Podivné chování Avastu a další problémy...

Zpráva

rokony · #1 Příspěvek od **rokony** » 13 lis 2021 14:24

Dobrý den,
prosím o kontrolu logu. Mám už nějakou dobu s Avastem, jednou úplně zmizel, teď zmizela některá menu Avastu a Avast Passwords hlásí, že program Avast není nainstalovaný. Přitom nainstalovaný je.
Další problémy jsou v prohlížečích, (google, Opera, Avast browser) všechny hlásí nespolehlivé stránky, připojení není soukromé a podobně, když chci prohlížet běžné weby, např seznam, idnes, přihlásit se do mailu a podobně.
Dále mi vyskakuje ono CMD, přičemž na cca 5 minut vytuhne počítač.
Děkuji předem za laskavou pomoc!

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-11-2021
Ran by Paul (administrator) on HORNÍ (13-11-2021 13:54:55)
Running from D:\Users\Paul\Desktop
Loaded Profiles: Paul
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Default browser: "D:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices Inc.) [File not signed] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ArcSoft, Inc. -> ArcSoft Inc.) D:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(ATI Technologies Inc.) [File not signed] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe <14>
(AVAST Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\SecureLine\Vpn.exe
(AVAST Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
(Avast Software s.r.o. -> Avast Software) D:\Program Files\Common Files\Avast Software\Overseer\overseer.exe
(BlackBerry Ltd. -> Apple Inc.) D:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe
(BlackBerry Ltd. -> BlackBerry Limited) D:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
(BlackBerry Ltd. -> BlackBerry Limited) D:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
(Google LLC -> Google) [File not signed] D:\Users\Paul\AppData\Local\Google\Chrome\User Data\SwReporter\93.269.200\software_reporter_tool.exe <4>
(Microsoft Windows -> Microsoft Corporation) D:\Windows\System32\dllhost.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) D:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) D:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.) D:\Program Files\Analog Devices\Core\smax4pnp.exe
(Oracle America, Inc. -> Oracle Corporation) D:\Program Files\Common Files\Java\Java Update\jusched.exe
(pdfforge GmbH -> Â© pdfforge GmbH.) D:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
(pdfforge GmbH -> pdfforge GmbH) D:\Program Files\PDF Architect 5\creator-ws.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => D:\Program Files\AVAST Software\Avast\AvLaunch.exe [123672 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [StartCCC] => D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-11-25] (Advanced Micro Devices, Inc.) [File not signed]
HKLM\...\Run: [ATICustomerCare] => D:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [311296 2010-05-04] (Advanced Micro Devices, Inc.) [File not signed]
HKLM\...\Run: [SoundMAXPnP] => D:\Program Files\Analog Devices\Core\smax4pnp.exe [868352 2006-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
HKLM\...\Run: [TuneupUI.exe] => "D:\Program Files\Avast Software\Cleanup\TuneupUI.exe" /nogui (No File)
HKLM\...\Run: [SunJavaUpdateSched] => D:\Program Files\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\...\Run: [Paul] => explorer.exe hxxp://exinariuminix.info (No File) <==== ATTENTION
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\...\MountPoints2: {3e16c316-cb70-11ea-8da8-001bfc7ae341} - D:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\Start.exe
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\...\MountPoints2: {5c9ddade-19b3-11e6-9501-806e6f6e6963} - E:\setup.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => D:\Windows\System32\SPReview\SPReview.exe [280576 2016-05-24] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows NT x86\Print Processors\hpzpplhn: D:\Windows\System32\spool\prtprocs\W32X86\hpzpplhn.dll [89600 2009-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\pdfcmon: D:\Windows\system32\pdfcmon.dll [145408 2021-10-28] (pdfforge GmbH) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> D:\Program Files\AVAST Software\Browser\Application\90.0.9310.93\Installer\chrmstp.exe [2021-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> D:\Program Files\Google\Chrome\Application\95.0.4638.54\Installer\chrmstp.exe [2021-10-25] (Google LLC -> Google LLC) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> D:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2021-04-21] (Adobe Inc. -> Adobe Systems, Inc.)
Startup: D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2019-05-25]
ShortcutTarget: Avast SecureLine VPN.lnk -> D:\Program Files\AVAST Software\SecureLine\Vpn.exe (AVAST Software s.r.o. -> AVAST Software)
BootExecute: autocheck autochk * icarus_rvrt.exe
GroupPolicy: Restriction ? <==== ATTENTION
Policies: D:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1103384F-650A-4FAF-BDF2-D40227402CCA} - System32\Tasks\{D150EB2D-B749-477B-B60B-4A7B137AD3FE} => D:\Windows\system32\pcalua.exe -a "D:\Office-2007-CZ-+-key-+-klasické-menu\Office 2007\MS office 2007 cz + key\setup.exe" -d "D:\Office-2007-CZ-+-key-+-klasické-menu\Office 2007\MS office 2007 cz + key"
Task: {27B2B6D8-FBFF-4A47-8C36-C586F63004AF} - System32\Tasks\Avast Software\Avast Cleanup BugReport => D:\Program Files\Avast Software\Cleanup\AvBugReport.exe -> --send "dumps|report" --silent --product 62 --programpath "D:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "D:\Program Files\Avast Software\Cleanup\Setup" --path "D:\ProgramData\Avast Software\Cleanup\log" --path "D:\ProgramData\Avast Software\Icarus\Logs" --guid de3927f3-91fc-4291-aa2b-ef2710de54d8
Task: {34DF9DFA-4F88-46C7-B32F-3872C97E599E} - System32\Tasks\GoogleUpdateTaskMachineCore => D:\Program Files\Google\Update\GoogleUpdate.exe [152216 2016-05-14] (Google Inc -> Google Inc.)
