Adwcleaner používam pravidelne a nikdy nič nenájde
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-05-2022
Ran by linco (administrator) on DESKTOP-J0PJPO6 (ASUSTeK COMPUTER INC. FX502VE) (28-05-2022 13:27:56)
Running from C:\Users\linco\OneDrive\Počítač
Loaded Profiles: linco
Platform: Microsoft Windows 10 Home Version 21H1 19043.1706 (X64) Language: Čeština (Česká republika) -> Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe ->) (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxEM.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\58.0.3.0\crashpad_handler.exe <2>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\58.0.3.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordVPN\NordVPN.exe
(explorer.exe ->) (TomTom International B.V. -> TomTom) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe
(Intel\DPTF\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <11>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (geek software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Huawei Technologies Co.,Ltd. -> ) C:\Program Files (x86)\MobileBrServ\mbbService.exe
(services.exe ->) (ICEpower a/s -> ICEpower A/S) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_12ed482042e0dee5\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_003a6d3c4c50c291\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_1dc9fc8d5e442f6a\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(services.exe ->) (Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_7ed3bacbb0a8cc67\RstMwService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe
(services.exe ->) (nordvpn s.a. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_531cf42fcad619f7\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Piriform Software Ltd -> ) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <2>
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2203.4603.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [212816 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [587000 2022-01-05] (geek software GmbH -> geek software GmbH)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\58.0.3.0\GoogleDriveFS.exe [55667088 2022-05-16] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\58.0.3.0\GoogleDriveFS.exe [55667088 2022-05-16] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1000\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\58.0.3.0\GoogleDriveFS.exe [55667088 2022-05-16] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36836592 2022-05-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe [2229720 2021-09-23] (TomTom International B.V. -> TomTom)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [116060024 2022-05-17] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [com.squirrel.WhatsApp.WhatsApp] => C:\Users\linco\AppData\Local\WhatsApp\Update.exe [2253568 2022-05-26] (WhatsApp, Inc -> )
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\58.0.3.0\GoogleDriveFS.exe [55667088 2022-05-16] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [com.messenger] => "C:\Users\linco\AppData\Local\Programs\Messenger\Messenger.exe" messenger://openAtLogin (No File)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4282328 2022-05-14] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [280952 2022-02-18] (nordvpn s.a. -> TEFINCOM S.A.)
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\linco\AppData\Local\slack\slack.exe [309056 2022-05-05] (Slack Technologies, Inc. -> Slack Technologies Inc.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\58.0.3.0\GoogleDriveFS.exe [55667088 2022-05-16] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5100 series: CNMLMAD.DLL
HKLM\...\Print\Monitors\us008 Langmon: C:\Windows\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
GroupPolicy-Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0D4FFF2D-9A82-4983-9D66-82F740EA0894} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\linco\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007456 2021-05-13] (ESET, spol. s r.o. -> ESET)
Task: {16451651-BD0A-4446-8255-75A78AE4C7F9} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {188876BF-EDEE-4E8A-9387-CE265DA9046E} - System32\Tasks\ASUS Battery Health Charging Notification => C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\BhcMgr.exe [2478776 2016-11-28] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {1D2D05EA-4A08-4860-BB29-503FB2259D5A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {2564D4DF-C850-4D58-9434-90FCAFD96E67} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2250576 2022-05-25] (Avast Software s.r.o. -> Avast Software)
Task: {2F746F5A-904D-4299-81D4-5F7644BDDC8B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {31BCCCF0-BC6E-4BA4-9B3D-87561DBAC0C9} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4925264 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
Task: {36535DC6-14B1-42EB-A962-BD22196A1949} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {3A3CD8A0-DF5D-47F9-8160-45C7F2863278} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {42A790FE-F349-4500-B65B-F80A8B4DBF44} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {42D5785A-35ED-43AA-AFA0-D6A8E6793A5A} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617880 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {548287AD-F039-48BF-B220-BD0C828F0383} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {669BA5FE-B7DF-4A9D-AF12-4A8603F3A1D5} - System32\Tasks\UMonitor Task => C:\WINDOWS\SysWOW64\UMonit64.exe [61752 2016-08-19] (GENESYS LOGIC, INC. -> )
Task: {680EA535-049D-416D-98CA-5E157852C686} - System32\Tasks\GoogleUpdateTaskMachineUA{ACB8F8CB-C088-4959-B7D5-29DB668A0B75} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-31] (Google LLC -> Google LLC)
Task: {6A1DF42B-4775-4EE1-A55F-94814F1C2EF9} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\linco\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007456 2021-05-13] (ESET, spol. s r.o. -> ESET)
Task: {7DD64D31-3445-42F3-9E22-FC229F2FA763} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {92C1389D-8944-4C49-ADBD-3ABA25F9E59E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {957BFFF6-2AD9-41B4-9874-91C9D43FC65B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {95B6C707-EEC3-4992-9DAE-1C9189872243} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122552 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {9AC3B822-A126-4F56-8768-F12E5685B199} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-13] (Adobe Inc. -> Adobe)
Task: {9DE4561B-12A2-4861-B70D-80355F153286} - System32\Tasks\IcarusAvastVpnUpgrade => C:\Program Files\AVAST Software\SecureLine\setup\avast_vpn_online_setup.exe -> /silent /ShowVpnGui=0 /RestartUpdaterTaskName=IcarusAvastVpnUpgrade /RestartUpdaterAppExe="C:\Program Files\AVAST Software\SecureLine\setup\avast_vpn_online_setup.exe"
Task: {AEB63488-B184-44F6-9A95-2FD682825BE1} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19967504 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {B1F66C3E-2712-4849-91E2-92B504BD00B7} - System32\Tasks\GoogleUpdateTaskMachineCore{D0AC7BEA-A8ED-444D-86A5-A4247E843504} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-07-31] (Google LLC -> Google LLC)
Task: {CC41892C-860D-4898-A9DB-8C98DC996881} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [122552 2016-11-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {D288DF0A-B851-49C7-BF20-32C82981F42A} - System32\Tasks\ASUS HotfixChecker => C:\Program Files (x86)\ASUS\HotfixChecker\HotfixChecker.exe [140088 2019-04-12] (ASUSTek Computer Inc. -> ASUSTek Computer Inc.)
