Prosím o kntrolu logu. Děkuji.
Napsal: 20 říj 2025 17:21
Zdravím! Prosím o kontrolu logu, pomalý internet. Děkuji.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-10-2025
Ran by Roman (administrator) on DESKTOP-9RDGM5O (Gigabyte Technology Co., Ltd. B550 GAMING X V2) (20-10-2025 18:07:16)
Running from C:\Users\rosmy\Desktop\FRST64.exe
Loaded Profiles: Roman
Platform: Microsoft Windows 11 Pro Version 23H2 22631.6060 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc) C:\Program Files\WindowsApps\AppleInc.iCloud_15.5.23.0_x64__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\AntiTrack\x86\ATTray.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.28301.40.0_x64__cw5n1h2txyewy\WidgetBoard.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\141.0.3537.85\msedgewebview2.exe <7>
(C:\Users\rosmy\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\rosmy\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(DriverStore\FileRepository\u0417877.inf_amd64_8b2c2b61b3f8a9e5\B417004\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0417877.inf_amd64_8b2c2b61b3f8a9e5\B417004\atieclxx.exe
(explorer.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe <3>
(explorer.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe <4>
(Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Gigabyte Technology CO.) C:\Program Files\GIGABYTE\Smart Backup\RPMDaemon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0417877.inf_amd64_8b2c2b61b3f8a9e5\B417004\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\AntiTrack\x86\ATServiceHost.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Piriform\CCleaner 7\CCleaner_service.exe
(services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe
(services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_25a6ec32bd401f19\RtkAudUService64.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\rosmy\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2541.3.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(svchost.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Piriform\CCleaner 7\CCleaner.exe
(svchost.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\GraphicsCardEngineStarter.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.151.0.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\rosmy\AppData\Local\Microsoft\OneDrive\25.179.0914.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [845992 2025-09-24] (Gen Digital Inc. -> Gen Digital Inc.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_25a6ec32bd401f19\RtkAudUService64.exe [3119640 2025-08-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [Avast Cleanup UI] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [7438128 2025-07-09] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Sovos] => C:\Program Files (x86)\Canyon CND-SGM14RGB Gaming Mouse\OemDrv.exe [2450944 2019-08-22] () [File not signed]
HKLM-x32\...\Run: [AvastAntiTrack] => C:\Program Files\Avast Software\AntiTrack\x86\ATTray.exe [236336 2025-08-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\GIGABYTE\Smart Backup\RPMKickstartEx.exe [2320384 2014-04-01] (TODO: <Company name>) [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3398037617-877173979-1485582407-1001\...\Run: [STUISpeedLauncher] => C:\Program Files\Samsung\Stylish UI Pack\TouchBasedUI.exe [411136 2015-02-09] () [File not signed]
HKLM\...\Windows x64\Print Processors\us016PC: C:\Windows\System32\spool\prtprocs\x64\us016pc.dll [61736 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\WINDOWS\system32\pxcpmL.dll [941392 2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
HKLM\...\Print\Monitors\us016 Langmon: C:\WINDOWS\system32\us016lm.dll [40744 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\140.0.32350.210\Installer\chrmstp.exe [2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2025-10-16]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Gen Digital Inc. -> Gen Digital Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {9D738C3E-20FB-404C-8DB6-2E316CB950B4} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [671440 2024-07-24] (Advanced Micro Devices -> )
Task: {966EBD3B-631F-4953-8836-585F158656D0} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030864 2025-07-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {B13F5755-EA2E-4D09-901B-937F37BED089} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030864 2025-07-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {A41F8779-62D6-49B6-B6E1-1C999F5EDB5A} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [184016 2025-07-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {8EB333A3-B17D-475C-AC9B-074CA7BD291C} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3728592 2025-10-14] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {3E41EA70-0247-49A3-AB56-A61EF1A5AB09} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3728592 2025-10-14] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {3A1AB604-C31E-4BE7-AB01-221078E96F11} - System32\Tasks\Avast Secure Browser VPS Differential Update => C:\Program Files\AVAST Software\Browser\Application\vps_helper.exe [1872304 2025-10-14] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {9E619488-391E-4B4B-A6EC-CDE4980261BC} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [9072352 2025-09-12] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {125D64E3-7D1F-42A1-9C20-01D01F469482} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [6108464 2025-07-09] (Avast Software s.r.o. -> Gen Digital Inc.) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup" --configpath "C:\ProgramData\Avast Software\Cleanup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\Avast Software\Cle (the data entry has 53 more characters).
Task: {DE552F44-D6DA-497F-8F54-494E37B33706} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [8930096 2025-07-09] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {3C87E182-18F6-49F5-839D-0F05C41528A2} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5573800 2025-09-24] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {82A5154E-CE57-42A9-B0E6-E9DCED2B030A} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [6192808 2025-10-15] (Gen Digital Inc. -> Gen Digital Inc.) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {3575FA18-7384-44D8-B18C-610D53900A36} - System32\Tasks\Avast Software\Avast SecureLine VPN Emergency Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [3977384 2025-10-15] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {FC11A5C0-A082-4CA2-AE6B-20123FDE5FD2} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [9007408 2025-10-13] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {2B217388-9CD4-4E9E-9AEF-896CE417608C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2977504 2025-10-14] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {1C195D11-92A2-488B-B81F-F3976018B61D} - System32\Tasks\AvastBrowserProtectS-1-5-21-3398037617-877173979-1485582407-1001 => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1690008 2024-04-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {0CCD4B86-66E2-4131-9A15-9360A72B929F} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {089E6D52-65FA-44B3-941D-62B9C4C5C47D} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {58E75511-0E12-479A-BC16-131D85A17EA1} - System32\Tasks\CCleaner 7 - Skip UAC - S-1-5-21-3398037617-877173979-1485582407-1001 => C:\Program Files\Piriform\CCleaner 7\CCleaner.exe [4717688 2025-10-19] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {4CEA4CD4-1BE0-4833-8108-F6513736CFF0} - System32\Tasks\cFos\Registration Tasks\Open Browser => c:\program files (x86)\avast software\browser\application\avastbrowser.exe [3171424 2024-11-06] (Avast Software s.r.o. -> Gen Digital Inc.) -> "hxxps://www.cfos.de/en/traffic-shaping/speed-gu ... cfops:3926, (the data entry has 1001 more characters).