Task: {440D52EE-C9C7-41CA-9E8E-268C527C690B} - System32\Tasks\AvastUpdateTaskMachineCore => D:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /c (No File)
Task: {506F7A63-6E42-40D7-BBFF-5D6073CC39BE} - System32\Tasks\Avast SecureLine VPN Update => D:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe [1390472 2019-10-24] (AVAST Software s.r.o. -> AVAST Software)
Task: {62BBA638-A677-43CF-8A6B-C2FD4626C318} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => D:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1994496 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
Task: {6F696061-3C12-4221-BA92-F2055FB4E4EE} - System32\Tasks\Avast Software\Avast Cleanup Update => D:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe /update:avast-tu /silent (No File)
Task: {7D409E4F-5100-4C53-8EDF-6F18AA9E8123} - System32\Tasks\EOSv3 Scheduler onTime => D:\Users\Paul\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-06-02] (ESET, spol. s r.o. -> ESET)
Task: {8E410EA4-32B3-4F27-BD54-691E61227BE8} - System32\Tasks\AVAST Software\Avast settings backup => D:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (No File)
Task: {97EE9223-C971-42ED-93B4-355E902CBAEB} - System32\Tasks\Adobe Acrobat Update Task => D:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (No File)
Task: {9EFE7BF9-69F9-4E5F-91FC-A0696B8AEBBC} - System32\Tasks\Avast Software\Overseer => D:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1546480 2021-06-12] (Avast Software s.r.o. -> Avast Software)
Task: {A79983B7-A5A0-47FF-AE85-70238BD14EA9} - System32\Tasks\{99BE2EB5-1EA6-4432-8629-564CB0EF4DF8} => D:\Windows\system32\pcalua.exe -a D:\WinAVR-20100110\bin\avr-insight.exe -d D:\WinAVR-20100110\bin
Task: {B63B9C26-200A-44CD-91C0-DFE4D73BEA7F} - System32\Tasks\Adobe Flash Player Updater => D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-10-28] (Adobe Inc. -> Adobe)
Task: {B75FFEFC-B35A-4E21-9EDE-88B5A8143F71} - System32\Tasks\Opera scheduled Autoupdate 1463218688 => d:\program files\opera\launcher.exe [3255504 2021-10-27] (Opera Software AS -> Opera Software)
Task: {B93CEB8C-020C-4CA0-86BE-AA0C7B40457B} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => D:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1994496 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
Task: {C7957738-0FF2-4908-A5E8-56C728725BE3} - System32\Tasks\EOSv3 Scheduler onLogOn => D:\Users\Paul\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-06-02] (ESET, spol. s r.o. -> ESET)
Task: {CB77912A-92E4-4832-BD12-375F51295380} - System32\Tasks\Paul => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Paul /t REG_SZ /d "explorer.exe http://exinariuminix.info" /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Paul /t REG_SZ /d "explorer.exe hxxp://exinariuminix.info" (No File) <==== ATTENTION
Task: {CFE7D029-511D-4B16-B2E3-28BC86877C26} - System32\Tasks\GoogleUpdateTaskMachineUA => D:\Program Files\Google\Update\GoogleUpdate.exe [152216 2016-05-14] (Google Inc -> Google Inc.)