Task: {D7A4511D-C355-4502-8BF3-3294F6B86E82} - System32\Tasks\CCleanerSkipUAC - linco => C:\Program Files\CCleaner\CCleaner.exe [30924528 2022-05-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F7A53CE6-BAA4-4D32-BD3A-5BA8DB2F1FA5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-05-11] (Piriform Software Ltd -> Piriform)
Task: {F896DF37-C762-49C9-AAFA-710F8048E694} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\WpsExternal_20161114022915.job => C:\Program Files (x86)\Kingsoft\WPS Office\ksolaunch.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 193.162.153.164 194.239.134.83
Tcpip\..\Interfaces\{c6a303a4-0e66-45a7-b297-d21ad6427b9c}: [NameServer] 103.86.96.100,103.86.99.100
Tcpip\..\Interfaces\{cb788683-62bb-49bd-a2bd-8c95f035c6d8}: [DhcpNameServer] 193.162.153.164 194.239.134.83
Tcpip\..\Interfaces\{ce166e0c-1abd-4573-a63b-a0ac72c5ca8a}: [DhcpNameServer] 10.66.0.1
FireFox:
========
FF DefaultProfile: a89791ok.default
FF ProfilePath: C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default [2022-05-28]
FF Session Restore: Mozilla\Firefox\Profiles\a89791ok.default -> is enabled.
FF Extension: (Facebook Container) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\@contain-facebook.xpi [2022-03-17]
FF Extension: (Avast AntiTrack Premium) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\antitrack@avast.com.xpi [2021-04-07]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2021-06-20]
FF Extension: (Easy Screenshot) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\easyscreenshot@mozillaonline.com.xpi [2021-07-31]
FF Extension: (To Google Translate) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-06-23]
FF Extension: (Avast Passwords) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2020-02-10] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2022-05-20]
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\safeprice@avast.com.xpi [2018-10-09]
FF Extension: (Avast SecureLine VPN) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\secureline-vpn@avast.com.xpi [2021-10-21]
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\sp@avast.com.xpi [2022-02-03]
FF Extension: (Avast Online Security & Privacy) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\wrc@avast.com.xpi [2022-04-28]
FF Extension: (Image Search Options) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\{4a313247-8330-4a81-948e-b79936516f78}.xpi [2020-08-21]
FF Extension: (Plná Peňaženka Líštička Lite) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\{5f383f45-0de3-43b3-838c-ea98916167e3}.xpi [2022-03-07]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2022-04-21]
FF Extension: (Adblock Plus - free ad blocker) - C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Profiles\a89791ok.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-05-15]
FF HKLM\...\Firefox\Extensions: [sparalarm@chip.de] - C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi
FF Extension: (CHIP Sparalarm) - C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi [2019-09-11]
FF HKLM-x32\...\Firefox\Extensions: [sparalarm@chip.de] - C:\Program Files (x86)\sparalarm\ff\chip_sparalarm-14.39.1-fx.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-13] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-13] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-04-20] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-04-20] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-04-20] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-04-20] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2022-04-20] (FOXIT SOFTWARE INC. -> Foxit Corporation)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-13] (Adobe Inc. -> Adobe)
R2 AsBhcService; C:\Program Files (x86)\ASUS\ASUS Battery Health Charging\AsBhcSrv.exe [114360 2016-10-20] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8434824 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [576336 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [1990480 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [576336 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-22] (Avast Software s.r.o. -> AVAST Software)
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [789744 2022-05-11] (Piriform Software Ltd -> )
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2361576 2022-04-20] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-11-19] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 Mobile Broadband HL Service; C:\Program Files (x86)\MobileBrServ\mbbservice.exe [242264 2016-03-24] (Huawei Technologies Co.,Ltd. -> )
R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2021-06-07] (nordvpn s.a. -> TEFINCOM S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [281464 2022-02-18] (nordvpn s.a. -> TEFINCOM S.A.)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [587000 2022-01-05] (geek software GmbH -> geek software GmbH)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12986664 2021-12-17] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-02-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_531cf42fcad619f7\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_531cf42fcad619f7\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AiCharger; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [29312 2016-11-14] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
R3 AsusHFilter; C:\WINDOWS\System32\drivers\AsusHFilter.sys [30200 2016-12-22] (ASUSTeK Computer Inc. -> )
R3 AsusPTPDrv; C:\WINDOWS\System32\DriverStore\FileRepository\asusptpfilter.inf_amd64_314b5cb6bf57f471\AsusPTPFilter.sys [116712 2021-12-02] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [232648 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [381616 2022-05-13] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [255144 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [102568 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-09-16] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [44568 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [271592 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [548976 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111056 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [86120 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [857488 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [558768 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [218088 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [317832 2022-05-06] (Avast Software s.r.o. -> AVAST Software)
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [20096 2015-05-08] (Microsoft Windows Hardware Compatibility Publisher -> ASUSTek Computer Inc.)
S3 GeneStor; C:\WINDOWS\System32\drivers\GeneStor.sys [136688 2021-12-02] (GENESYS LOGIC, INC. -> Genesys Logic)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [32696 2020-11-19] (ASUSTek Computer Inc. -> ASUS)
R3 iaLPSS2_I2C; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_i2c_skl.inf_amd64_363c7132639e12a6\iaLPSS2_I2C_ICL.sys [200456 2020-04-28] (Intel Corporation -> Intel Corporation)
S3 mshield; C:\WINDOWS\System32\DRIVERS\mshield.sys [40016 2022-02-17] (nordvpn s.a. -> Nordvpn S.A.)
