-03-13] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-04-06 21:31 - 2025-04-06 21:32 - 000031594 _____ C:\Users\rosmy\Desktop\FRST.txt
2025-04-06 21:31 - 2025-04-06 21:31 - 000002016 _____ C:\Users\rosmy\Desktop\AdwCleaner[S06].txt
2025-04-06 21:31 - 2025-04-06 21:31 - 000000000 ____D C:\Users\rosmy\Desktop\FRST-OlderVersion
2025-04-06 18:43 - 2025-04-06 18:43 - 000005512 _____ C:\Users\rosmy\Desktop\spotify.txt
2025-04-06 17:56 - 2025-04-06 17:56 - 000691102 _____ C:\WINDOWS\system32\perfh005.dat
2025-04-06 17:56 - 2025-04-06 17:56 - 000143008 _____ C:\WINDOWS\system32\perfc005.dat
2025-04-06 13:54 - 2025-04-06 13:54 - 000024692 _____ C:\Users\rosmy\Desktop\kontrola.txt
2025-04-06 13:44 - 2025-04-06 13:44 - 000001284 _____ C:\Users\rosmy\Documents\cc_20250406_134448.reg
2025-04-06 10:41 - 2025-04-06 10:41 - 009989510 _____ (Kanz Software ) C:\Users\rosmy\Downloads\SoundNormalizer (1).exe
2025-04-06 10:34 - 2025-04-06 10:34 - 010136566 _____ (Kanz Software ) C:\Users\rosmy\Downloads\SoundNormalizer.exe
2025-04-06 10:31 - 2025-04-06 10:31 - 000331124 _____ C:\Users\rosmy\Downloads\mp3DC239.exe
2025-04-06 10:26 - 2025-04-06 10:26 - 000001393 _____ C:\Users\rosmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ashampoo Burning Studio 25.lnk
2025-04-01 20:52 - 2025-04-01 20:52 - 000009070 _____ C:\Users\rosmy\Documents\cc_20250401_205234.reg
2025-03-24 23:46 - 2025-03-24 23:46 - 000000988 _____ C:\Users\rosmy\Documents\cc_20250324_224644.reg
2025-03-22 00:20 - 2025-03-22 00:20 - 009566696 _____ (Malwarebytes) C:\Users\rosmy\Desktop\adwcleaner(1).exe
2025-03-21 10:46 - 2025-03-21 10:46 - 000316200 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2025-03-12 22:39 - 2025-03-12 22:39 - 000857458 _____ C:\Users\rosmy\Desktop\Informace o pojisteni skútr na dalsi obdobli.zip
2025-03-12 22:38 - 2025-03-12 22:38 - 000854930 _____ C:\Users\rosmy\Documents\Informace o pojisteni vozidla na dalsi obdobi.zip
2025-03-10 20:13 - 2025-03-10 20:13 - 000444793 _____ C:\Users\rosmy\Desktop\_ps_244WindFree_Comfort-CZ-v2_optimized.pdf
2025-03-10 20:00 - 2025-03-10 20:00 - 000294059 _____ C:\Users\rosmy\Desktop\CN2025044-Roman_Smejkal_Samsung.pdf
2025-03-10 19:59 - 2025-03-10 19:59 - 023168809 _____ C:\Users\rosmy\Desktop\81432_244_81432_243__ps_171samsung-comfort-cz.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-04-06 21:31 - 2023-03-12 23:32 - 000000000 ____D C:\FRST
2025-04-06 21:31 - 2023-03-12 23:23 - 002404864 _____ (Farbar) C:\Users\rosmy\Desktop\FRST64.exe
2025-04-06 21:30 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-04-06 19:53 - 2025-02-17 22:52 - 000000000 ____D C:\Users\rosmy\AppData\Local\Avast AntiTrack
2025-04-06 18:41 - 2023-01-28 12:40 - 000000000 ____D C:\Users\rosmy\AppData\Local\Packages
2025-04-06 18:41 - 2023-01-28 12:40 - 000000000 ____D C:\Users\rosmy\AppData\Local\D3DSCache
2025-04-06 17:56 - 2024-05-10 13:32 - 001629494 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-04-06 17:56 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2025-04-06 17:54 - 2024-05-10 13:26 - 000003326 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2025-04-06 17:54 - 2023-02-01 00:00 - 000000670 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2025-04-06 17:52 - 2024-10-13 21:25 - 000003118 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2025-04-06 17:52 - 2024-10-13 21:22 - 000003110 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2025-04-06 17:52 - 2024-05-10 13:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-04-06 17:52 - 2024-05-10 13:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2025-04-06 17:52 - 2023-01-28 16:09 - 000000000 ____D C:\ProgramData\AVAST Software
2025-04-06 17:52 - 2023-01-28 12:40 - 000089232 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteDownloadAssistant.exe
2025-04-06 17:52 - 2023-01-28 12:15 - 000875536 _____ C:\WINDOWS\system32\wpbbin.exe
2025-04-06 17:52 - 2023-01-28 12:15 - 000861328 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteUpdateService.exe
2025-04-06 17:52 - 2023-01-28 12:15 - 000012288 ___SH C:\DumpStack.log.tmp
2025-04-06 16:35 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-04-06 16:25 - 2024-05-10 13:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-04-06 13:45 - 2023-02-01 00:00 - 000000000 ____D C:\Program Files\CCleaner