Task: {003BF7EB-175D-4E81-B433-FE4077F6F0BF} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5625136 2025-10-15] (Microsoft Windows -> Microsoft Corporation)
Task: {E39083DB-3B74-4928-B612-BD5C1477CF01} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [738816 2023-04-04] () [File not signed]
Task: {3C43BD24-83FA-4815-A1EE-1584EB78E88C} - System32\Tasks\GigabyteSsdFirmwareUpdateTask => C:\Program Files\GIGABYTE\GBTSsdFirmwareUpdate\GNSSsdFwD.exe [945776 2024-06-19] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {739865A7-D942-4DA9-AFB2-AC3004A50B43} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [237672 2023-06-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {9BA4DB6A-2539-485E-9D8E-4EF8985CF0CE} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2401792 2025-06-06] () [File not signed]
Task: {7DB48684-31B8-4E64-848A-A36E40D12D98} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030864 2025-07-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {F90C3417-34BD-4725-995D-3E557D24383C} - System32\Tasks\OneDrive Startup Task-S-1-5-21-3398037617-877173979-1485582407-1001 => C:\Users\rosmy\AppData\Local\Microsoft\OneDrive\25.179.0914.0003\OneDriveLauncher.exe [725864 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {710C2BD6-A62B-4FCF-BEE9-313308F6052A} - System32\Tasks\Piriform\CCleaner 7 - S-1-5-21-3398037617-877173979-1485582407-1001 => C:\Program Files\Piriform\CCleaner 7\CCleaner.exe [4717688 2025-10-19] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {223774D3-EA26-4ADA-9EE0-555520473119} - System32\Tasks\Piriform\CCleaner 7 BugReport => C:\Program Files\Piriform\CCleaner 7\CCleanerBugReport.exe [6243960 2025-10-19] (Gen Digital Inc. -> Gen Digital Inc.) -> --send "dumps|report" --product 234 --programpath "C:\Program Files\Piriform\CCleaner 7" --configpath "C:\Program Files\Piriform\CCleaner 7\data" --path "C:\Program Files\Piriform\CCleaner 7\log" --path "C:\Program Files\Piriform\CCleaner 7\data\dumps" --logpath "C:\Program Files\Piriform\CCleaner 7 (the data entry has 58 more characters).
Task: {D2302A49-4FD6-4589-A245-8DBC660771A1} - System32\Tasks\Piriform\CCleaner 7 Update => C:\Program Files\Common Files\Piriform\Icarus\piriform-ccl\icarus.exe [8971064 2025-10-14] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {5A4B1497-16C7-4F05-9E9B-CF6700EC195F} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [823512 2024-08-02] (Advanced Micro Devices -> AMD)
Task: {464F24D3-9A19-4EDF-8510-DAEA42DA325C} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60624 2025-07-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {D951BB86-4A4A-4252-9DB3-8E631DB9523D} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [323792 2025-07-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{99b877ff-3a1c-4207-bddb-9e3233fbea3d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bd812113-704b-4ed9-b905-a3488fc7687b}: [NameServer] 100.120.162.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default [2025-10-10]
Edge HomePage: Default -> hxxp://seznam.cz/
Edge Session Restore: Default -> is enabled.
Edge Extension: (Dokumenty Google offline) - C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-09-14]
Edge Extension: (Edge relevant text changes) - C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-01]
Edge Extension: (Avast AntiTrack) - C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\obngolbhcefpehgphiokbippabmkhjeo [2025-03-04]
FireFox:
========
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin HKU\S-1-5-21-3398037617-877173979-1485582407-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin HKU\S-1-5-21-3398037617-877173979-1485582407-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin HKU\S-1-5-21-3398037617-877173979-1485582407-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7785640 2025-09-24] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe [542424 0] (Advanced Micro Devices -> AMD)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [1036456 2025-09-24] (Gen Digital Inc. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2598568 2025-09-24] (Gen Digital Inc. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1089704 2025-09-24] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AvastATServiceHost; C:\Program Files\Avast Software\AntiTrack\x86\ATServiceHost.exe [236336 2025-08-06] (Avast Software s.r.o. -> AVAST Software)
R2 AvastCleanupSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [20681008 2025-07-09] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\140.0.32350.210\elevation_service.exe [2637712 2025-10-14] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-03-13] (Avast Software s.r.o. -> AVAST Software)
R2 CCleaner7; C:\Program Files\Piriform\CCleaner 7\CCleaner_service.exe [28276344 2025-10-19] (Gen Digital Inc. -> Gen Digital Inc.)
S3 CorsairDeviceControlService; C:\Program Files\Corsair\Corsair Device Control Service\bin\CorsairDeviceControlService.exe [2525576 2025-04-17] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 EasyTuneEngineService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe [150696 2025-08-08] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S2 GBTECService; C:\Program Files (x86)\Gigabyte\GBTECService\OLEDDisplayService.exe [21160 2025-08-08] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 NativePushService; C:\Users\rosmy\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [594320 2023-02-22] (Wondershare Technology Group Co.,Ltd -> Wondershare)
S2 OCButtonService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\OcButtonService.exe [131184 2023-12-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\spdsvc.exe [508488 2018-07-23] (HP Inc. -> )
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [14314152 2025-10-15] (Gen Digital Inc. -> Gen Digital Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [803080 2025-10-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe [3191256 2023-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe [133576 2023-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 GigabyteUpdateService; C:\WINDOWS\system32\GigabyteUpdateService.exe [861328 2025-10-20] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [36736 2023-05-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [33592 2024-09-12] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R2 AMDRyzenMasterDriverV19; C:\Windows\system32\AMDRyzenMasterDriver.sys [48328 2025-07-01] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
S2 AMDRyzenMasterDriverV20; C:\WINDOWS\system32\AMDRyzenMasterDriver.sys [48328 2025-07-01] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_960126269e89c62e\amdsafd.sys [113880 2024-05-10] (Advanced Micro Devices -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0417877.inf_amd64_8b2c2b61b3f8a9e5\B417004\amdkmdag.sys [106595712 2025-07-31] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [244832 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [390752 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [299616 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [85600 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [29144 2025-08-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [29792 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [284768 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [574048 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [92232 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [71240 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [876104 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1282632 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [201824 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [391776 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [85776 2025-02-12] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