R2 NDivert; C:\Program Files\NordVPN\6.46.5.0\Drivers\NDivert.sys [131456 2022-04-05] (nordvpn s.a. -> Nordvpn S.A.)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-02-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-02-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-02-12] (Microsoft Windows -> Microsoft Corporation)
R3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [29592 2022-03-13] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S1 nordlwf; \SystemRoot\system32\DRIVERS\nordlwf.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-05-25 20:14 - 2022-05-25 20:14 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2022-05-25 19:35 - 2022-05-21 05:26 - 001905912 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-05-25 19:35 - 2022-05-21 05:26 - 001905912 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-05-25 19:35 - 2022-05-21 05:26 - 001478384 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-05-25 19:35 - 2022-05-21 05:26 - 001478384 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-05-25 19:35 - 2022-05-21 05:26 - 001467080 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-05-25 19:35 - 2022-05-21 05:26 - 001432304 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-05-25 19:35 - 2022-05-21 05:26 - 001432304 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-05-25 19:35 - 2022-05-21 05:26 - 001209408 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-05-25 19:35 - 2022-05-21 05:26 - 001145584 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-05-25 19:35 - 2022-05-21 05:26 - 001145584 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-05-25 19:35 - 2022-05-21 05:23 - 000587336 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-05-25 19:35 - 2022-05-21 05:23 - 000460496 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-05-25 19:35 - 2022-05-21 05:22 - 002120896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-05-25 19:35 - 2022-05-21 05:22 - 001603144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-05-25 19:35 - 2022-05-21 05:22 - 001530456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-05-25 19:35 - 2022-05-21 05:22 - 001177312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-05-25 19:35 - 2022-05-21 05:22 - 000730320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-05-25 19:35 - 2022-05-21 05:22 - 000724688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-05-25 19:35 - 2022-05-21 05:22 - 000712416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-05-25 19:35 - 2022-05-21 05:21 - 006964824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-05-25 19:35 - 2022-05-21 05:21 - 006226640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-05-25 19:35 - 2022-05-21 05:21 - 005100752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-05-25 19:35 - 2022-05-21 05:21 - 002932952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-05-25 19:35 - 2022-05-21 05:21 - 000582712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-05-25 19:35 - 2022-05-21 05:21 - 000457944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-05-25 19:35 - 2022-05-21 05:20 - 005730880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-05-25 19:35 - 2022-05-20 02:51 - 000089337 _____ C:\WINDOWS\system32\nvinfo.pb
2022-05-25 19:34 - 2022-05-21 05:19 - 000851136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-05-25 19:34 - 2022-05-21 05:18 - 006465200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-05-21 23:00 - 2022-05-21 23:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 7.3
2022-05-21 12:07 - 2022-05-21 12:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-05-21 06:59 - 2022-05-24 07:43 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-05-13 20:16 - 2022-05-13 20:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader
2022-05-13 07:33 - 2022-05-13 07:33 - 000000000 ___HD C:\$WinREAgent
2022-05-13 06:30 - 2022-05-13 06:30 - 000011799 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-05-12 18:14 - 2022-05-12 18:14 - 000000000 ____D C:\ProgramData\Piriform
2022-05-06 07:11 - 2022-05-06 07:11 - 000287056 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-05-06 07:11 - 2022-05-06 07:11 - 000218088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-05-01 15:38 - 2022-05-01 15:38 - 000000000 ____D C:\ProgramData\NordUpdater
2022-04-28 12:51 - 2022-04-28 12:51 - 000000000 ____D C:\Program Files\PCHealthCheck
2022-04-28 12:00 - 2022-05-05 17:53 - 000000000 ____D C:\Users\linco\AppData\Local\slack
2022-04-28 11:56 - 2022-02-07 12:49 - 000499136 _____ (Intel) C:\WINDOWS\system32\libvpl.dll
2022-04-28 11:56 - 2022-02-07 12:49 - 000431936 _____ (Intel) C:\WINDOWS\SysWOW64\libvpl.dll
2022-04-28 11:56 - 2022-02-07 12:48 - 000943472 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll
2022-04-28 11:56 - 2022-02-07 12:48 - 000703224 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll
2022-04-28 11:56 - 2022-02-07 12:48 - 000588128 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2022-04-28 11:56 - 2022-02-07 12:48 - 000448392 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2022-04-28 11:56 - 2022-02-07 12:47 - 027889576 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll
2022-04-28 11:56 - 2022-02-07 12:47 - 020629912 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll
2022-04-28 11:56 - 2022-02-07 12:47 - 000453032 _____ C:\WINDOWS\system32\ze_tracing_layer.dll
2022-04-28 11:56 - 2022-02-07 12:47 - 000375720 _____ C:\WINDOWS\system32\ze_loader.dll
2022-04-28 11:56 - 2022-02-07 12:47 - 000142240 _____ C:\WINDOWS\system32\ze_validation_layer.dll
2022-04-28 11:56 - 2022-02-07 12:46 - 000209944 _____ C:\WINDOWS\system32\ControlLib.dll
2022-04-28 11:56 - 2022-02-07 12:46 - 000166024 _____ C:\WINDOWS\system32\ControlLib32.dll
2022-04-28 08:00 - 2022-04-28 08:00 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-04-28 08:00 - 2022-04-28 08:00 - 000093696 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-05-28 13:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-05-28 13:28 - 2020-08-22 14:05 - 000000000 ____D C:\FRST
2022-05-28 13:26 - 2018-09-15 21:01 - 000000000 ____D C:\Users\linco\AppData\Local\AVAST Software
2022-05-28 13:25 - 2022-02-08 18:18 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-05-28 13:24 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-05-28 13:23 - 2018-09-15 22:08 - 000000000 ____D C:\Program Files\CCleaner
2022-05-28 13:23 - 2018-09-15 21:01 - 000000000 ____D C:\Users\linco\AppData\LocalLow\Mozilla