2025-04-06 13:02 - 2024-04-19 22:03 - 000000000 ____D C:\Users\rosmy\AppData\Roaming\vlc
2025-04-06 09:03 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-04-06 09:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-04-05 22:43 - 2023-01-28 12:15 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-04-04 18:32 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2025-04-04 18:27 - 2024-05-10 13:26 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-04-04 18:27 - 2024-05-10 13:26 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-04-01 21:16 - 2025-02-06 21:32 - 000003164 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-3398037617-877173979-1485582407-1001
2025-04-01 21:04 - 2025-01-25 14:40 - 000002648 _____ C:\WINDOWS\system32\Tasks\AMDAutoUpdate
2025-04-01 21:04 - 2025-01-25 14:40 - 000002504 _____ C:\WINDOWS\system32\Tasks\StartAUEP
2025-04-01 21:04 - 2025-01-25 14:40 - 000002372 _____ C:\WINDOWS\system32\Tasks\StartCNBM
2025-04-01 21:04 - 2024-11-19 23:03 - 000002588 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2025-04-01 21:04 - 2024-10-13 21:22 - 000002672 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2025-04-01 21:04 - 2024-10-13 21:22 - 000002402 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2025-04-01 21:04 - 2024-10-13 21:22 - 000002114 _____ C:\WINDOWS\system32\Tasks\StartDVR
2025-04-01 21:04 - 2024-05-10 13:26 - 000003062 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3398037617-877173979-1485582407-1001
2025-04-01 21:04 - 2024-05-10 13:26 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2025-04-01 21:04 - 2024-05-10 13:26 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3398037617-877173979-1485582407-1001
2025-04-01 21:04 - 2024-05-10 13:26 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Roman
2025-04-01 21:04 - 2024-05-10 13:26 - 000002194 _____ C:\WINDOWS\system32\Tasks\StartCN
2025-03-31 21:27 - 2023-02-13 23:31 - 000000000 ____D C:\Users\rosmy\AppData\Local\AMD_Common
2025-03-31 21:26 - 2023-01-28 12:34 - 000002377 _____ C:\Users\rosmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-03-29 11:28 - 2023-01-31 23:53 - 000000000 ____D C:\Users\rosmy\AppData\Roaming\Microsoft\MMC
2025-03-26 18:22 - 2023-03-13 10:43 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2025-03-21 10:48 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-03-21 10:46 - 2023-03-13 10:37 - 001427552 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000959064 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000553568 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000389720 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000384096 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000296032 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000278616 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000246880 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000098912 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000084576 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000069728 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000037984 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2025-03-12 21:34 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2025-03-12 21:19 - 2025-02-01 21:53 - 000479784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-03-12 21:18 - 2024-05-10 14:21 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-03-12 21:18 - 2022-05-07 12:14 - 000000000 ____D C:\WINDOWS\InboxApps
2025-03-12 21:18 - 2022-05-07 12:14 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-03-12 21:18 - 2022-05-07 12:13 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-03-12 21:18 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing
2025-03-12 21:17 - 2023-02-13 19:50 - 000000000 ____D C:\Users\rosmy\AppData\Roaming\Microsoft\Word
2025-03-12 20:36 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-03-12 20:34 - 2024-05-10 13:24 - 003216384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-03-10 20:17 - 2023-01-28 17:48 - 000000000 ____D C:\Users\rosmy\AppData\Local\CrashDumps