R3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [40832 2024-01-17] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 aswWireGuard; C:\WINDOWS\System32\drivers\aswWireguard.sys [174912 2025-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R1 CTIIO; C:\WINDOWS\system32\drivers\CtiIo64.sys [34920 2025-10-10] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 gdrv3; C:\Windows\System32\drivers\gdrv3.sys [52440 2024-12-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [19672 2025-10-10] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_25769e03e756857c\rt68cx21x64.sys [905216 2025-07-20] (Realtek Semiconductor Corp. -> Realtek)
R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [23320 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2023-03-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473336 2023-03-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99576 2023-03-13] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-10-20 18:07 - 2025-10-20 18:07 - 000031979 ____X C:\Users\rosmy\Desktop\FRST.txt
2025-10-20 18:07 - 2025-10-20 18:07 - 000000000 ___DX C:\Users\rosmy\Desktop\FRST-OlderVersion
2025-10-20 16:58 - 2025-10-20 16:58 - 000691102 _____ C:\WINDOWS\system32\perfh005.dat
2025-10-20 16:58 - 2025-10-20 16:58 - 000143008 _____ C:\WINDOWS\system32\perfc005.dat
2025-10-19 14:51 - 2025-10-19 14:51 - 000003268 _____ C:\WINDOWS\system32\Tasks\CCleaner 7 - Skip UAC - S-1-5-21-3398037617-877173979-1485582407-1001
2025-10-19 14:51 - 2025-10-19 14:51 - 000002152 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 7.lnk
2025-10-19 14:51 - 2025-10-19 14:51 - 000002140 _____ C:\Users\Public\Desktop\CCleaner 7.lnk
2025-10-19 14:51 - 2025-10-19 14:51 - 000000000 ____D C:\WINDOWS\system32\Tasks\Piriform
2025-10-19 14:51 - 2025-10-19 14:51 - 000000000 ____D C:\Users\rosmy\AppData\Roaming\CCleaner
2025-10-19 14:50 - 2025-10-19 14:50 - 000000000 ____D C:\Program Files\Piriform
2025-10-19 14:50 - 2025-10-19 14:50 - 000000000 ____D C:\Program Files\Common Files\Piriform
2025-10-18 22:37 - 2025-10-18 22:37 - 003887170 _____ C:\Users\rosmy\Downloads\detaily-kontaktni-zateplovaci-system-5e3d1e79063a9.pdf
2025-10-17 23:18 - 2025-10-17 23:18 - 000003642 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser VPS Differential Update
2025-10-15 21:39 - 2025-10-15 21:39 - 000010136 _____ C:\Users\rosmy\Documents\VYPL_080552_0_202509.pdf
2025-10-15 21:39 - 2025-10-15 21:39 - 000008405 _____ C:\Users\rosmy\Documents\VYPL_080552_1_202509.pdf
2025-10-10 20:26 - 2025-10-10 20:26 - 000000000 ____D C:\Program Files\Corsair
2025-10-10 20:23 - 2025-10-10 20:23 - 000008670 _____ C:\Users\rosmy\Documents\cc_20251010_202259.reg
2025-10-06 21:56 - 2025-10-06 21:56 - 000326674 _____ C:\Users\rosmy\Desktop\VŠ - potvrzení o studiu 1. ročník ZS.PDF
2025-10-05 19:12 - 2025-10-05 19:12 - 000034597 _____ C:\Users\rosmy\Documents\0447-20250901-20250930-9-MCZB.pdf
2025-10-05 19:11 - 2025-10-05 19:11 - 000139430 ____X C:\Users\rosmy\Desktop\Faktura_tonery cybermedia10969.pdf
2025-10-05 19:10 - 2025-10-05 19:10 - 000121096 ____X C:\Users\rosmy\Desktop\faktura xiaomi powerbanka.pdf
2025-09-29 21:00 - 2025-09-29 21:00 - 000461729 _____ C:\Users\rosmy\Downloads\Škoda Karoq 130 let.pdf
2025-09-29 20:41 - 2025-09-29 20:41 - 000156391 _____ C:\Users\rosmy\Downloads\mss-rocni-vypis-z-vkladoveho-uctu (1).pdf
2025-09-29 20:38 - 2025-09-29 20:38 - 000180674 _____ C:\Users\rosmy\Downloads\SB0000000000000000000091119911.pdf
2025-09-29 20:36 - 2025-09-29 20:36 - 000180755 _____ C:\Users\rosmy\Downloads\mss-rocni-vypis-z-vkladoveho-uctu.pdf
2025-09-25 20:04 - 2025-09-25 20:04 - 000000000 ____D C:\scan
2025-09-25 19:58 - 2025-09-25 19:58 - 000000000 ____D C:\Users\rosmy\Documents\Scan
2025-09-24 19:31 - 2025-09-24 19:31 - 000001115 _____ C:\Users\Public\Desktop\PDF-XChange Editor.lnk
2025-09-24 19:31 - 2025-09-24 19:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software
2025-09-24 19:31 - 2025-09-24 19:31 - 000000000 ____D C:\ProgramData\FileOpen
2025-09-24 19:31 - 2025-09-24 19:31 - 000000000 ____D C:\Program Files\Tracker Software
2025-09-24 19:31 - 2025-09-24 19:31 - 000000000 ____D C:\Program Files\Common Files\Tracker Software
2025-09-24 19:31 - 2025-09-22 14:30 - 000941392 _____ (PDF-XChange Co Ltd.) C:\WINDOWS\system32\pxcpmL.dll
2025-09-24 19:01 - 2025-09-24 19:01 - 000322216 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2025-09-24 05:29 - 2025-09-24 05:29 - 000008802 _____ C:\WINDOWS\Info.xml
2025-09-22 18:05 - 2025-09-22 18:05 - 000030992 _____ C:\Users\rosmy\Desktop\SOKOLA - Faktura Kojátky.pdf
2025-09-22 18:04 - 2025-09-22 18:04 - 000033781 ____X C:\Users\rosmy\Desktop\SOKOLA - Faktura fasáda.pdf
2025-09-21 22:12 - 2025-09-21 22:12 - 000000000 ____D C:\Users\rosmy\Downloads\Photos-1-001
2025-09-20 21:34 - 2025-09-20 21:34 - 000008399 _____ C:\Users\rosmy\Desktop\VYPL_080552_1_202507.pdf
2025-09-20 21:33 - 2025-09-20 21:33 - 000116124 _____ C:\Users\rosmy\Desktop\faktura svetlo koupelnaFV250087698.pdf
2025-09-20 21:30 - 2025-09-20 21:30 - 000135009 ____X C:\Users\rosmy\Desktop\Faktura hmozdinky_WWW.E-STAVEBNINY.CZ_s.r.o._15010394.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-10-20 18:07 - 2023-03-12 23:32 - 000000000 ____D C:\FRST
2025-10-20 18:07 - 2023-03-12 23:23 - 002442752 _____ (Farbar) C:\Users\rosmy\Desktop\FRST64.exe
2025-10-20 17:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-10-20 17:41 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-10-20 17:03 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-10-20 16:58 - 2024-05-10 13:32 - 001629494 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-10-20 16:58 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2025-10-20 16:54 - 2025-02-17 22:52 - 000000000 ____D C:\Users\rosmy\AppData\Local\Avast AntiTrack
2025-10-20 16:53 - 2025-09-02 22:04 - 000003118 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2025-10-20 16:53 - 2025-07-10 18:05 - 000003110 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2025-10-20 16:53 - 2024-05-10 13:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2025-10-20 16:53 - 2024-05-10 13:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-10-20 16:53 - 2023-01-28 16:09 - 000000000 ____D C:\ProgramData\AVAST Software
2025-10-20 16:53 - 2023-01-28 12:40 - 000089232 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteDownloadAssistant.exe
2025-10-20 16:52 - 2024-05-10 13:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-10-20 16:52 - 2023-01-28 12:15 - 000875536 _____ C:\WINDOWS\system32\wpbbin.exe
2025-10-20 16:52 - 2023-01-28 12:15 - 000861328 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteUpdateService.exe
2025-10-20 16:52 - 2023-01-28 12:15 - 000012288 ___SH C:\DumpStack.log.tmp
2025-10-19 22:43 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-10-19 14:53 - 2023-01-28 12:40 - 000000000 ____D C:\Users\rosmy\AppData\Local\D3DSCache
2025-10-19 14:52 - 2023-01-28 17:48 - 000000000 ____D C:\Users\rosmy\AppData\Local\CrashDumps
2025-10-19 14:50 - 2024-03-19 20:42 - 000000000 ____D C:\ProgramData\Piriform
2025-10-19 14:50 - 2023-02-01 00:00 - 000000000 ____D C:\Program Files\CCleaner
2025-10-18 21:30 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2025-10-17 23:18 - 2023-03-13 10:43 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2025-10-17 23:18 - 2023-01-28 12:15 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-10-15 22:40 - 2025-02-01 21:53 - 000479792 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-10-15 22:39 - 2024-05-10 14:21 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-10-15 22:39 - 2022-05-07 12:14 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-10-15 21:28 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2025-10-15 21:17 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-10-15 21:15 - 2024-05-10 13:24 - 003214848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-10-15 21:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-10-15 21:02 - 2023-02-13 23:31 - 000000000 ____D C:\Users\rosmy\AppData\Local\AMD_Common