2022-05-28 13:20 - 2020-12-23 11:05 - 000000000 ____D C:\Users\linco\AppData\Roaming\Slack
2022-05-28 12:53 - 2020-07-31 23:19 - 000000000 ____D C:\Program Files (x86)\Google
2022-05-28 12:49 - 2022-04-21 15:48 - 000003462 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{ACB8F8CB-C088-4959-B7D5-29DB668A0B75}
2022-05-28 12:49 - 2022-04-21 15:48 - 000003238 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{D0AC7BEA-A8ED-444D-86A5-A4247E843504}
2022-05-28 12:49 - 2021-08-18 21:32 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - linco
2022-05-28 12:49 - 2020-06-20 23:03 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-05-28 12:49 - 2020-06-20 23:03 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-05-28 12:49 - 2020-06-20 23:03 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-05-28 12:49 - 2020-06-20 23:03 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-05-28 12:49 - 2020-06-20 23:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-05-28 12:49 - 2020-06-20 23:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-05-28 12:49 - 2020-06-20 23:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-05-28 12:49 - 2020-06-20 23:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-05-28 12:49 - 2020-06-20 23:03 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-05-28 12:49 - 2020-06-20 23:03 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-05-28 12:49 - 2020-06-20 23:03 - 000002346 _____ C:\WINDOWS\system32\Tasks\RtHDVBg_ListenToDevice
2022-05-28 12:49 - 2020-06-20 23:03 - 000002302 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2022-05-28 12:49 - 2020-06-20 23:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-05-28 12:25 - 2017-07-04 20:03 - 000000000 ____D C:\ProgramData\NVIDIA
2022-05-28 11:24 - 2020-06-20 22:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-05-28 10:27 - 2018-12-05 20:58 - 000000000 ____D C:\Users\linco\AppData\Roaming\WhatsApp
2022-05-27 15:19 - 2020-06-20 23:01 - 002229500 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-05-27 15:19 - 2020-06-20 21:24 - 000460920 _____ C:\WINDOWS\system32\perfh006.dat
2022-05-27 15:19 - 2020-06-20 21:24 - 000081102 _____ C:\WINDOWS\system32\perfc006.dat
2022-05-27 15:19 - 2019-12-07 16:41 - 000709160 _____ C:\WINDOWS\system32\perfh005.dat
2022-05-27 15:19 - 2019-12-07 16:41 - 000145492 _____ C:\WINDOWS\system32\perfc005.dat
2022-05-27 15:19 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-05-27 15:12 - 2020-06-20 23:03 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-05-27 15:12 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-05-27 15:12 - 2018-09-15 20:59 - 000000000 ____D C:\ProgramData\AVAST Software
2022-05-27 15:12 - 2018-09-15 20:55 - 000000000 __SHD C:\Users\linco\IntelGraphicsProfiles
2022-05-27 15:12 - 2017-07-04 19:59 - 000000000 ___HD C:\Intel
2022-05-27 15:12 - 2016-11-14 04:29 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-05-27 15:11 - 2020-06-20 22:55 - 000008192 ___SH C:\DumpStack.log.tmp
2022-05-27 15:11 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-05-27 15:10 - 2020-06-20 23:03 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-05-27 08:04 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-05-27 08:03 - 2018-09-20 10:59 - 000000000 ____D C:\Users\linco\AppData\Local\D3DSCache
2022-05-26 22:20 - 2022-02-24 20:11 - 000000000 ____D C:\Users\linco\AppData\Local\WhatsApp
2022-05-25 20:14 - 2018-09-15 20:59 - 000000000 ____D C:\Users\linco\AppData\Local\NVIDIA
2022-05-24 07:43 - 2020-06-20 22:55 - 000650256 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-05-24 07:43 - 2018-09-15 21:01 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-05-23 14:25 - 2021-09-21 18:09 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-05-22 22:01 - 2022-03-06 09:29 - 000000000 ____D C:\Program Files (x86)\Steam
2022-05-22 07:40 - 2018-09-16 09:56 - 000000000 ____D C:\Users\linco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-05-21 23:15 - 2020-10-20 21:02 - 000000000 ____D C:\Users\linco\AppData\Roaming\Messenger
2022-05-21 23:15 - 2020-10-20 21:02 - 000000000 ____D C:\Users\linco\AppData\Local\Messenger
2022-05-21 17:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-05-21 12:06 - 2018-09-15 21:01 - 000001007 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-05-21 05:18 - 2020-05-31 19:17 - 007618584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-05-19 16:31 - 2020-04-13 20:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-05-18 07:37 - 2020-07-31 23:19 - 000000000 ____D C:\Users\linco\AppData\Local\Google
2022-05-18 07:37 - 2020-07-31 23:19 - 000000000 ____D C:\Program Files\Google
2022-05-16 20:31 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-05-16 14:03 - 2020-08-08 09:05 - 000001380 _____ C:\Users\linco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2022-05-13 20:18 - 2018-12-05 20:57 - 000000000 ____D C:\Users\linco\AppData\Local\SquirrelTemp
2022-05-13 19:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-05-13 19:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-05-13 19:34 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-05-13 17:53 - 2019-11-21 17:36 - 000381616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-05-13 05:54 - 2018-09-16 14:50 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-05-13 05:52 - 2018-09-16 14:50 - 145501456 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-05-11 20:55 - 2022-03-06 20:43 - 000000000 ____D C:\Users\linco\AppData\Local\Ubisoft Game Launcher
2022-05-09 11:47 - 2022-04-04 13:04 - 000000000 ____D C:\Users\linco\AppData\Local\NordVPN
2022-05-06 07:12 - 2019-11-21 17:36 - 000317832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-05-06 07:11 - 2020-10-08 23:50 - 000271592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-05-06 07:11 - 2020-04-03 19:31 - 000548976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-05-06 07:11 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-05-06 07:11 - 2019-11-21 17:36 - 000857488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-05-06 07:11 - 2019-11-21 17:36 - 000558768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-05-06 07:11 - 2019-11-21 17:36 - 000255144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-05-06 07:11 - 2019-11-21 17:36 - 000232648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-05-06 07:11 - 2019-11-21 17:36 - 000111056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-05-06 07:11 - 2019-11-21 17:36 - 000102568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-05-06 07:11 - 2019-11-21 17:36 - 000086120 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-05-06 07:11 - 2019-11-21 17:36 - 000044568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-05-05 17:53 - 2020-12-23 11:06 - 000000000 ____D C:\Users\linco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Slack Technologies Inc