2025-03-09 00:57 - 2023-01-28 12:40 - 000000000 ____D C:\ProgramData\Packages
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Log z Adwcleaner
# -------------------------------
# Malwarebytes AdwCleaner 8.5.0.595
# -------------------------------
# Build: 03-05-2025
# Database: 2024-10-23.4 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 04-06-2025
# Duration: 00:00:08
# OS: Windows 11 (Build 22631.5039)
# Scanned: 32108
# Detected: 2
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
Preinstalled.SamsungEasyDocumentCreator Folder C:\Program Files (x86)\SAMSUNG\EASY DOCUMENT CREATOR
Preinstalled.SamsungEasyDocumentCreator Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Samsung Easy Document Creator
AdwCleaner[S00].txt - [1648 octets] - [06/02/2025 22:24:35]
AdwCleaner[S01].txt - [1709 octets] - [25/02/2025 23:03:28]
AdwCleaner[S02].txt - [1770 octets] - [17/03/2025 22:32:35]
AdwCleaner[S03].txt - [1831 octets] - [17/03/2025 22:32:54]
AdwCleaner[S04].txt - [1894 octets] - [21/03/2025 23:20:19]
AdwCleaner[S05].txt - [1955 octets] - [06/04/2025 16:35:35]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S06].txt ##########
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-04-2025
Ran by Roman (administrator) on DESKTOP-9RDGM5O (Gigabyte Technology Co., Ltd. B550 GAMING X V2) (06-04-2025 21:31:45)
Running from C:\Users\rosmy\Desktop\FRST64.exe
Loaded Profiles: Roman
Platform: Microsoft Windows 11 Pro Version 23H2 22631.5039 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.260.564.0_x64__zpdnekdrzrea0\Spotify.exe <6>
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\Avast Software\AntiTrack\x86\ATServiceHost.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\AntiTrack\x86\ATTray.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe <4>
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.5100.40.0_x64__cw5n1h2txyewy\WidgetBoard.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\134.0.3124.93\msedgewebview2.exe <8>
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(cmd.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\AntiTrack\x86\ATNMHost.exe
(DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\atieclxx.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Gigabyte Technology CO.) C:\Program Files\GIGABYTE\Smart Backup\RPMDaemon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2>
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\AntiTrack\x86\ATServiceHost.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c2fa179f72a88c18\RtkAudUService64.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.25022.57.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.296.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.5100.40.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [455976 2025-03-21] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c2fa179f72a88c18\RtkAudUService64.exe [2257752 2024-09-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [TuneupUI.exe] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [6928680 2025-04-01] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Sovos] => C:\Program Files (x86)\Canyon CND-SGM14RGB Gaming Mouse\OemDrv.exe [2450944 2019-08-22] () [File not signed]
HKLM-x32\...\Run: [AvastAntiTrack] => C:\Program Files\Avast Software\AntiTrack\x86\ATTray.exe [240936 2025-02-17] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\GIGABYTE\Smart Backup\RPMKickstartEx.exe [2320384 2014-04-01] (TODO: <Company name>) [File not signed]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3398037617-877173979-1485582407-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45875504 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
HKU\S-1-5-21-3398037617-877173979-1485582407-1001\...\Run: [STUISpeedLauncher] => C:\Program Files\Samsung\Stylish UI Pack\TouchBasedUI.exe [411136 2015-02-09] () [File not signed]
HKU\S-1-5-21-3398037617-877173979-1485582407-1001\...\Run: [MicrosoftEdgeAutoLaunch_8C26541BB0E90087424048CEDDA8EBAF] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4418088 2025-04-03] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Windows x64\Print Processors\us016PC: C:\Windows\System32\spool\prtprocs\x64\us016pc.dll [61736 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\WINDOWS\system32\pxcpmL.dll [912208 2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