Task: {D3D8AD07-3ABB-4EC0-AA5D-7E4DD9F3EE93} - System32\Tasks\AvastUpdateTaskMachineUA => D:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /ua /installsource scheduler (No File)
Task: {D97B9FD5-32B2-4458-966D-2B137A971D82} - System32\Tasks\Avast Emergency Update => D:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4409112 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
Task: {DBB43A70-7186-4A1F-925D-AC82193E0EC0} - System32\Tasks\Opera scheduled assistant Autoupdate 1582822965 => D:\Program Files\Opera\launcher.exe [3255504 2021-10-27] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="D:\Program Files\Opera\assistant" $(Arg0)
Task: {EA371E07-1B6C-438F-A2FD-0B2F2FD723BA} - System32\Tasks\{C99291A1-F890-4962-8810-3360C88DEDD9} => D:\Windows\system32\pcalua.exe -a D:\Users\Paul\Downloads\avr8-gnu-toolchain-installer-3.5.3.90-win32.any.x86.exe -d D:\Users\Paul\Downloads

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{D6ECA6D6-AEEC-4F56-BCEA-2CB0696DDEE5}: [NameServer] 100.120.96.1
Tcpip\..\Interfaces\{E569009B-2FE4-45AC-8C3D-91D6B2DA1FAF}: [DhcpNameServer] 10.0.1.138

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: D:\Users\Paul\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-20]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.311.2 -> D:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> D:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @RIM.com/WebSLLauncher,version=1.0 -> D:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2015-03-19] (Research In Motion -> )
FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> D:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-27] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> D:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-27] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Reader -> D:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default [2021-11-13]
CHR Notifications: Default -> hxxps://17.cprmatix.com
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR NewTab: Default -> Not-active:"chrome-extension://blmojkbhnkkphngknkmgccmlenfaelkd/speeddial/html/newTab.html"
CHR Extension: (Dokumenty) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-26]
CHR Extension: (Seznam doplněk - Email) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-04-14]
CHR Extension: (Seznam doplněk - Esko-) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2019-10-14]
CHR Extension: (Avast Passwords) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2020-02-15]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-11-13]
CHR Extension: (Platby Internetového obchodu Chrome) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKU\S-1-5-21-1540482146-1299034176-466505332-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1540482146-1299034176-466505332-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd]
CHR HKU\S-1-5-21-1540482146-1299034176-466505332-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]

Opera:
=======
OPR Profile: D:\Users\Paul\AppData\Roaming\Opera Software\Opera Stable [2021-10-28]
OPR Notifications: Opera Stable -> hxxps://jolly-me.ru
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - D:\Users\Paul\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-10-28]
OPR Extension: (Amazon Assistant Promotion) - D:\Users\Paul\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-10-27]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; D:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [109056 2009-09-28] (ArcSoft, Inc. -> ArcSoft Inc.)
S3 AdobeFlashPlayerUpdateSvc; D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-10-28] (Adobe Inc. -> Adobe)
R2 AMD External Events Utility; D:\Windows\system32\atiesrxx.exe [176128 2010-11-26] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R3 aswbIDSAgent; D:\Program Files\AVAST Software\Avast\aswidsagent.exe [7532624 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [626968 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; D:\Program Files\AVAST Software\Avast\afwServ.exe [1564952 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; D:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [407832 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; D:\Program Files\AVAST Software\Browser\Application\90.0.9310.93\elevation_service.exe [1173256 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; D:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-12] (Avast Software s.r.o. -> AVAST Software)
R3 BlackBerry Device Manager; D:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [588024 2014-10-31] (BlackBerry Ltd. -> BlackBerry Limited)
S3 GoogleChromeElevationService; D:\Program Files\Google\Chrome\Application\95.0.4638.54\elevation_service.exe [1243480 2021-10-16] (Google LLC -> Google LLC) [File not signed]
S3 PDF Architect 5; D:\Program Files\PDF Architect 5\ws.exe [2468128 2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 5 CrashHandler; D:\Program Files\PDF Architect 5\crash-handler-ws.exe [979744 2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 5 Creator; D:\Program Files\PDF Architect 5\creator-ws.exe [778528 2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 5 Manager; D:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985848 2017-05-16] (pdfforge GmbH -> Â© pdfforge GmbH.)
R2 Pml Driver HPZ12; D:\Windows\system32\HPZipm12.dll [52736 2009-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
R2 RIM MDNS; D:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe [396024 2015-03-19] (BlackBerry Ltd. -> Apple Inc.)
R2 RIM Tunnel Service; D:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe [1354488 2015-03-19] (BlackBerry Ltd. -> BlackBerry Limited)
R2 SecureLine; D:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [6828424 2019-10-23] (AVAST Software s.r.o. -> AVAST Software)
S3 WinDefend; D:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
S2 AdobeARMservice; "D:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe" [X]
S2 avast; "D:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X]
S3 avastm; "D:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X]
S2 CleanupPSvc; "D:\Program Files\Avast Software\Cleanup\TuneupSvc.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ADIHdAudAddService; D:\Windows\System32\drivers\ADIHdAud.sys [316928 2007-01-16] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
R3 Afc; D:\Windows\System32\drivers\Afc.sys [18688 2006-11-10] (ArcSoft, Inc. -> Arcsoft, Inc.)