2022-05-01 15:38 - 2022-04-04 13:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2022-05-01 15:38 - 2022-04-04 13:04 - 000000000 ____D C:\Program Files\NordVPN
2022-05-01 15:38 - 2022-04-04 13:04 - 000000000 ____D C:\Program Files\NordUpdater
2022-04-28 20:29 - 2018-09-20 18:10 - 000000000 ____D C:\Users\linco\AppData\Local\CrashDumps
2022-04-28 12:52 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-04-28 12:52 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-04-28 12:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-04-28 12:51 - 2021-10-25 07:53 - 000001148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2022-04-28 12:00 - 2017-07-04 20:04 - 000000000 ____D C:\ProgramData\Intel
==================== Files in the root of some directories ========
2020-11-13 15:22 - 2020-11-13 15:22 - 000000046 _____ () C:\Users\linco\AppData\Roaming\Camdata.ini
2020-11-13 15:22 - 2020-11-13 15:22 - 000000408 _____ () C:\Users\linco\AppData\Roaming\CamLayout.ini
2020-11-13 15:22 - 2020-11-13 15:22 - 000000408 _____ () C:\Users\linco\AppData\Roaming\CamShapes.ini
2020-11-13 15:22 - 2020-11-13 15:22 - 000004536 _____ () C:\Users\linco\AppData\Roaming\CamStudio.cfg
2018-09-15 20:58 - 2019-07-07 11:46 - 000000200 _____ () C:\Users\linco\AppData\Roaming\sp_data.sys
2020-11-13 15:20 - 2020-11-13 15:20 - 000000096 _____ () C:\Users\linco\AppData\Roaming\version2.xml
2020-12-01 11:07 - 2020-12-01 11:07 - 000415507 _____ () C:\Users\linco\AppData\Local\ars.cache
2020-12-01 11:08 - 2020-12-01 11:08 - 001139162 _____ () C:\Users\linco\AppData\Local\census.cache
2020-12-01 10:38 - 2020-12-01 10:38 - 000000036 _____ () C:\Users\linco\AppData\Local\housecall.guid.cache
2020-12-01 10:42 - 2020-12-01 10:42 - 000000010 _____ () C:\Users\linco\AppData\Local\sponge.last.runtime.cache
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-05-2022
Ran by linco (28-05-2022 13:32:12)
Running from C:\Users\linco\OneDrive\Počítač
Microsoft Windows 10 Home Version 21H1 19043.1706 (X64) (2020-06-20 21:03:20)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2298117505-976418258-3832342613-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2298117505-976418258-3832342613-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2298117505-976418258-3832342613-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-2298117505-976418258-3832342613-501 - Limited - Disabled)
linco (S-1-5-21-2298117505-976418258-3832342613-1001 - Administrator - Enabled) => C:\Users\linco
WDAGUtilityAccount (S-1-5-21-2298117505-976418258-3832342613-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Any Video Converter 7.1.5 (HKLM-x32\...\Any Video Converter) (Version: 7.1.5 - Anvsoft)
ASUS Battery Health Charging (HKLM-x32\...\{3A7E73B6-3A04-49ED-811E-CC39F7EA2E34}) (Version: 1.0.0002 - ASUS)
ASUS Input Configuration (HKLM-x32\...\{7DDF7571-64BD-4232-9729-20FF10CE6C62}) (Version: 1.0.3 - ASUS)
ASUS PTP Driver (HKLM-x32\...\{7618E419-9124-4E6C-9AF4-487A6DDEC1C5}) (Version: 11.0.16 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.2.0 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0051 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.3.32 - ICEpower a/s)
Avast Premium Security (HKLM-x32\...\Avast Antivirus) (Version: 22.4.6011 - Avast Software)
Backup and Sync from Google (HKLM-x32\...\{696895F7-52C7-4C9E-998B-C7E0CC907092}) (Version: 3.57.4256.0809 - Google, Inc.)
Blackmagic RAW Common Components (HKLM-x32\...\{94C42023-ECF5-46E6-ACB4-2AED536B205D}) (Version: 2.2 - Blackmagic Design)
CamStudio 2.7.4 (HKLM-x32\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.4 - CamStudio Open Source)
CCleaner (HKLM-x32\...\CCleaner) (Version: 6.00 - Piriform)
Defraggler (HKLM-x32\...\Defraggler) (Version: 2.22 - Piriform)
Fairlight Audio Accelerator Utility (HKLM-x32\...\FairlightAudioAccelerator_is1) (Version: 1.0.13 - Blackmagic Design)
FormatFactory 4.4.1.0 (HKLM-x32\...\FormatFactory) (Version: 4.4.1.0 - Free Time)
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 11.2.2.53575 - Foxit Software Inc.)
Genesys USB Mass Storage Device (HKLM-x32\...\{CA7CA513-2531-4801-83C6-CF8FB6C8711A}) (Version: 4.5.1.1.1001 - Genesys Logic)
Google Drive (HKLM-x32\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 58.0.3.0 - Google LLC)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.0.2.301 - )
Intel Security Software Manager (HKLM-x32\...\Intel Security Software Manager) (Version: 1.1.107.0 - Intel Security)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.2.11002.3418 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{81520FC5-3518-40E9-9803-70CE8A801D07}) (Version: 10.1.1.38 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{177F3AF8-1D9D-4C47-AB82-69571F4630DE}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1035 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{DEDA24FF-BA95-42E7-B914-639D32515511}) (Version: 11.6.0.1035 - Intel Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.7325 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.5.1035 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{45F38D16-2016-4BF1-B7FD-011A2B7570F4}) (Version: 15.2.5.1035 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM-x32\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1643.1 - Intel Corporation)
Intel(R) Serial IO (HKLM-x32\...\{AEDB97C8-18E1-4053-B7DD-B66E9531B207}) (Version: 30.100.1643.01 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{7FADF1ED-241A-4F82-B8FD-19BD0A82FFA0}) (Version: 19.11.1639.0649 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{5853172b-5520-4089-9ef4-e26c594382b3}) (Version: 19.30.0 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM-x32\...\{224CC1EA-2433-4106-81BA-5D5432B11744}) (Version: 19.30.0.0905 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (HKLM-x32\...\{75FE588B-F158-4BB3-A283-A8D18E522A52}) (Version: 1.43.301.1 - Intel Corporation) Hidden
IrfanView 4.59 (64-bit) (HKLM-x32\...\IrfanView64) (Version: 4.59 - Irfan Skiljan)
kdenlive (HKLM-x32\...\kdenlive) (Version: 21.12.2 - KDE e.V.)