HKLM\...\Print\Monitors\us016 Langmon: C:\WINDOWS\system32\us016lm.dll [40744 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\133.0.29113.143\Installer\chrmstp.exe [2025-03-26] (Avast Software s.r.o. -> Gen Digital Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2025-04-06]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {9D738C3E-20FB-404C-8DB6-2E316CB950B4} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [671440 2024-07-24] (Advanced Micro Devices -> )
Task: {CC44BC7D-9BA6-4ACD-B4D8-DB7025D1BE33} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {6577067C-EA62-43F7-8AFB-417F266FC654} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {BFF657B6-085A-4332-8F86-FF67962A4E38} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [184024 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {8EB333A3-B17D-475C-AC9B-074CA7BD291C} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3738496 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {3E41EA70-0247-49A3-AB56-A61EF1A5AB09} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3738496 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {9E619488-391E-4B4B-A6EC-CDE4980261BC} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [8543016 2025-02-26] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {125D64E3-7D1F-42A1-9C20-01D01F469482} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [6079272 2025-04-01] (Avast Software s.r.o. -> Gen Digital Inc.) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup" --configpath "C:\ProgramData\Avast Software\Cleanup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\Avast Software\Cle (the data entry has 53 more characters).
Task: {DE552F44-D6DA-497F-8F54-494E37B33706} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [8594216 2025-03-31] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {72DCAF4A-C225-44B8-BA6D-215F0D3E3D02} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5286696 2025-03-21] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {82A5154E-CE57-42A9-B0E6-E9DCED2B030A} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [6101800 2025-04-06] (Avast Software s.r.o. -> Gen Digital Inc.) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {56A2C882-6D12-4442-B7C6-46B554FD642C} - System32\Tasks\Avast Software\Avast SecureLine VPN Emergency Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [3964200 2025-04-06] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {FC11A5C0-A082-4CA2-AE6B-20123FDE5FD2} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [8289064 2025-03-27] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {2B217388-9CD4-4E9E-9AEF-896CE417608C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2564904 2024-11-19] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {1C195D11-92A2-488B-B81F-F3976018B61D} - System32\Tasks\AvastBrowserProtectS-1-5-21-3398037617-877173979-1485582407-1001 => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1690008 2024-04-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {0CCD4B86-66E2-4131-9A15-9360A72B929F} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {089E6D52-65FA-44B3-941D-62B9C4C5C47D} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {9B0572D0-F6B9-4413-9A6A-8FFDD2676DB7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [3480504 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {79F34EE2-EC08-4B95-BC2F-51D19A0DED66} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [6139696 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "a6108a6b-07b7-475f-b5c7-fa4c9abad6b0" --version "6.34.0.11482" --silent
Task: {90FFD2A9-E249-4B28-81BE-5383D1713D0A} - System32\Tasks\CCleanerSkipUAC - Roman => C:\Program Files\CCleaner\CCleaner.exe [39616304 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {4CEA4CD4-1BE0-4833-8108-F6513736CFF0} - System32\Tasks\cFos\Registration Tasks\Open Browser => c:\program files (x86)\avast software\browser\application\avastbrowser.exe [3171424 2024-11-06] (Avast Software s.r.o. -> Gen Digital Inc.) -> "hxxps://www.cfos.de/en/traffic-shaping/speed-gu ... cfops:3926, (the data entry has 1001 more characters).