2025-10-14 20:21 - 2023-01-28 15:30 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-10-14 20:18 - 2023-01-28 15:30 - 214534944 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-10-14 20:08 - 2025-02-06 21:32 - 000003570 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-3398037617-877173979-1485582407-1001
2025-10-14 20:08 - 2024-05-10 13:26 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3398037617-877173979-1485582407-1001
2025-10-14 20:08 - 2024-05-10 13:26 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3398037617-877173979-1485582407-1001
2025-10-14 20:08 - 2023-01-28 12:34 - 000002379 _____ C:\Users\rosmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-10-11 22:27 - 2024-05-10 13:26 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-10-11 22:27 - 2024-05-10 13:26 - 000003514 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-10-10 20:31 - 2024-01-11 22:14 - 000000000 ___HD C:\Program Files (x86)\Temp
2025-10-10 20:26 - 2024-12-22 00:46 - 000019672 _____ (MICSYS Technology Co., LTd) C:\WINDOWS\system32\Drivers\MsIo64.sys
2025-10-10 20:26 - 2024-01-11 21:59 - 000034920 _____ (Creative Technology Innovation Co., LTd.) C:\WINDOWS\system32\Drivers\CtiIo64.sys
2025-10-10 20:26 - 2024-01-11 21:59 - 000000000 ____D C:\Program Files\ENE
2025-10-10 20:26 - 2023-01-31 21:34 - 000000000 ____D C:\Program Files (x86)\Realtek
2025-10-10 20:26 - 2023-01-28 12:42 - 000000000 ____D C:\ProgramData\Package Cache
2025-10-10 20:26 - 2023-01-28 12:40 - 000000000 ____D C:\Users\rosmy\AppData\Local\Packages
2025-10-10 20:26 - 2023-01-28 12:40 - 000000000 ____D C:\ProgramData\Packages
2025-10-10 20:25 - 2024-01-11 21:59 - 000001921 _____ C:\Users\Public\Desktop\GCC.lnk
2025-10-02 21:13 - 2025-06-23 22:15 - 000003300 _____ C:\WINDOWS\system32\Tasks\klcp_update
2025-10-02 21:13 - 2025-06-23 22:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2025-10-02 21:13 - 2025-06-23 22:15 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2025-10-01 21:12 - 2025-04-06 18:43 - 000006187 _____ C:\Users\rosmy\Desktop\spotify.txt
2025-09-26 23:40 - 2025-09-02 21:44 - 000002402 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2025-09-26 23:40 - 2025-06-01 22:28 - 000002672 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2025-09-26 23:40 - 2025-06-01 22:28 - 000002114 _____ C:\WINDOWS\system32\Tasks\StartDVR
2025-09-26 23:40 - 2025-01-25 14:40 - 000002648 _____ C:\WINDOWS\system32\Tasks\AMDAutoUpdate
2025-09-26 23:40 - 2025-01-25 14:40 - 000002504 _____ C:\WINDOWS\system32\Tasks\StartAUEP
2025-09-26 23:40 - 2024-11-19 23:03 - 000002588 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2025-09-26 23:40 - 2024-05-10 13:26 - 000002594 _____ C:\WINDOWS\system32\Tasks\GraphicsCardEngine
2025-09-26 23:40 - 2024-05-10 13:26 - 000002194 _____ C:\WINDOWS\system32\Tasks\StartCN
2025-09-25 20:09 - 2023-03-31 20:31 - 000000000 ____D C:\Users\rosmy\AppData\Roaming\Samsung
2025-09-25 19:58 - 2024-05-29 20:41 - 000000000 ____D C:\ProgramData\boost_interprocess
2025-09-25 19:28 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-09-24 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\NDF
2025-09-24 19:01 - 2023-03-13 10:37 - 001282632 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000876104 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000574048 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000391776 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000390752 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000299616 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000284768 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000244832 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000092232 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000085600 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000071240 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000029792 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2025-09-21 22:16 - 2023-01-28 15:40 - 000000000 ____D C:\Users\rosmy\AppData\Local\GHISLER
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Log AdwCleaner
# -------------------------------
# Malwarebytes AdwCleaner 8.5.0.595
# -------------------------------
# Build: 03-05-2025
# Database: 2024-10-23.4 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-20-2025
# Duration: 00:00:08
# OS: Windows 11 (Build 22631.6060)
# Scanned: 32108
# Detected: 2
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
Preinstalled.SamsungEasyDocumentCreator Folder C:\Program Files (x86)\SAMSUNG\EASY DOCUMENT CREATOR
Preinstalled.SamsungEasyDocumentCreator Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Samsung Easy Document Creator
AdwCleaner[S06].txt - [2016 octets] - [06/04/2025 21:30:04]
AdwCleaner[S00].txt - [1711 octets] - [08/04/2025 22:43:31]
AdwCleaner[S01].txt - [1772 octets] - [10/04/2025 21:42:03]
AdwCleaner[S02].txt - [1833 octets] - [18/04/2025 22:25:03]
AdwCleaner[S03].txt - [1894 octets] - [26/04/2025 20:47:34]
AdwCleaner[S04].txt - [1955 octets] - [27/04/2025 00:15:24]
AdwCleaner[S05].txt - [2016 octets] - [09/05/2025 22:13:06]
AdwCleaner[S07].txt - [2077 octets] - [12/06/2025 20:37:37]
AdwCleaner[S08].txt - [2138 octets] - [29/06/2025 20:05:35]
AdwCleaner[S09].txt - [2199 octets] - [04/07/2025 23:23:42]
AdwCleaner[S10].txt - [2260 octets] - [07/08/2025 20:57:10]
AdwCleaner[S11].txt - [2321 octets] - [01/09/2025 21:50:47]
AdwCleaner[S12].txt - [2382 octets] - [13/09/2025 08:09:52]
AdwCleaner[S13].txt - [2443 octets] - [14/09/2025 20:31:33]
AdwCleaner[S14].txt - [2504 octets] - [18/09/2025 21:58:02]
AdwCleaner[S15].txt - [2565 octets] - [10/10/2025 20:33:09]
AdwCleaner[S16].txt - [2398 octets] - [10/10/2025 20:33:29]
AdwCleaner[C16].txt - [2588 octets] - [10/10/2025 20:33:52]
AdwCleaner[S17].txt - [2748 octets] - [11/10/2025 23:16:41]
AdwCleaner[S18].txt - [2809 octets] - [19/10/2025 14:49:11]
AdwCleaner[S19].txt - [2870 octets] - [19/10/2025 14:49:45]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S20].txt ##########
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-10-2025
Ran by Roman (administrator) on DESKTOP-9RDGM5O (Gigabyte Technology Co., Ltd. B550 GAMING X V2) (20-10-2025 18:07:16)
Running from C:\Users\rosmy\Desktop\FRST64.exe
Loaded Profiles: Roman
Platform: Microsoft Windows 11 Pro Version 23H2 22631.6060 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc) C:\Program Files\WindowsApps\AppleInc.iCloud_15.5.23.0_x64__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\AntiTrack\x86\ATTray.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.28301.40.0_x64__cw5n1h2txyewy\WidgetBoard.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\141.0.3537.85\msedgewebview2.exe <7>
(C:\Users\rosmy\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\rosmy\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(DriverStore\FileRepository\u0417877.inf_amd64_8b2c2b61b3f8a9e5\B417004\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0417877.inf_amd64_8b2c2b61b3f8a9e5\B417004\atieclxx.exe
(explorer.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe <3>
(explorer.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe <4>
(Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Gigabyte Technology CO.) C:\Program Files\GIGABYTE\Smart Backup\RPMDaemon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0417877.inf_amd64_8b2c2b61b3f8a9e5\B417004\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\AntiTrack\x86\ATServiceHost.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Piriform\CCleaner 7\CCleaner_service.exe
(services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe
(services.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\System32\GigabyteUpdateService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_25a6ec32bd401f19\RtkAudUService64.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\rosmy\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2541.3.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (Advanced Micro Devices -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe
(svchost.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Piriform\CCleaner 7\CCleaner.exe