LibreOffice 7.3.3.2 (HKLM-x32\...\{2C4A93B5-0849-44CC-8302-C73E05930E93}) (Version: 7.3.3.2 - The Document Foundation)
Messenger (HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\c1b3adcf-2068-5e8d-b25d-30ce588e3a4c) (Version: 151.0.366507871 - Facebook, Inc.)
Microsoft Teams (HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\Teams) (Version: 1.3.00.30866 - Microsoft Corporation)
MiVue Manager (HKLM-x32\...\{123BDDDC-D02F-4C6E-A011-9CB265E2483E}) (Version: 1.0.33.32 - Mio Technology Corporation)
Mobile Broadband HL Service (HKLM-x32\...\Mobile Broadband HL Service) (Version: 22.001.29.00.03 - Huawei Technologies Co.,Ltd)
Mozilla Firefox (x64 en-US) (HKLM-x32\...\Mozilla Firefox 100.0.2 (x64 en-US)) (Version: 100.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 62.0 - Mozilla)
NordUpdater (HKLM-x32\...\{6E35DB82-3D19-4DD6-B8CB-F082815FDE18}_is1) (Version: 1.2.2.94 - Nord Security)
NordVPN (HKLM-x32\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 6.46.5.0 - Nord Security)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
PDF24 Creator 10.7.1 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: 10.7.1 - PDF24.org)
PotPlayer-64 bit (HKLM-x32\...\PotPlayer64) (Version: 220420 - Kakao Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9205.1 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.9 - Rockstar Games)
Skype verzia 8.83 (HKLM-x32\...\Skype_is1) (Version: 8.83 - Skype Technologies S.A.)
Slack (HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\slack) (Version: 4.26.1 - Slack Technologies Inc.)
sparalarm (HKLM-x32\...\{8571D985-3EF7-4188-BB5A-9FA20ED130B7}) (Version: 1.0.0.0 - Sparalarm)
Speccy (HKLM-x32\...\Speccy) (Version: 1.32 - Piriform)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.25.8 - TeamViewer)
TomTom MyDrive Connect 4.2.12.4208 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.12.4208 - TomTom)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 130.0.10655 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM-x32\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM-x32\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM-x32\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM-x32\...\VulkanRT1.0.33.0-4) (Version: 1.0.33.0 - LunarG, Inc.)
WhatsApp (HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\WhatsApp) (Version: 2.2218.8 - WhatsApp)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.2.2 - ASUSTeK COMPUTER INC.)
WinRAR 6.11 (64-bit) (HKLM-x32\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)
Packages:
=========
ASUS ZenLink -> C:\Program Files\WindowsApps\B9ECED6F.ZenSync_1.0.7.0_x86__qmba6cd70vzyy [2018-09-15] (ASUSTeK COMPUTER INC.) [MS Ad]
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-08] (Autodesk Inc.)
Bandicut Video Cutter -> C:\Program Files\WindowsApps\BandicamCompany.BandicutVideoCutterFree_3.15.1509.0_x64__4q7dvte5y4xn4 [2020-11-13] (Bandicam Company)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-06-15] (Microsoft Corporation)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-12] (Microsoft Corporation)
eManual -> C:\Program Files\WindowsApps\B9ECED6F.eManual_2.0.3.0_x86__qmba6cd70vzyy [2018-09-15] (ASUSTeK COMPUTER INC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.5120.0_x64__8wekyb3d8bbwe [2022-05-18] (Microsoft Studios) [MS Ad]
MyASUS-Service Center -> C:\Program Files\WindowsApps\B9ECED6F.MyASUS_3.3.11.0_x86__qmba6cd70vzyy [2018-09-15] (ASUSTeK COMPUTER INC.) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-05-25] (NVIDIA Corp.)