Task: {003BF7EB-175D-4E81-B433-FE4077F6F0BF} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5463968 2025-03-12] (Microsoft Windows -> Microsoft Corporation)
Task: {E39083DB-3B74-4928-B612-BD5C1477CF01} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [738816 2023-04-04] () [File not signed]
Task: {3C43BD24-83FA-4815-A1EE-1584EB78E88C} - System32\Tasks\GigabyteSsdFirmwareUpdateTask => C:\Program Files\GIGABYTE\GBTSsdFirmwareUpdate\GNSSsdFwD.exe [945776 2024-06-19] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {739865A7-D942-4DA9-AFB2-AC3004A50B43} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [237672 2023-06-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {B45267C1-616E-40C4-8A14-571EEDF68566} - System32\Tasks\Meta\Messenger-WSP-Helper-S-1-5-21-3398037617-877173979-1485582407-1001 => MessengerHelper.exe --lassie (No File)
Task: {B36572CD-920C-4167-AFC2-9D40D85EAF59} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {F90C3417-34BD-4725-995D-3E557D24383C} - System32\Tasks\OneDrive Startup Task-S-1-5-21-3398037617-877173979-1485582407-1001 => C:\Users\rosmy\AppData\Local\Microsoft\OneDrive\25.041.0303.0002\OneDriveLauncher.exe [673064 2025-03-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {5A4B1497-16C7-4F05-9E9B-CF6700EC195F} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [823512 2024-08-02] (Advanced Micro Devices -> AMD)
Task: {2480DEC5-440A-43C1-9ED6-373E346AB25A} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60632 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {9FCE5092-AEF7-4EF0-A49C-8A712C15AE72} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60632 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {9C62FCD0-40C5-4875-AE21-60CB17106795} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [324312 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{99b877ff-3a1c-4207-bddb-9e3233fbea3d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bd812113-704b-4ed9-b905-a3488fc7687b}: [NameServer] 100.120.162.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default [2025-04-06]
Edge HomePage: Default -> hxxp://seznam.cz/
Edge Session Restore: Default -> is enabled.
Edge Extension: (Dokumenty Google offline) - C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-06]hxxps://clients2.google.com/service/update2/crx
Edge Extension: (Edge relevant text changes) - C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-01]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (Avast AntiTrack) - C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\obngolbhcefpehgphiokbippabmkhjeo [2025-03-04]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
FireFox:
========
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin HKU\S-1-5-21-3398037617-877173979-1485582407-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin HKU\S-1-5-21-3398037617-877173979-1485582407-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin HKU\S-1-5-21-3398037617-877173979-1485582407-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-02-12] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7492904 2025-03-21] (Avast Software s.r.o. -> AVAST Software)
R2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe [542424 0] (Advanced Micro Devices -> AMD)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [806696 2025-03-21] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2438440 2025-03-21] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [858920 2025-03-21] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastATServiceHost; C:\Program Files\Avast Software\AntiTrack\x86\ATServiceHost.exe [240936 2025-02-17] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\133.0.29113.143\elevation_service.exe [2207056 2025-03-23] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-03-13] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1088816 2025-03-12] (Gen Digital Inc. -> Gen Digital Inc.)
R2 CleanupPSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [19304744 2025-04-01] (Avast Software s.r.o. -> Gen Digital Inc.)