(svchost.exe ->) (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\GraphicsCardEngineStarter.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.151.0.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\rosmy\AppData\Local\Microsoft\OneDrive\25.179.0914.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [845992 2025-09-24] (Gen Digital Inc. -> Gen Digital Inc.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_25a6ec32bd401f19\RtkAudUService64.exe [3119640 2025-08-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [Avast Cleanup UI] => C:\Program Files\Avast Software\Cleanup\TuneupUI.exe [7438128 2025-07-09] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Sovos] => C:\Program Files (x86)\Canyon CND-SGM14RGB Gaming Mouse\OemDrv.exe [2450944 2019-08-22] () [File not signed]
HKLM-x32\...\Run: [AvastAntiTrack] => C:\Program Files\Avast Software\AntiTrack\x86\ATTray.exe [236336 2025-08-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\GIGABYTE\Smart Backup\RPMKickstartEx.exe [2320384 2014-04-01] (TODO: <Company name>) [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-3398037617-877173979-1485582407-1001\...\Run: [STUISpeedLauncher] => C:\Program Files\Samsung\Stylish UI Pack\TouchBasedUI.exe [411136 2015-02-09] () [File not signed]
HKLM\...\Windows x64\Print Processors\us016PC: C:\Windows\System32\spool\prtprocs\x64\us016pc.dll [61736 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\WINDOWS\system32\pxcpmL.dll [941392 2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
HKLM\...\Print\Monitors\us016 Langmon: C:\WINDOWS\system32\us016lm.dll [40744 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\140.0.32350.210\Installer\chrmstp.exe [2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2025-10-16]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Gen Digital Inc. -> Gen Digital Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {9D738C3E-20FB-404C-8DB6-2E316CB950B4} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [671440 2024-07-24] (Advanced Micro Devices -> )
Task: {966EBD3B-631F-4953-8836-585F158656D0} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030864 2025-07-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {B13F5755-EA2E-4D09-901B-937F37BED089} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030864 2025-07-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {A41F8779-62D6-49B6-B6E1-1C999F5EDB5A} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [184016 2025-07-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {8EB333A3-B17D-475C-AC9B-074CA7BD291C} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3728592 2025-10-14] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {3E41EA70-0247-49A3-AB56-A61EF1A5AB09} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3728592 2025-10-14] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {3A1AB604-C31E-4BE7-AB01-221078E96F11} - System32\Tasks\Avast Secure Browser VPS Differential Update => C:\Program Files\AVAST Software\Browser\Application\vps_helper.exe [1872304 2025-10-14] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {9E619488-391E-4B4B-A6EC-CDE4980261BC} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [9072352 2025-09-12] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {125D64E3-7D1F-42A1-9C20-01D01F469482} - System32\Tasks\Avast Software\Avast Cleanup BugReport => C:\Program Files\Avast Software\Cleanup\AvBugReport.exe [6108464 2025-07-09] (Avast Software s.r.o. -> Gen Digital Inc.) -> --send "dumps|report" --silent --product 62 --programpath "C:\Program Files\Avast Software\Cleanup" --configpath "C:\ProgramData\Avast Software\Cleanup" --path "C:\ProgramData\Avast Software\Cleanup\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramData\Avast Software\Cle (the data entry has 53 more characters).
Task: {DE552F44-D6DA-497F-8F54-494E37B33706} - System32\Tasks\Avast Software\Avast Cleanup Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe [8930096 2025-07-09] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {3C87E182-18F6-49F5-839D-0F05C41528A2} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5573800 2025-09-24] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {82A5154E-CE57-42A9-B0E6-E9DCED2B030A} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [6192808 2025-10-15] (Gen Digital Inc. -> Gen Digital Inc.) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {3575FA18-7384-44D8-B18C-610D53900A36} - System32\Tasks\Avast Software\Avast SecureLine VPN Emergency Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [3977384 2025-10-15] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {FC11A5C0-A082-4CA2-AE6B-20123FDE5FD2} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [9007408 2025-10-13] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {2B217388-9CD4-4E9E-9AEF-896CE417608C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2977504 2025-10-14] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {1C195D11-92A2-488B-B81F-F3976018B61D} - System32\Tasks\AvastBrowserProtectS-1-5-21-3398037617-877173979-1485582407-1001 => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1690008 2024-04-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {0CCD4B86-66E2-4131-9A15-9360A72B929F} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {089E6D52-65FA-44B3-941D-62B9C4C5C47D} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {58E75511-0E12-479A-BC16-131D85A17EA1} - System32\Tasks\CCleaner 7 - Skip UAC - S-1-5-21-3398037617-877173979-1485582407-1001 => C:\Program Files\Piriform\CCleaner 7\CCleaner.exe [4717688 2025-10-19] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {4CEA4CD4-1BE0-4833-8108-F6513736CFF0} - System32\Tasks\cFos\Registration Tasks\Open Browser => c:\program files (x86)\avast software\browser\application\avastbrowser.exe [3171424 2024-11-06] (Avast Software s.r.o. -> Gen Digital Inc.) -> "hxxps://www.cfos.de/en/traffic-shaping/speed-gu ... cfops:3926, (the data entry has 1001 more characters).
Task: {003BF7EB-175D-4E81-B433-FE4077F6F0BF} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5625136 2025-10-15] (Microsoft Windows -> Microsoft Corporation)
Task: {E39083DB-3B74-4928-B612-BD5C1477CF01} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [738816 2023-04-04] () [File not signed]
Task: {3C43BD24-83FA-4815-A1EE-1584EB78E88C} - System32\Tasks\GigabyteSsdFirmwareUpdateTask => C:\Program Files\GIGABYTE\GBTSsdFirmwareUpdate\GNSSsdFwD.exe [945776 2024-06-19] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {739865A7-D942-4DA9-AFB2-AC3004A50B43} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [237672 2023-06-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {9BA4DB6A-2539-485E-9D8E-4EF8985CF0CE} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2401792 2025-06-06] () [File not signed]
Task: {7DB48684-31B8-4E64-848A-A36E40D12D98} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030864 2025-07-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {F90C3417-34BD-4725-995D-3E557D24383C} - System32\Tasks\OneDrive Startup Task-S-1-5-21-3398037617-877173979-1485582407-1001 => C:\Users\rosmy\AppData\Local\Microsoft\OneDrive\25.179.0914.0003\OneDriveLauncher.exe [725864 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {710C2BD6-A62B-4FCF-BEE9-313308F6052A} - System32\Tasks\Piriform\CCleaner 7 - S-1-5-21-3398037617-877173979-1485582407-1001 => C:\Program Files\Piriform\CCleaner 7\CCleaner.exe [4717688 2025-10-19] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {223774D3-EA26-4ADA-9EE0-555520473119} - System32\Tasks\Piriform\CCleaner 7 BugReport => C:\Program Files\Piriform\CCleaner 7\CCleanerBugReport.exe [6243960 2025-10-19] (Gen Digital Inc. -> Gen Digital Inc.) -> --send "dumps|report" --product 234 --programpath "C:\Program Files\Piriform\CCleaner 7" --configpath "C:\Program Files\Piriform\CCleaner 7\data" --path "C:\Program Files\Piriform\CCleaner 7\log" --path "C:\Program Files\Piriform\CCleaner 7\data\dumps" --logpath "C:\Program Files\Piriform\CCleaner 7 (the data entry has 58 more characters).