Ovládacie centrum pre grafiku Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt [2022-04-28] (INTEL CORP) [Startup Task]
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2018-09-20] (Samsung Electronics Co. Ltd.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2298117505-976418258-3832342613-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\linco\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20275.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\58.0.3.0\drivefsext.dll [2022-05-16] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\58.0.3.0\drivefsext.dll [2022-05-16] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\58.0.3.0\drivefsext.dll [2022-05-16] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\58.0.3.0\drivefsext.dll [2022-05-16] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-05-06] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-05-06] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-05-06] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\58.0.3.0\drivefsext.dll [2022-05-16] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-05-06] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\58.0.3.0\drivefsext.dll [2022-05-16] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\58.0.3.0\drivefsext.dll [2022-05-16] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_531cf42fcad619f7\nvshext.dll [2022-05-21] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-05-06] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\system32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [File not signed]
HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\system32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [File not signed]
HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\system32\alf2cd.acm [38912 2003-05-21] (NCT Company) [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\AC3ACM.acm [81920 2004-02-04] (fccHandler) [File not signed]
HKLM\...\Drivers32: [msacm.lame] => C:\Windows\system32\lame.ax [245760 2005-08-01] () [File not signed]
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\system32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [File not signed]
HKLM\...\Drivers32: [vidc.mpg4] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.mp42] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\system32\xvidvfw.dll [139264 2004-07-03] () [File not signed]
HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\system32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.LAGS] => C:\Windows\system32\lagarith.dll [216064 2011-12-07] () [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-10-15 12:01 - 2018-10-15 12:01 - 000013312 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\libEGL.DLL
2018-10-15 12:01 - 2018-10-15 12:01 - 001950720 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\libGLESv2.dll
2014-09-11 13:46 - 2014-09-11 13:46 - 000218112 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qmng.dll
2021-09-23 08:21 - 2021-09-23 08:21 - 000132096 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\quazip.dll
2021-09-23 08:21 - 2021-09-23 08:21 - 000074240 _____ () [File not signed] C:\Program Files (x86)\MyDrive Connect\zlib1.dll
2018-03-27 22:33 - 2018-03-27 22:33 - 001370624 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\MyDrive Connect\LIBEAY32.dll
2018-03-27 22:33 - 2018-03-27 22:33 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\MyDrive Connect\ssleay32.dll
2018-10-15 12:11 - 2018-10-15 12:11 - 000038912 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\bearer\qgenericbearer.dll
2018-10-15 12:10 - 2018-10-15 12:10 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qgif.dll
2018-10-16 12:39 - 2018-10-16 12:39 - 000033280 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qicns.dll
2018-10-15 12:10 - 2018-10-15 12:10 - 000027648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qico.dll
2018-10-15 12:12 - 2018-10-15 12:12 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qjpeg.dll
2018-10-16 12:31 - 2018-10-16 12:31 - 000021504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qsvg.dll
2018-10-16 12:38 - 2018-10-16 12:38 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qtga.dll
2018-10-16 12:39 - 2018-10-16 12:39 - 000327680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qtiff.dll
2018-10-16 12:38 - 2018-10-16 12:38 - 000019968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qwbmp.dll
2018-10-16 12:39 - 2018-10-16 12:39 - 000400896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\imageformats\qwebp.dll
2018-10-15 12:12 - 2018-10-15 12:12 - 001096704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Plugins\platforms\qwindows.dll
2021-09-23 08:26 - 2021-09-23 08:26 - 004785152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Core.dll
2018-10-15 12:05 - 2018-10-15 12:05 - 004970496 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Gui.dll
2018-10-15 12:05 - 2018-10-15 12:05 - 000961024 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Network.dll
2018-10-16 12:31 - 2018-10-16 12:31 - 000264704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Svg.dll
2018-10-15 12:09 - 2018-10-15 12:09 - 004468224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Widgets.dll
2018-10-15 12:02 - 2018-10-15 12:02 - 000150016 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\MyDrive Connect\Qt5Xml.dll
2021-09-23 08:24 - 2021-09-23 08:24 - 000143360 _____ (TomTom) [File not signed] C:\Program Files (x86)\MyDrive Connect\DeviceNavEthernetCore.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
SearchScopes: HKU\S-1-5-21-2298117505-976418258-3832342613-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2298117505-976418258-3832342613-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-07-16 13:47 - 2020-07-05 18:02 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
2021-02-08 21:53 - 2022-01-17 20:48 - 000000444 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-2298117505-976418258-3832342613-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\linco\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 103.86.96.100 - 103.86.99.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled)
Wi-Fi: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled)
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "PDF24"
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\StartupApproved\Run: => "com.messenger"
HKU\S-1-5-21-2298117505-976418258-3832342613-1001\...\StartupApproved\Run: => "Steam"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{6BCE54C3-D87E-4774-AB09-7DC0C950C5A9}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom)
FirewallRules: [{BD32919E-726D-4E21-A078-65E16B9A9101}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{43AE6A5F-63EE-4DA3-9439-784A4DB05534}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{5CB887D8-7A95-4578-8AFC-5E9DFF87EB48}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{9ECF2400-2897-46C8-9E42-7D418C093246}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{0E2EE5A1-71F4-47AA-904B-CAE10D510B60}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{EA6D6C7C-A29A-4324-BF2E-1F98C6FD41EF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{29C8D9D1-A0FD-43E0-A83A-7C9D36E84DBB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{23D9C523-3687-4263-8562-1D7E55577FEB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{101C8101-91A5-4D9D-8282-F9E0898EB8D5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{BFC35833-B5B6-4F91-9320-070BB4BF0C42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{BB3BDD92-C402-43AE-9691-3CC6192EB39D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A7500D77-F651-44DC-AB54-894899AF73F6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{BC7C3394-A3A0-4A32-9A25-0BB3CD42AC81}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Wireless Connectivity Solutions -> )