R3 amdkmdag; D:\Windows\System32\DRIVERS\atikmdag.sys [6650368 2010-11-26] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 amdkmdap; D:\Windows\System32\DRIVERS\atikmpag.sys [231936 2010-11-26] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R1 aswArPot; D:\Windows\System32\drivers\aswArPot.sys [186304 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; D:\Windows\System32\drivers\aswbidsdriver.sys [312360 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; D:\Windows\System32\drivers\aswbidsh.sys [206376 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; D:\Windows\System32\drivers\aswbuniv.sys [91688 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; D:\Windows\System32\drivers\aswKbd.sys [39304 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; D:\Windows\System32\drivers\aswMonFlt.sys [154016 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; D:\Windows\System32\drivers\aswNetHub.sys [393032 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; D:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2020-03-12] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; D:\Windows\System32\drivers\aswRdr2.sys [92760 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; D:\Windows\System32\drivers\aswRvrt.sys [71920 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; D:\Windows\System32\drivers\aswSnx.sys [690144 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; D:\Windows\System32\drivers\aswSP.sys [459064 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; D:\Windows\System32\drivers\aswStm.sys [161368 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; D:\Windows\System32\DRIVERS\aswTap.sys [48152 2017-03-14] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; D:\Windows\System32\drivers\aswVmm.sys [266184 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; D:\Windows\System32\drivers\AtihdW73.sys [101392 2010-11-17] (ATI Technologies, Inc -> Advanced Micro Devices)
S3 atikmdag; D:\Windows\System32\DRIVERS\atikmdag.sys [6650368 2010-11-26] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
S3 blackberryncm; D:\Windows\System32\DRIVERS\blackberryncm6.sys [22016 2014-09-08] (Microsoft Windows Hardware Compatibility Publisher -> BlackBerry)
S3 BULKUSB; D:\Windows\System32\Drivers\BULKUSB.sys [23000 2011-09-26] (SIEMENS AG -> Windows (R) Win 7 DDK provider)
S3 cpuz134; D:\Program Files\CPUID\PC Wizard 2010\pcwiz_x32.sys [20328 2010-07-09] (CPUID -> Windows (R) Win 7 DDK provider)
S3 DLPortIO; D:\Windows\system32\DRIVERS\DLPortIO.SYS [3584 2000-06-29] () [File not signed]
R1 HWiNFO32; D:\Windows\system32\drivers\HWiNFO32.SYS [23840 2016-05-15] (Martin Malik - REALiX -> REALiX(tm))
S3 RimUsb; D:\Windows\System32\Drivers\RimUsb.sys [68608 2014-05-06] (Microsoft Windows Hardware Compatibility Publisher -> BlackBerry Limited)
R3 rimvndis; D:\Windows\System32\Drivers\rimvndis6.sys [14848 2015-03-19] (Microsoft Windows Hardware Compatibility Publisher -> BlackBerry Limited)
R3 RimVSerPort; D:\Windows\System32\DRIVERS\RimSerial.sys [35840 2012-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Ltd)
S1 staport; D:\Windows\System32\Drivers\staport.sys [39424 2021-10-28] (AVAST Software s.r.o. -> )
R2 TVicPort; D:\Windows\System32\Drivers\TVicPort.sys [14544 2005-03-30] (EnTech Taiwan) [File not signed]
R1 UimBus; D:\Windows\System32\DRIVERS\UimBus.sys [95280 2015-11-10] (Paragon Software GmbH -> )
R1 Uim_DEVIM; D:\Windows\System32\DRIVERS\uim_devim.sys [20528 2015-11-10] (Paragon Software GmbH -> )
R1 Uim_IM; D:\Windows\System32\DRIVERS\uim_im.sys [541232 2015-11-10] (Paragon Software GmbH -> )
R3 WinDriver6; D:\Windows\System32\drivers\windrvr6.sys [195424 2009-09-02] (Jungo LTD -> Jungo)
R1 WMDrive; D:\Windows\system32\drivers\WMDrive.sys [65856 2016-07-23] (Beijing KaiXin ShengZhou Technology Co., Ltd. -> WinMount International Inc) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-13 13:54 - 2021-11-13 13:56 - 000024714 _____ D:\Users\Paul\Desktop\FRST.txt
2021-11-13 13:52 - 2021-11-13 13:55 - 000000000 ____D D:\FRST
2021-11-13 13:51 - 2021-11-13 13:50 - 002019840 _____ (Farbar) D:\Users\Paul\Desktop\FRST.exe
2021-11-13 13:49 - 2021-11-13 13:50 - 002019840 _____ (Farbar) D:\Users\Paul\Downloads\FRST.exe
2021-10-28 21:45 - 2021-10-28 21:46 - 000000000 ____D D:\Program Files\PDFCreator