Task: {D2302A49-4FD6-4589-A245-8DBC660771A1} - System32\Tasks\Piriform\CCleaner 7 Update => C:\Program Files\Common Files\Piriform\Icarus\piriform-ccl\icarus.exe [8971064 2025-10-14] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {5A4B1497-16C7-4F05-9E9B-CF6700EC195F} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [823512 2024-08-02] (Advanced Micro Devices -> AMD)
Task: {464F24D3-9A19-4EDF-8510-DAEA42DA325C} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60624 2025-07-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {D951BB86-4A4A-4252-9DB3-8E631DB9523D} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [323792 2025-07-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{99b877ff-3a1c-4207-bddb-9e3233fbea3d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bd812113-704b-4ed9-b905-a3488fc7687b}: [NameServer] 100.120.162.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default [2025-10-10]
Edge HomePage: Default -> hxxp://seznam.cz/
Edge Session Restore: Default -> is enabled.
Edge Extension: (Dokumenty Google offline) - C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-09-14]
Edge Extension: (Edge relevant text changes) - C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-01]
Edge Extension: (Avast AntiTrack) - C:\Users\rosmy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\obngolbhcefpehgphiokbippabmkhjeo [2025-03-04]
FireFox:
========
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1697.6\npAvastBrowserUpdate3.dll [2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin HKU\S-1-5-21-3398037617-877173979-1485582407-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin HKU\S-1-5-21-3398037617-877173979-1485582407-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
FF Plugin HKU\S-1-5-21-3398037617-877173979-1485582407-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2025-09-22] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> PDF-XChange Co Ltd.)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7785640 2025-09-24] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe [542424 0] (Advanced Micro Devices -> AMD)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [1036456 2025-09-24] (Gen Digital Inc. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2598568 2025-09-24] (Gen Digital Inc. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1089704 2025-09-24] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AvastATServiceHost; C:\Program Files\Avast Software\AntiTrack\x86\ATServiceHost.exe [236336 2025-08-06] (Avast Software s.r.o. -> AVAST Software)
R2 AvastCleanupSvc; C:\Program Files\Avast Software\Cleanup\TuneupSvc.exe [20681008 2025-07-09] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [192664 2024-12-30] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\140.0.32350.210\elevation_service.exe [2637712 2025-10-14] (Gen Digital Inc. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-03-13] (Avast Software s.r.o. -> AVAST Software)
R2 CCleaner7; C:\Program Files\Piriform\CCleaner 7\CCleaner_service.exe [28276344 2025-10-19] (Gen Digital Inc. -> Gen Digital Inc.)
S3 CorsairDeviceControlService; C:\Program Files\Corsair\Corsair Device Control Service\bin\CorsairDeviceControlService.exe [2525576 2025-04-17] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 EasyTuneEngineService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\EasyTuneEngineService.exe [150696 2025-08-08] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S2 GBTECService; C:\Program Files (x86)\Gigabyte\GBTECService\OLEDDisplayService.exe [21160 2025-08-08] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 NativePushService; C:\Users\rosmy\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [594320 2023-02-22] (Wondershare Technology Group Co.,Ltd -> Wondershare)
S2 OCButtonService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\OcButtonService.exe [131184 2023-12-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Samsung Printer Dianostics Service; C:\WINDOWS\SysWOW64\spdsvc.exe [508488 2018-07-23] (HP Inc. -> )
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [14314152 2025-10-15] (Gen Digital Inc. -> Gen Digital Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [803080 2025-10-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\NisSrv.exe [3191256 2023-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2301.6-0\MsMpEng.exe [133576 2023-03-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 GigabyteUpdateService; C:\WINDOWS\system32\GigabyteUpdateService.exe [861328 2025-10-20] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [36736 2023-05-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [33592 2024-09-12] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R2 AMDRyzenMasterDriverV19; C:\Windows\system32\AMDRyzenMasterDriver.sys [48328 2025-07-01] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
S2 AMDRyzenMasterDriverV20; C:\WINDOWS\system32\AMDRyzenMasterDriver.sys [48328 2025-07-01] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_960126269e89c62e\amdsafd.sys [113880 2024-05-10] (Advanced Micro Devices -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0417877.inf_amd64_8b2c2b61b3f8a9e5\B417004\amdkmdag.sys [106595712 2025-07-31] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [244832 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [390752 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [299616 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [85600 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [29144 2025-08-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [29792 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [284768 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [574048 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [92232 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [71240 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [876104 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1282632 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [201824 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [391776 2025-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [85776 2025-02-12] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
R3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [40832 2024-01-17] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 aswWireGuard; C:\WINDOWS\System32\drivers\aswWireguard.sys [174912 2025-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R1 CTIIO; C:\WINDOWS\system32\drivers\CtiIo64.sys [34920 2025-10-10] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 gdrv3; C:\Windows\System32\drivers\gdrv3.sys [52440 2024-12-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [19672 2025-10-10] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_25769e03e756857c\rt68cx21x64.sys [905216 2025-07-20] (Realtek Semiconductor Corp. -> Realtek)