S4 EasyTuneEngineService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe [150640 2023-11-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S2 GBTECService; C:\Program Files (x86)\Gigabyte\GBTECService\OLEDDisplayService.exe [19568 2024-07-04] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S4 NativePushService; C:\Users\rosmy\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [594320 2023-02-22] (Wondershare Technology Group Co.,Ltd -> Wondershare)
S4 OCButtonService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\OcButtonService.exe [131184 2023-12-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\spdsvc.exe [508488 2018-07-23] (HP Inc. -> )
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [13395752 2025-04-06] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559312 2025-03-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe [3191256 2023-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe [133576 2023-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 GigabyteUpdateService; C:\WINDOWS\system32\GigabyteUpdateService.exe [861328 2025-04-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [36736 2023-05-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [33592 2024-09-12] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R2 AMDRyzenMasterDriverV19; C:\Windows\system32\AMDRyzenMasterDriver.sys [48328 2024-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
S2 AMDRyzenMasterDriverV20; C:\WINDOWS\system32\AMDRyzenMasterDriver.sys [48328 2024-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_960126269e89c62e\amdsafd.sys [113880 2024-05-10] (Advanced Micro Devices -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\amdkmdag.sys [106596128 2024-09-04] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [246880 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [384096 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [296032 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84576 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [28280 2024-11-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [37984 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [278616 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [553568 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [98912 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69728 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [959064 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1427552 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [207456 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [389720 2025-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [85776 2025-02-12] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
R3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [40832 2024-01-17] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 aswWireGuard; C:\WINDOWS\System32\drivers\aswWireguard.sys [174864 2024-11-14] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R1 CTIIO; C:\WINDOWS\system32\drivers\CtiIo64.sys [34920 2024-12-21] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 gdrv3; C:\Windows\System32\drivers\gdrv3.sys [52440 2024-12-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [19672 2025-01-25] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_54848e53264597ab\rt68cx21x64.sys [887768 2024-09-19] (Realtek Semiconductor Corp. -> Realtek)
R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [23320 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2023-03-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473336 2023-03-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99576 2023-03-13] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-04-06 21:31 - 2025-04-06 21:32 - 000031594 _____ C:\Users\rosmy\Desktop\FRST.txt
2025-04-06 21:31 - 2025-04-06 21:31 - 000002016 _____ C:\Users\rosmy\Desktop\AdwCleaner[S06].txt
2025-04-06 21:31 - 2025-04-06 21:31 - 000000000 ____D C:\Users\rosmy\Desktop\FRST-OlderVersion
2025-04-06 18:43 - 2025-04-06 18:43 - 000005512 _____ C:\Users\rosmy\Desktop\spotify.txt
2025-04-06 17:56 - 2025-04-06 17:56 - 000691102 _____ C:\WINDOWS\system32\perfh005.dat
2025-04-06 17:56 - 2025-04-06 17:56 - 000143008 _____ C:\WINDOWS\system32\perfc005.dat
2025-04-06 13:54 - 2025-04-06 13:54 - 000024692 _____ C:\Users\rosmy\Desktop\kontrola.txt
2025-04-06 13:44 - 2025-04-06 13:44 - 000001284 _____ C:\Users\rosmy\Documents\cc_20250406_134448.reg