2021-10-28 21:45 - 2021-10-28 21:45 - 000000714 _____ D:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator.lnk
2021-10-28 21:45 - 2021-10-28 21:45 - 000000668 _____ D:\Users\Public\Desktop\PDFCreator.lnk
2021-10-28 21:42 - 2021-10-28 23:14 - 000004366 _____ D:\Windows\system32\Tasks\Adobe Flash Player Updater
2021-10-28 18:45 - 2021-10-28 18:45 - 000039424 _____ () D:\Windows\system32\Drivers\staport.sys
2021-10-28 18:44 - 2021-10-28 18:43 - 000287512 _____ (AVAST Software) D:\Windows\system32\aswBoot.exe
2021-10-28 18:44 - 2021-10-28 18:43 - 000161368 _____ (AVAST Software) D:\Windows\system32\Drivers\aswStm.sys
2021-10-28 13:00 - 2021-10-28 13:00 - 000000000 ____D D:\Program Files\Common Files\Oracle
2021-10-28 12:59 - 2021-10-28 12:59 - 000000000 ____D D:\Program Files\Common Files\Java

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-13 13:42 - 2009-07-14 05:34 - 000014016 ____H D:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-11-13 13:42 - 2009-07-14 05:34 - 000014016 ____H D:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-11-13 13:39 - 2016-05-14 10:22 - 001582262 _____ D:\Windows\system32\PerfStringBackup.INI
2021-11-13 13:39 - 2009-07-14 09:44 - 000668138 _____ D:\Windows\system32\perfh005.dat
2021-11-13 13:39 - 2009-07-14 09:44 - 000140798 _____ D:\Windows\system32\perfc005.dat
2021-11-13 13:39 - 2009-07-14 03:37 - 000000000 ____D D:\Windows\inf
2021-11-13 13:38 - 2017-03-14 18:27 - 000004168 _____ D:\Windows\system32\Tasks\Avast Emergency Update
2021-11-13 13:37 - 2016-05-14 10:32 - 000000000 ____D D:\Program Files\Google
2021-11-13 13:33 - 2016-05-14 10:26 - 000000000 ____D D:\ProgramData\AVAST Software
2021-11-13 13:33 - 2009-07-14 05:53 - 000000006 ____H D:\Windows\Tasks\SA.DAT
2021-10-28 23:15 - 2016-05-14 11:12 - 000003322 _____ D:\Windows\system32\Tasks\{D150EB2D-B749-477B-B60B-4A7B137AD3FE}
2021-10-28 23:15 - 2016-05-14 10:30 - 000000000 ____D D:\Windows\system32\Tasks\AVAST Software
2021-10-28 23:14 - 2021-04-24 18:39 - 000003474 _____ D:\Windows\system32\Tasks\Paul
2021-10-28 23:14 - 2021-03-15 18:16 - 000003816 _____ D:\Windows\system32\Tasks\Opera scheduled Autoupdate 1463218688
2021-10-28 23:14 - 2017-03-01 18:17 - 000003114 _____ D:\Windows\system32\Tasks\{99BE2EB5-1EA6-4432-8629-564CB0EF4DF8}
2021-10-28 23:14 - 2017-03-01 17:02 - 000003198 _____ D:\Windows\system32\Tasks\{C99291A1-F890-4962-8810-3360C88DEDD9}
2021-10-28 23:14 - 2016-05-14 10:32 - 000003376 _____ D:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-28 23:14 - 2016-05-14 10:32 - 000003248 _____ D:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-10-28 21:49 - 2016-05-14 10:37 - 000000000 ____D D:\Program Files\Opera
2021-10-28 21:48 - 2016-05-14 10:50 - 000000000 ____D D:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-10-28 21:48 - 2016-05-14 10:50 - 000000000 ____D D:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-10-28 21:48 - 2016-05-14 10:50 - 000000000 ____D D:\Program Files\WinRAR
2021-10-28 21:47 - 2018-03-25 17:25 - 000001030 _____ D:\Users\Public\Desktop\VLC media player.lnk
2021-10-28 21:46 - 2017-07-03 08:02 - 000145408 _____ (pdfforge GmbH) D:\Windows\system32\pdfcmon.dll
2021-10-28 21:42 - 2017-10-08 17:48 - 000842296 _____ (Adobe) D:\Windows\system32\FlashPlayerApp.exe
2021-10-28 21:42 - 2017-10-08 17:48 - 000175160 _____ (Adobe) D:\Windows\system32\FlashPlayerCPLApp.cpl
2021-10-28 21:41 - 2017-10-08 17:48 - 000000000 ____D D:\Windows\system32\Macromed
2021-10-28 18:50 - 2021-06-12 17:34 - 000002009 _____ D:\Users\Public\Desktop\Avast Premium Security.lnk
2021-10-28 18:45 - 2019-01-17 12:33 - 000312360 _____ (AVAST Software) D:\Windows\system32\Drivers\aswbidsdriver.sys
2021-10-28 18:45 - 2019-01-17 12:24 - 000206376 _____ (AVAST Software) D:\Windows\system32\Drivers\aswbidsh.sys
2021-10-28 18:45 - 2019-01-17 12:24 - 000091688 _____ (AVAST Software) D:\Windows\system32\Drivers\aswbuniv.sys
2021-10-28 18:43 - 2020-10-20 17:34 - 000154016 _____ (AVAST Software) D:\Windows\system32\Drivers\aswMonFlt.sys
2021-10-28 18:43 - 2020-05-01 09:20 - 000393032 _____ (AVAST Software) D:\Windows\system32\Drivers\aswNetHub.sys
2021-10-28 18:43 - 2018-11-10 13:26 - 000039304 _____ (AVAST Software) D:\Windows\system32\Drivers\aswKbd.sys