R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [23320 2022-02-24] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2023-03-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473336 2023-03-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99576 2023-03-13] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-10-20 18:07 - 2025-10-20 18:07 - 000031979 ____X C:\Users\rosmy\Desktop\FRST.txt
2025-10-20 18:07 - 2025-10-20 18:07 - 000000000 ___DX C:\Users\rosmy\Desktop\FRST-OlderVersion
2025-10-20 16:58 - 2025-10-20 16:58 - 000691102 _____ C:\WINDOWS\system32\perfh005.dat
2025-10-20 16:58 - 2025-10-20 16:58 - 000143008 _____ C:\WINDOWS\system32\perfc005.dat
2025-10-19 14:51 - 2025-10-19 14:51 - 000003268 _____ C:\WINDOWS\system32\Tasks\CCleaner 7 - Skip UAC - S-1-5-21-3398037617-877173979-1485582407-1001
2025-10-19 14:51 - 2025-10-19 14:51 - 000002152 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 7.lnk
2025-10-19 14:51 - 2025-10-19 14:51 - 000002140 _____ C:\Users\Public\Desktop\CCleaner 7.lnk
2025-10-19 14:51 - 2025-10-19 14:51 - 000000000 ____D C:\WINDOWS\system32\Tasks\Piriform
2025-10-19 14:51 - 2025-10-19 14:51 - 000000000 ____D C:\Users\rosmy\AppData\Roaming\CCleaner
2025-10-19 14:50 - 2025-10-19 14:50 - 000000000 ____D C:\Program Files\Piriform
2025-10-19 14:50 - 2025-10-19 14:50 - 000000000 ____D C:\Program Files\Common Files\Piriform
2025-10-18 22:37 - 2025-10-18 22:37 - 003887170 _____ C:\Users\rosmy\Downloads\detaily-kontaktni-zateplovaci-system-5e3d1e79063a9.pdf
2025-10-17 23:18 - 2025-10-17 23:18 - 000003642 _____ C:\WINDOWS\system32\Tasks\Avast Secure Browser VPS Differential Update
2025-10-15 21:39 - 2025-10-15 21:39 - 000010136 _____ C:\Users\rosmy\Documents\VYPL_080552_0_202509.pdf
2025-10-15 21:39 - 2025-10-15 21:39 - 000008405 _____ C:\Users\rosmy\Documents\VYPL_080552_1_202509.pdf
2025-10-10 20:26 - 2025-10-10 20:26 - 000000000 ____D C:\Program Files\Corsair
2025-10-10 20:23 - 2025-10-10 20:23 - 000008670 _____ C:\Users\rosmy\Documents\cc_20251010_202259.reg
2025-10-06 21:56 - 2025-10-06 21:56 - 000326674 _____ C:\Users\rosmy\Desktop\VŠ - potvrzení o studiu 1. ročník ZS.PDF
2025-10-05 19:12 - 2025-10-05 19:12 - 000034597 _____ C:\Users\rosmy\Documents\0447-20250901-20250930-9-MCZB.pdf
2025-10-05 19:11 - 2025-10-05 19:11 - 000139430 ____X C:\Users\rosmy\Desktop\Faktura_tonery cybermedia10969.pdf
2025-10-05 19:10 - 2025-10-05 19:10 - 000121096 ____X C:\Users\rosmy\Desktop\faktura xiaomi powerbanka.pdf
2025-09-29 21:00 - 2025-09-29 21:00 - 000461729 _____ C:\Users\rosmy\Downloads\Škoda Karoq 130 let.pdf
2025-09-29 20:41 - 2025-09-29 20:41 - 000156391 _____ C:\Users\rosmy\Downloads\mss-rocni-vypis-z-vkladoveho-uctu (1).pdf
2025-09-29 20:38 - 2025-09-29 20:38 - 000180674 _____ C:\Users\rosmy\Downloads\SB0000000000000000000091119911.pdf
2025-09-29 20:36 - 2025-09-29 20:36 - 000180755 _____ C:\Users\rosmy\Downloads\mss-rocni-vypis-z-vkladoveho-uctu.pdf
2025-09-25 20:04 - 2025-09-25 20:04 - 000000000 ____D C:\scan
2025-09-25 19:58 - 2025-09-25 19:58 - 000000000 ____D C:\Users\rosmy\Documents\Scan
2025-09-24 19:31 - 2025-09-24 19:31 - 000001115 _____ C:\Users\Public\Desktop\PDF-XChange Editor.lnk
2025-09-24 19:31 - 2025-09-24 19:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software
2025-09-24 19:31 - 2025-09-24 19:31 - 000000000 ____D C:\ProgramData\FileOpen
2025-09-24 19:31 - 2025-09-24 19:31 - 000000000 ____D C:\Program Files\Tracker Software
2025-09-24 19:31 - 2025-09-24 19:31 - 000000000 ____D C:\Program Files\Common Files\Tracker Software
2025-09-24 19:31 - 2025-09-22 14:30 - 000941392 _____ (PDF-XChange Co Ltd.) C:\WINDOWS\system32\pxcpmL.dll
2025-09-24 19:01 - 2025-09-24 19:01 - 000322216 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2025-09-24 05:29 - 2025-09-24 05:29 - 000008802 _____ C:\WINDOWS\Info.xml
2025-09-22 18:05 - 2025-09-22 18:05 - 000030992 _____ C:\Users\rosmy\Desktop\SOKOLA - Faktura Kojátky.pdf
2025-09-22 18:04 - 2025-09-22 18:04 - 000033781 ____X C:\Users\rosmy\Desktop\SOKOLA - Faktura fasáda.pdf
2025-09-21 22:12 - 2025-09-21 22:12 - 000000000 ____D C:\Users\rosmy\Downloads\Photos-1-001
2025-09-20 21:34 - 2025-09-20 21:34 - 000008399 _____ C:\Users\rosmy\Desktop\VYPL_080552_1_202507.pdf
2025-09-20 21:33 - 2025-09-20 21:33 - 000116124 _____ C:\Users\rosmy\Desktop\faktura svetlo koupelnaFV250087698.pdf
2025-09-20 21:30 - 2025-09-20 21:30 - 000135009 ____X C:\Users\rosmy\Desktop\Faktura hmozdinky_WWW.E-STAVEBNINY.CZ_s.r.o._15010394.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-10-20 18:07 - 2023-03-12 23:32 - 000000000 ____D C:\FRST
2025-10-20 18:07 - 2023-03-12 23:23 - 002442752 _____ (Farbar) C:\Users\rosmy\Desktop\FRST64.exe
2025-10-20 17:43 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-10-20 17:41 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-10-20 17:03 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-10-20 16:58 - 2024-05-10 13:32 - 001629494 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-10-20 16:58 - 2022-05-07 07:22 - 000000000 ____D C:\WINDOWS\INF
2025-10-20 16:54 - 2025-02-17 22:52 - 000000000 ____D C:\Users\rosmy\AppData\Local\Avast AntiTrack
2025-10-20 16:53 - 2025-09-02 22:04 - 000003118 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2025-10-20 16:53 - 2025-07-10 18:05 - 000003110 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2025-10-20 16:53 - 2024-05-10 13:26 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2025-10-20 16:53 - 2024-05-10 13:23 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-10-20 16:53 - 2023-01-28 16:09 - 000000000 ____D C:\ProgramData\AVAST Software
2025-10-20 16:53 - 2023-01-28 12:40 - 000089232 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteDownloadAssistant.exe
2025-10-20 16:52 - 2024-05-10 13:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-10-20 16:52 - 2023-01-28 12:15 - 000875536 _____ C:\WINDOWS\system32\wpbbin.exe
2025-10-20 16:52 - 2023-01-28 12:15 - 000861328 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\WINDOWS\system32\GigabyteUpdateService.exe
2025-10-20 16:52 - 2023-01-28 12:15 - 000012288 ___SH C:\DumpStack.log.tmp
2025-10-19 22:43 - 2022-05-07 07:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-10-19 14:53 - 2023-01-28 12:40 - 000000000 ____D C:\Users\rosmy\AppData\Local\D3DSCache
2025-10-19 14:52 - 2023-01-28 17:48 - 000000000 ____D C:\Users\rosmy\AppData\Local\CrashDumps
2025-10-19 14:50 - 2024-03-19 20:42 - 000000000 ____D C:\ProgramData\Piriform
2025-10-19 14:50 - 2023-02-01 00:00 - 000000000 ____D C:\Program Files\CCleaner
2025-10-18 21:30 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2025-10-17 23:18 - 2023-03-13 10:43 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2025-10-17 23:18 - 2023-01-28 12:15 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-10-15 22:40 - 2025-02-01 21:53 - 000479792 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-10-15 22:39 - 2024-05-10 14:21 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-10-15 22:39 - 2022-05-07 12:14 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\setup