2025-04-06 10:41 - 2025-04-06 10:41 - 009989510 _____ (Kanz Software ) C:\Users\rosmy\Downloads\SoundNormalizer (1).exe
2025-04-06 10:34 - 2025-04-06 10:34 - 010136566 _____ (Kanz Software ) C:\Users\rosmy\Downloads\SoundNormalizer.exe
2025-04-06 10:31 - 2025-04-06 10:31 - 000331124 _____ C:\Users\rosmy\Downloads\mp3DC239.exe
2025-04-06 10:26 - 2025-04-06 10:26 - 000001393 _____ C:\Users\rosmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ashampoo Burning Studio 25.lnk
2025-04-01 20:52 - 2025-04-01 20:52 - 000009070 _____ C:\Users\rosmy\Documents\cc_20250401_205234.reg
2025-03-24 23:46 - 2025-03-24 23:46 - 000000988 _____ C:\Users\rosmy\Documents\cc_20250324_224644.reg
2025-03-22 00:20 - 2025-03-22 00:20 - 009566696 _____ (Malwarebytes) C:\Users\rosmy\Desktop\adwcleaner(1).exe
2025-03-21 10:46 - 2025-03-21 10:46 - 000316200 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2025-03-12 22:39 - 2025-03-12 22:39 - 000857458 _____ C:\Users\rosmy\Desktop\Informace o pojisteni skútr na dalsi obdobli.zip
2025-03-12 22:38 - 2025-03-12 22:38 - 000854930 _____ C:\Users\rosmy\Documents\Informace o pojisteni vozidla na dalsi obdobi.zip
2025-03-10 20:13 - 2025-03-10 20:13 - 000444793 _____ C:\Users\rosmy\Desktop\_ps_244WindFree_Comfort-CZ-v2_optimized.pdf
2025-03-10 20:00 - 2025-03-10 20:00 - 000294059 _____ C:\Users\rosmy\Desktop\CN2025044-Roman_Smejkal_Samsung.pdf
2025-03-10 19:59 - 2025-03-10 19:59 - 023168809 _____ C:\Users\rosmy\Desktop\81432_244_81432_243__ps_171samsung-comfort-cz.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-04-06 21:31 - 2023-03-12 23:32 - 000000000 ____D C:\FRST
2025-04-06 21:31 - 2023-03-12 23:23 - 002404864 _____ (Farbar) C:\Users\rosmy\Desktop\FRST64.exe
2025-04-06 21:30 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-04-06 19:53 - 2025-02-17 22:52 - 000000000 ____D C:\Users\rosmy\AppData\Local\Avast AntiTrack
2025-04-06 18:41 - 2023-01-28 12:40 - 000000000 ____D C:\Users\rosmy\AppData\Local\Packages
2025-04-06 18:41 - 2023-01-28 12:40 - 000000000 ____D C:\Users\rosmy\AppData\Local\D3DSCache
2025-04-06 17:56 - 2024-05-10 13:32 - 001629494 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-04-06 17:56 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2025-04-06 17:54 - 2024-05-10 13:26 - 000003326 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2025-04-06 17:54 - 2023-02-01 00:00 - 000000670 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2025-04-06 17:52 - 2024-10-13 21:25 - 000003118 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2025-04-06 17:52 - 2024-10-13 21:22 - 000003110 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2025-04-06 17:52 - 2024-05-10 13:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-04-06 17:52 - 2024-05-10 13:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2025-04-06 17:52 - 2023-01-28 16:09 - 000000000 ____D C:\ProgramData\AVAST Software
2025-04-06 17:52 - 2023-01-28 12:40 - 000089232 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteDownloadAssistant.exe
2025-04-06 17:52 - 2023-01-28 12:15 - 000875536 _____ C:\WINDOWS\system32\wpbbin.exe
2025-04-06 17:52 - 2023-01-28 12:15 - 000861328 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteUpdateService.exe
2025-04-06 17:52 - 2023-01-28 12:15 - 000012288 ___SH C:\DumpStack.log.tmp
2025-04-06 16:35 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-04-06 16:25 - 2024-05-10 13:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-04-06 13:45 - 2023-02-01 00:00 - 000000000 ____D C:\Program Files\CCleaner
2025-04-06 13:02 - 2024-04-19 22:03 - 000000000 ____D C:\Users\rosmy\AppData\Roaming\vlc
2025-04-06 09:03 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-04-06 09:00 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-04-05 22:43 - 2023-01-28 12:15 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-04-04 18:32 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2025-04-04 18:27 - 2024-05-10 13:26 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-04-04 18:27 - 2024-05-10 13:26 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-04-01 21:16 - 2025-02-06 21:32 - 000003164 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-3398037617-877173979-1485582407-1001
2025-04-01 21:04 - 2025-01-25 14:40 - 000002648 _____ C:\WINDOWS\system32\Tasks\AMDAutoUpdate
2025-04-01 21:04 - 2025-01-25 14:40 - 000002504 _____ C:\WINDOWS\system32\Tasks\StartAUEP