FirewallRules: [{361C8061-5D7A-42BE-AD9C-850EEC74FC06}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BA592D17-9141-4AE9-89DB-3C34FD3E85CC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AFF2A124-8EF8-4189-AA56-5BB42E980100}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{819EDD0F-0C23-4D3E-A142-FA45915FD01F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [TCP Query User{B405641C-3A86-4AE0-9C3A-4420652905B3}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{26868414-D70F-44E1-A26E-06268B8F929A}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0A5A8CCD-F845-40CC-9029-A2DD1D35FCF5}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{654123EA-8EC6-49C1-A280-BCDF7B07CC11}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6F43F982-86D3-4897-8005-FB25D8C9000B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4329F0C0-32DB-47D7-92E8-783E43CAD03F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BBE8583D-75DF-4C82-AEAF-BB567B1BD957}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0582328F-B972-4BE7-BEA5-E20EC438F011}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{67737858-78E1-4E8C-BFFB-CA8E99FFD3A6}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{444F4EBB-A4FA-40AB-AB0B-7BA5425DC2F3}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6C5A429D-3E9B-4903-BB65-AFE01C1DD316}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8228B641-D8AA-4169-9FA2-D455D3C08893}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2770EE2B-DE1D-400B-B35F-F24B136E7EA3}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F0739C95-C85C-41CA-9F81-D5B4FC09EC56}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BCB7D609-FCAB-4763-9BE7-3830B7BCD16A}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6AB02318-A63A-46B1-8E83-D40F134324E3}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{EBC770FC-6937-4193-BFD6-DE9BFE7A2BDA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1A01CA8A-CDFD-4CC8-B883-5DA97D74C44E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1B25746B-674E-4162-AEB1-C6BD73466D50}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{629C4CA0-AA46-45A2-8AD8-83015B5733E1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{32223630-447E-470A-B8BB-59697864F695}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{38A12891-50EA-4659-9195-75443593DC99}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B213DC80-2FEF-4D9C-9AAC-BA285AED8530}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D9448E16-46D1-4554-92EA-24D6963D208E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B58230E3-97D6-4487-90A2-1CE0DBE8F1C6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{945908AC-2ABB-4296-AC7A-75578C956FD6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{8A29F02A-BFE3-4834-8824-43525FB3EA56}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{EFAD6DE8-9DC4-4DF1-99E0-74B3FAAD614B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B34CE24A-7D53-417A-8F9E-6AD557C73785}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{756595E6-001A-4817-951E-5D8BC22A5C03}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6E8AAF4F-4AF8-49A5-9822-7942EDA408B8}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C65811F5-A5C4-49E4-9AFA-AEAC76FCEFFB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B6749F27-04E2-4269-910C-25D477C31AED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{06FB89BE-DBA0-4D50-B7B6-2B724E275C5B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{40508F50-EFB8-4C80-A3C7-C12480C3B1F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{698EBFBC-07B6-4EC4-BA06-DED180B0CB95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{2C7665C2-5FDC-4C37-BE11-B54336865935}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BE4FEA4D-7EB6-4141-9BE2-CAFFC3ED3347}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{43922F2C-D86C-409B-9CD9-3EFEE33880BE}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CC6C0496-5A57-4A8D-AE15-5CF7EE1B2FFF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/22/2022 09:51:13 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program soffice.bin version 7.3.3.2 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 4c9c
Start Time: 01d86e14ea66fd6a
Termination Time: 14
Application Path: D:\program files decko\program\soffice.bin
Report Id: a4c5192a-51a5-4567-80cf-d08a5109d0bd
Faulting package full name:
Faulting package-relative application ID:
Hang type: Unknown
Error: (05/19/2022 04:29:49 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, Probíhá vypnutí systému.
.
Error: (05/19/2022 04:29:49 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, Probíhá vypnutí systému.
]
Error: (05/19/2022 04:29:49 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, Probíhá vypnutí systému.
.
Error: (05/19/2022 04:29:49 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, Probíhá vypnutí systému.
]
Error: (05/16/2022 08:25:50 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opakovat operaci trim v DATA (D:), pretože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (05/13/2022 05:55:56 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, Probíhá vypnutí systému.
.
Error: (05/13/2022 05:55:56 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, Probíhá vypnutí systému.
]
System errors:
=============
Error: (05/28/2022 01:31:20 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-J0PJPO6)
Description: Unable to start a DCOM Server: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (05/28/2022 01:30:59 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-J0PJPO6)
Description: Unable to start a DCOM Server: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (05/28/2022 01:24:56 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-J0PJPO6)
Description: Unable to start a DCOM Server: {0358B920-0AC7-461F-98F4-58E32CD89148}. The error:
"2147942767"
Happened while starting this command:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (05/28/2022 01:21:20 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-J0PJPO6)
Description: Unable to start a DCOM Server: {0358B920-0AC7-461F-98F4-58E32CD89148}. The error:
"2147942767"
Happened while starting this command:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (05/28/2022 01:16:11 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-J0PJPO6)
Description: Unable to start a DCOM Server: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (05/28/2022 01:15:59 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-J0PJPO6)
Description: Unable to start a DCOM Server: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (05/28/2022 01:01:40 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-J0PJPO6)
Description: Unable to start a DCOM Server: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
Error: (05/28/2022 01:01:10 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-J0PJPO6)
Description: Unable to start a DCOM Server: Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge as Unavailable/Unavailable. The error:
"2147942402"
Happened while starting this command:
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
CodeIntegrity:
===============
Date: 2022-05-28 13:15:47
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2022-05-28 09:12:34
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. FX502VE.302 04/20/2017
Motherboard: ASUSTeK COMPUTER INC. FX502VE
Processor: Intel(R) Core(TM) i7-7700HQ CPU @ 2.80GHz
Percentage of memory in use: 67%
Total physical RAM: 8076.84 MB
Available physical RAM: 2663.38 MB
Total Virtual: 16012.84 MB
Available Virtual: 7449.37 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:117.73 GB) (Free:23.16 GB) (Model: HFS128G39TND-N210A) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:553.9 GB) (Model: TOSHIBA MQ01ABD100) NTFS
\\?\Volume{b6fa713b-5c5f-4537-b4cf-1d505354f1e4}\ () (Fixed) (Total:0.46 GB) (Free:0.03 GB) NTFS
\\?\Volume{b4096786-284d-4920-bdcb-cbc4c3217fd9}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.44 GB) NTFS
\\?\Volume{159527f6-9e86-4f7f-994f-012b74f7f252}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: DF2AF8E9)
Partition: GPT.
==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: A024AFBC)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu, ďakujem !
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu logu, ďakujem !
Ahoj,
log vypada OK
Co sa tyka Adwcleanera tam moze platit:
Kde nic nie je ani smrt neberie
Doporucujem:
S prikazoveho riadku ako spravca spustit
sfc /scannow
+ doinstaluj zaplatu OS 21h2
log vypada OK
Co sa tyka Adwcleanera tam moze platit:
Kde nic nie je ani smrt neberie
Doporucujem:
S prikazoveho riadku ako spravca spustit
sfc /scannow
+ doinstaluj zaplatu OS 21h2
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o kontrolu logu, ďakujem !
Našlo mi len záplatu 21h1 a nainštalovalo, ale 21h2 nie. Píše, že momentálne nie sú nové aktualizácie. Čo sa týka toho logu, tak neviem ho nájsť. Ale spravilo to sken ako malo.
Re: Prosím o kontrolu logu, ďakujem !
Aha, teraz mi našlo toto 2022-05 – Ukážka kumulatívnej aktualizácie pre .NET Framework 3.5 a 4.8 pre Windows 10 Version 21H1 pre x64 (KB5013887)