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-10-15 22:39 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-10-15 21:28 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2025-10-15 21:17 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-10-15 21:15 - 2024-05-10 13:24 - 003214848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-10-15 21:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-10-15 21:02 - 2023-02-13 23:31 - 000000000 ____D C:\Users\rosmy\AppData\Local\AMD_Common
2025-10-14 20:21 - 2023-01-28 15:30 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-10-14 20:18 - 2023-01-28 15:30 - 214534944 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-10-14 20:08 - 2025-02-06 21:32 - 000003570 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-3398037617-877173979-1485582407-1001
2025-10-14 20:08 - 2024-05-10 13:26 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3398037617-877173979-1485582407-1001
2025-10-14 20:08 - 2024-05-10 13:26 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3398037617-877173979-1485582407-1001
2025-10-14 20:08 - 2023-01-28 12:34 - 000002379 _____ C:\Users\rosmy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-10-11 22:27 - 2024-05-10 13:26 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-10-11 22:27 - 2024-05-10 13:26 - 000003514 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-10-10 20:31 - 2024-01-11 22:14 - 000000000 ___HD C:\Program Files (x86)\Temp
2025-10-10 20:26 - 2024-12-22 00:46 - 000019672 _____ (MICSYS Technology Co., LTd) C:\WINDOWS\system32\Drivers\MsIo64.sys
2025-10-10 20:26 - 2024-01-11 21:59 - 000034920 _____ (Creative Technology Innovation Co., LTd.) C:\WINDOWS\system32\Drivers\CtiIo64.sys
2025-10-10 20:26 - 2024-01-11 21:59 - 000000000 ____D C:\Program Files\ENE
2025-10-10 20:26 - 2023-01-31 21:34 - 000000000 ____D C:\Program Files (x86)\Realtek
2025-10-10 20:26 - 2023-01-28 12:42 - 000000000 ____D C:\ProgramData\Package Cache
2025-10-10 20:26 - 2023-01-28 12:40 - 000000000 ____D C:\Users\rosmy\AppData\Local\Packages
2025-10-10 20:26 - 2023-01-28 12:40 - 000000000 ____D C:\ProgramData\Packages
2025-10-10 20:25 - 2024-01-11 21:59 - 000001921 _____ C:\Users\Public\Desktop\GCC.lnk
2025-10-02 21:13 - 2025-06-23 22:15 - 000003300 _____ C:\WINDOWS\system32\Tasks\klcp_update
2025-10-02 21:13 - 2025-06-23 22:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2025-10-02 21:13 - 2025-06-23 22:15 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2025-10-01 21:12 - 2025-04-06 18:43 - 000006187 _____ C:\Users\rosmy\Desktop\spotify.txt
2025-09-26 23:40 - 2025-09-02 21:44 - 000002402 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2025-09-26 23:40 - 2025-06-01 22:28 - 000002672 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2025-09-26 23:40 - 2025-06-01 22:28 - 000002114 _____ C:\WINDOWS\system32\Tasks\StartDVR
2025-09-26 23:40 - 2025-01-25 14:40 - 000002648 _____ C:\WINDOWS\system32\Tasks\AMDAutoUpdate
2025-09-26 23:40 - 2025-01-25 14:40 - 000002504 _____ C:\WINDOWS\system32\Tasks\StartAUEP
2025-09-26 23:40 - 2024-11-19 23:03 - 000002588 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2025-09-26 23:40 - 2024-05-10 13:26 - 000002594 _____ C:\WINDOWS\system32\Tasks\GraphicsCardEngine
2025-09-26 23:40 - 2024-05-10 13:26 - 000002194 _____ C:\WINDOWS\system32\Tasks\StartCN
2025-09-25 20:09 - 2023-03-31 20:31 - 000000000 ____D C:\Users\rosmy\AppData\Roaming\Samsung
2025-09-25 19:58 - 2024-05-29 20:41 - 000000000 ____D C:\ProgramData\boost_interprocess
2025-09-25 19:28 - 2022-05-07 07:24 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-09-24 19:22 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\NDF
2025-09-24 19:01 - 2023-03-13 10:37 - 001282632 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000876104 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000574048 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000391776 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000390752 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000299616 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000284768 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000244832 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000092232 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000085600 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000071240 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2025-09-24 19:01 - 2023-03-13 10:37 - 000029792 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2025-09-21 22:16 - 2023-01-28 15:40 - 000000000 ____D C:\Users\rosmy\AppData\Local\GHISLER
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Log AdwCleaner
# -------------------------------
# Malwarebytes AdwCleaner 8.5.0.595
# -------------------------------
# Build: 03-05-2025
# Database: 2024-10-23.4 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-20-2025
# Duration: 00:00:08
# OS: Windows 11 (Build 22631.6060)
# Scanned: 32108
# Detected: 2
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
Preinstalled.SamsungEasyDocumentCreator Folder C:\Program Files (x86)\SAMSUNG\EASY DOCUMENT CREATOR
Preinstalled.SamsungEasyDocumentCreator Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Samsung Easy Document Creator
AdwCleaner[S06].txt - [2016 octets] - [06/04/2025 21:30:04]
AdwCleaner[S00].txt - [1711 octets] - [08/04/2025 22:43:31]
AdwCleaner[S01].txt - [1772 octets] - [10/04/2025 21:42:03]
AdwCleaner[S02].txt - [1833 octets] - [18/04/2025 22:25:03]
AdwCleaner[S03].txt - [1894 octets] - [26/04/2025 20:47:34]
AdwCleaner[S04].txt - [1955 octets] - [27/04/2025 00:15:24]
AdwCleaner[S05].txt - [2016 octets] - [09/05/2025 22:13:06]
AdwCleaner[S07].txt - [2077 octets] - [12/06/2025 20:37:37]
AdwCleaner[S08].txt - [2138 octets] - [29/06/2025 20:05:35]
AdwCleaner[S09].txt - [2199 octets] - [04/07/2025 23:23:42]
AdwCleaner[S10].txt - [2260 octets] - [07/08/2025 20:57:10]
AdwCleaner[S11].txt - [2321 octets] - [01/09/2025 21:50:47]
AdwCleaner[S12].txt - [2382 octets] - [13/09/2025 08:09:52]
AdwCleaner[S13].txt - [2443 octets] - [14/09/2025 20:31:33]
AdwCleaner[S14].txt - [2504 octets] - [18/09/2025 21:58:02]
AdwCleaner[S15].txt - [2565 octets] - [10/10/2025 20:33:09]
AdwCleaner[S16].txt - [2398 octets] - [10/10/2025 20:33:29]
AdwCleaner[C16].txt - [2588 octets] - [10/10/2025 20:33:52]
AdwCleaner[S17].txt - [2748 octets] - [11/10/2025 23:16:41]
AdwCleaner[S18].txt - [2809 octets] - [19/10/2025 14:49:11]
AdwCleaner[S19].txt - [2870 octets] - [19/10/2025 14:49:45]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S20].txt ##########