2021-10-28 18:43 - 2017-11-17 13:14 - 000186304 _____ (AVAST Software) D:\Windows\system32\Drivers\aswArPot.sys
2021-10-28 18:43 - 2016-05-14 10:30 - 000690144 _____ (AVAST Software) D:\Windows\system32\Drivers\aswSnx.sys
2021-10-28 18:43 - 2016-05-14 10:30 - 000459064 _____ (AVAST Software) D:\Windows\system32\Drivers\aswSP.sys
2021-10-28 18:43 - 2016-05-14 10:30 - 000266184 _____ (AVAST Software) D:\Windows\system32\Drivers\aswVmm.sys
2021-10-28 18:43 - 2016-05-14 10:30 - 000092760 _____ (AVAST Software) D:\Windows\system32\Drivers\aswRdr2.sys
2021-10-28 18:43 - 2016-05-14 10:30 - 000071920 _____ (AVAST Software) D:\Windows\system32\Drivers\aswRvrt.sys
2021-10-28 15:37 - 2014-11-20 17:48 - 000000000 ____D D:\Programy
2021-10-28 14:10 - 2021-06-02 18:15 - 000001199 _____ D:\Users\Paul\Desktop\ESET Online Scanner.lnk
2021-10-28 13:00 - 2020-07-25 16:53 - 000000000 ____D D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-10-28 13:00 - 2020-07-25 16:52 - 000000000 ____D D:\Program Files\Java
2021-10-28 12:57 - 2020-07-25 16:53 - 000162648 _____ (Oracle Corporation) D:\Windows\system32\WindowsAccessBridge.dll
2021-10-25 14:38 - 2020-01-04 19:16 - 000000000 ____D D:\Users\Paul\Documents\Hyperborea
2021-10-25 10:38 - 2016-05-14 11:39 - 000002176 _____ D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-25 10:38 - 2016-05-14 11:39 - 000002135 _____ D:\Users\Public\Desktop\Google Chrome.lnk

==================== Files in the root of some directories ========

2017-10-08 15:04 - 2017-10-08 15:04 - 005082084 _____ (The Public) D:\Users\Paul\AppData\Roaming\Avisynth.exe
2017-10-08 15:04 - 2017-10-08 15:04 - 005243208 _____ ( ) D:\Users\Paul\AppData\Roaming\AvsP.exe
2017-10-08 15:04 - 2017-10-08 15:04 - 002169915 _____ (LIGHTNING UK!) D:\Users\Paul\AppData\Roaming\Imgburn.exe
2017-10-08 15:04 - 2017-10-08 15:04 - 001357348 _____ () D:\Users\Paul\AppData\Roaming\MatroskaSplitter.exe
2020-06-25 15:12 - 2021-01-12 19:48 - 000000616 _____ () D:\Users\Paul\AppData\Roaming\Rim.Desktop.Exception.log
2020-06-25 15:10 - 2020-06-26 18:19 - 000002245 _____ () D:\Users\Paul\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2020-06-25 15:12 - 2021-01-12 19:47 - 000000616 _____ () D:\Users\Paul\AppData\Roaming\Rim.DesktopHelper.Exception.log
2017-10-08 15:04 - 2017-10-08 15:04 - 007760687 _____ (Boraxsoft) D:\Users\Paul\AppData\Roaming\SetupGFD.exe
2017-10-08 15:04 - 2017-10-08 15:04 - 000117723 _____ () D:\Users\Paul\AppData\Roaming\yuvcodecs-1.3.exe
2020-06-25 15:14 - 2020-06-25 15:14 - 000008704 _____ () D:\Users\Paul\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2021-05-19 16:23 - 2021-05-19 16:23 - 000000000 _____ () D:\Users\Paul\AppData\Local\{13FFC920-4C8C-44FC-84A3-3CAF286DAB9A}
2021-05-09 17:00 - 2021-05-09 17:00 - 000000000 _____ () D:\Users\Paul\AppData\Local\{33800955-1D98-422E-9582-F0256B787C41}
2021-05-14 17:19 - 2021-05-14 17:19 - 000000000 _____ () D:\Users\Paul\AppData\Local\{40BBF283-08EB-49CD-BCD8-350970023F47}
2018-09-29 07:54 - 2018-09-29 07:54 - 000000000 _____ () D:\Users\Paul\AppData\Local\{54B7DF88-666B-4FDA-A981-7ED61029A11B}
2021-05-19 16:22 - 2021-05-19 16:22 - 000000000 _____ () D:\Users\Paul\AppData\Local\{6F008943-A81A-4A0A-A482-54E317E3156C}
2018-09-29 07:54 - 2018-09-29 07:54 - 000000000 _____ () D:\Users\Paul\AppData\Local\{9E61736D-F39B-4510-865C-61C28095AA45}
2021-05-14 17:19 - 2021-05-14 17:19 - 000000000 _____ () D:\Users\Paul\AppData\Local\{CDDAC471-7472-4D41-B5C0-438A3877F75A}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2021-10-25 15:01
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 09-11-2021
Ran by Paul (13-11-2021 13:57:50)
Running from D:\Users\Paul\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2016-05-14 09:17:04)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1540482146-1299034176-466505332-500 - Administrator - Disabled)
Guest (S-1-5-21-1540482146-1299034176-466505332-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1540482146-1299034176-466505332-1002 - Limited - Enabled)
Paul (S-1-5-21-1540482146-1299034176-466505332-1001 - Administrator - Enabled) => D:\Users\Paul

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.001.20155 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 32.0.0.465 - Adobe)
Adobe Photoshop 6.0.1 CE (HKLM\...\Adobe Photoshop 6.0.1 CE) (Version: 6.0.1 - Adobe Systems, Inc.)