2025-04-01 21:04 - 2025-01-25 14:40 - 000002372 _____ C:\WINDOWS\system32\Tasks\StartCNBM
2025-04-01 21:04 - 2024-11-19 23:03 - 000002588 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2025-04-01 21:04 - 2024-10-13 21:22 - 000002672 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2025-04-01 21:04 - 2024-10-13 21:22 - 000002402 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2025-04-01 21:04 - 2024-10-13 21:22 - 000002114 _____ C:\WINDOWS\system32\Tasks\StartDVR
2025-04-01 21:04 - 2024-05-10 13:26 - 000003062 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3398037617-877173979-1485582407-1001
2025-04-01 21:04 - 2024-05-10 13:26 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2025-04-01 21:04 - 2024-05-10 13:26 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3398037617-877173979-1485582407-1001
2025-04-01 21:04 - 2024-05-10 13:26 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Roman
2025-04-01 21:04 - 2024-05-10 13:26 - 000002194 _____ C:\WINDOWS\system32\Tasks\StartCN
2025-03-31 21:27 - 2023-02-13 23:31 - 000000000 ____D C:\Users\rosmy\AppData\Local\AMD_Common
2025-03-31 21:26 - 2023-01-28 12:34 - 000002377 _____ C:\Users\rosmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-03-29 11:28 - 2023-01-31 23:53 - 000000000 ____D C:\Users\rosmy\AppData\Roaming\Microsoft\MMC
2025-03-26 18:22 - 2023-03-13 10:43 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2025-03-21 10:48 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-03-21 10:46 - 2023-03-13 10:37 - 001427552 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000959064 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000553568 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000389720 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000384096 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000296032 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000278616 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000246880 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000098912 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000084576 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000069728 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2025-03-21 10:46 - 2023-03-13 10:37 - 000037984 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2025-03-12 21:34 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2025-03-12 21:19 - 2025-02-01 21:53 - 000479784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-03-12 21:18 - 2024-05-10 14:21 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-03-12 21:18 - 2022-05-07 12:14 - 000000000 ____D C:\WINDOWS\InboxApps
2025-03-12 21:18 - 2022-05-07 12:14 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-03-12 21:18 - 2022-05-07 12:13 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-03-12 21:18 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-03-12 21:18 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing
2025-03-12 21:17 - 2023-02-13 19:50 - 000000000 ____D C:\Users\rosmy\AppData\Roaming\Microsoft\Word
2025-03-12 20:36 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-03-12 20:34 - 2024-05-10 13:24 - 003216384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-03-10 20:17 - 2023-01-28 17:48 - 000000000 ____D C:\Users\rosmy\AppData\Local\CrashDumps
2025-03-09 00:57 - 2023-01-28 12:40 - 000000000 ____D C:\ProgramData\Packages
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Log z Adwcleaner
# -------------------------------
# Malwarebytes AdwCleaner 8.5.0.595
# -------------------------------
# Build: 03-05-2025
# Database: 2024-10-23.4 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 04-06-2025
# Duration: 00:00:08
# OS: Windows 11 (Build 22631.5039)
# Scanned: 32108
# Detected: 2
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
Preinstalled.SamsungEasyDocumentCreator Folder C:\Program Files (x86)\SAMSUNG\EASY DOCUMENT CREATOR
Preinstalled.SamsungEasyDocumentCreator Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Samsung Easy Document Creator
AdwCleaner[S00].txt - [1648 octets] - [06/02/2025 22:24:35]
AdwCleaner[S01].txt - [1709 octets] - [25/02/2025 23:03:28]
AdwCleaner[S02].txt - [1770 octets] - [17/03/2025 22:32:35]
AdwCleaner[S03].txt - [1831 octets] - [17/03/2025 22:32:54]
AdwCleaner[S04].txt - [1894 octets] - [21/03/2025 23:20:19]
AdwCleaner[S05].txt - [1955 octets] - [06/04/2025 16:35:35]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S06].txt ##########