ArcSoft MediaImpression 2 (HKLM\...\{044197D0-BA1C-4567-A8E3-A6491A6DC4EE}) (Version: 2.0.19.573 - ArcSoft)
ATI Catalyst Install Manager (HKLM\...\{4B52E7BC-28A6-F68C-A12F-BC7581BE344C}) (Version: 3.0.804.0 - ATI Technologies, Inc.)
ATI Catalyst Registration (HKLM\...\{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}) (Version: 3.00.0000 - ATI Technologies Inc.) Hidden
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 21.1.9940.2746 - Avast Software)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 21.9.2493 - Avast Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 90.0.9310.93 - Autoři prohlížeče Avast Secure Browser)
Avast SecureLine (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 5.1.419 - AVAST Software)
AviSynth 2.6 (HKLM\...\AviSynth) (Version: 2.6.0.2 - GPL Public release.)
AVRStudio4 (HKLM\...\{D5D88F8F-FDA4-4CF4-9F3E-3F40118C2120}) (Version: 4.18.684 - Atmel)
AvsP (HKLM\...\AvsP_is1) (Version: - )
BASCOM-AVR (HKLM\...\{47F94730-ABD2-47F6-920E-EA8CDB6DD0C6}_is1) (Version: 2.0.7.1 - MCS Electronics)
BBSAK (HKLM\...\{E2B4FE1C-2CFA-47EE-A88C-A14D0FF1F0B0}) (Version: 1.9.11 - JMT Labs)
BlackBerry 10 Desktop Software (HKLM\...\{a0642dd3-1105-464b-84c8-caaf676c39c8}) (Version: 1.1.0.22 - BlackBerry)
BlackBerry Blend (HKLM\...\{1DA42C01-4ED2-4B4E-B90C-18FCBA12FC41}) (Version: 1.1.0.23 - BlackBerry Ltd.) Hidden
BlackBerry Communication Drivers (HKLM\...\{46CD5A63-0C1F-45C3-B643-CA87A17275C0}) (Version: 8.0.0.119 - BlackBerry Ltd.) Hidden
BlackBerry Desktop Software 7.1 (HKLM\...\{BE5B0450-DCCB-4FE9-93E2-3B38D88A745B}) (Version: 7.1.0.41 - Research In Motion Ltd.) Hidden
BlackBerry Desktop Software 7.1 (HKLM\...\BlackBerry_Desktop) (Version: 7.1.0.41 - Research In Motion Ltd.)
BlackBerry Device Drivers (HKLM\...\{3FB73D51-669B-4AC0-9410-CF0C451E58BF}) (Version: 8.0.0.119 - BlackBerry Ltd.) Hidden
BlackBerry Device Software Updater (HKLM\...\{E755A98B-F45F-4008-A1A5-FC4CB4D2177A}) (Version: 8.0.0.66 - Research In Motion Ltd)
BlackBerry Link (HKLM\...\{C42468F9-9812-4550-A54B-5DDB062EB10F}) (Version: 1.2.4.28 - BlackBerry) Hidden
BlackBerry Link Remover (HKLM\...\{44D65CAB-1BC8-47B7-BF5B-3EB8B6BB0276}) (Version: 1.2.4.0 - BlackBerry Ltd.) Hidden
Dune 2000 (HKLM\...\Dune 2000) (Version: - )
Dune 2000 Money Maker v1.20 (HKLM\...\Dune 2000 Money Maker v1.20) (Version: - )
elektron version 5.1.0.0 (HKLM\...\elektron 5.1.0.0_is1) (Version: - Company: Pepinator)
Elektron verze 1.5 (HKLM\...\Elektron_is1) (Version: 1.5 - )
Filtered Noise Generator 1.2 (HKLM\...\75C4D645-0101-49A6-AC1A-69DDA6998885_is1) (Version: - Timo Esser)
Frex16 (HKLM\...\Frex162017.04.04) (Version: 2017.04.04 - Ken Uzzell)
Google Chrome (HKLM\...\Google Chrome) (Version: 95.0.4638.54 - Google LLC)
Google Toolbar for Internet Explorer (HKLM\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
Haali Media Splitter (HKLM\...\HaaliMkx) (Version: - )
HD Tune Pro 5.50 (HKLM\...\HD Tune Pro_is1) (Version: - EFD Software)
Helix YUV Codecs (remove only) (HKLM\...\HelixYUVCodecs) (Version: - )
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.0.0 - LIGHTNING UK!)
Java 8 Update 311 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
JDS6600 1.00 (HKLM\...\JDS6600 1.00) (Version: 1.00 - JUN CE)
KMPlayer (remove only) (HKLM\...\The KMPlayer) (Version: 4.1.3.3 - PandoraTV)
LJConfig (HKLM\...\{53F396C7-269B-42F5-933D-7EDA67D9A048}) (Version: 1.2 - VicTech Software)
Manager (HKLM\...\{8DED36D9-54D6-4127-A112-5A1BA1CDD66B}) (Version: 5.0.26.33533 - 2017 pdfforge GmbH. All rights reserved) Hidden
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
mini Ring Core Calculator 1.2 (HKLM\...\minirk12_is1) (Version: 1.2 - DL5SWB)
MPLAB Tools v8.90 (HKLM\...\{4BFBFE90-75A0-4728-8625-9776B82C99B3}) (Version: 8.90 - Microchip Technology Inc.) Hidden
MPLAB Tools v8.90 (HKLM\...\InstallShield_{4BFBFE90-75A0-4728-8625-9776B82C99B3}) (Version: 8.90 - Microchip Technology Inc.)
Multi Tone Generator (HKLM\...\Multi Tone Generator_is1) (Version: 1.4 - Timo Esser)
OpenAL (HKLM\...\OpenAL) (Version: - )
Opera Stable 80.0.4170.72 (HKLM\...\Opera 80.0.4170.72) (Version: 80.0.4170.72 - Opera Software)
Paragon Hard Disk Manager™ 15 Professional (HKLM\...\{1E104AF0-EA49-11DE-AC07-005056C00008}) (Version: 90.00.0003 - Paragon Software)
PC Wizard 2010.1.96 (HKLM\...\PC Wizard 2010_is1) (Version: - CPUID)
PDF Architect 5 Create Module (HKLM\...\{D4357D67-F66E-4FB0-8040-67E1045A5C54}) (Version: 5.0.24.33400 - pdfforge GmbH) Hidden
PDF Architect 5 Edit Module (HKLM\...\{D111BC40-7196-4A2C-8ED7-992D36990591}) (Version: 5.0.24.33400 - pdfforge GmbH) Hidden
PDF Architect 5 View Module (HKLM\...\{0247CCDF-4FAF-4AB8-A6C7-F2A63A306E0E}) (Version: 5.0.24.33400 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{90AD48B3-56D7-46DB-8A6E-1DDD6939BBD3}) (Version: 4.4.0 - pdfforge GmbH)
PonyProg2000 v2.07c (HKLM\...\PonyProg2000_is1) (Version: 2.07c - LancOS)
Rhinoceros 4.0 (HKLM\...\{5C2CBFFD-FC3B-4AA9-993B-CE2B8DA25B87}) (Version: 4.0.20118 - McNeel & Associates)
Rhinoceros 4.0 SR8 (HKLM\...\{95E1E426-EE9E-4F68-8F02-58A5A09B38F3}) (Version: 4.0.50401 - Robert McNeel & Associates)
Seznam Software (HKU\S-1-5-21-1540482146-1299034176-466505332-1001\...\SeznamInstall) (Version: - Seznam.cz)
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 6.10.1.6110 - Analog Devices)
Test Tone Generator 4.5 (HKLM\...\A9CD4C7D-6D93-4B56-A226-1D28DB060A87_is1) (Version: - Timo Esser)
The Lord of the Rings FREE Trial (HKLM\...\{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}) (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
Tisk Obalek 3.2.2.7 (HKLM\...\Tisk Obalek_is1) (Version: 3.2.2.7 - Mgr. Radovan Kraus)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
WavePad Sound Editor (HKLM\...\WavePad) (Version: 7.05 - NCH Software)
Westwood Shared Internet Components (HKLM\...\WOLAPI) (Version: - )
WinAVR 20100110 (remove only) (HKLM\...\WinAVR-20100110) (Version: 20100110 - )
WinHTTrack Website Copier 3.49-2 (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.49.2 - HTTrack)
WinMount V3.4.1020 (HKLM\...\WinMount_is1) (Version: 3.4.1020 - WinMount)
WinPic (HKLM\...\WinPic_is1) (Version: - Wolfgang Buescher (DL4YHF))
WinRAR 6.02 (32-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
WMV9/VC-1 Video Playback (HKLM\...\{DFB92E80-F614-8710-37BD-E5091D241B90}) (Version: 1.0.51125.2159 - ATI Technologies Inc.) Hidden

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1540482146-1299034176-466505332-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> D:\Users\Paul\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20339.4\x86\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-28] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [MountOverlayIcon] -> {0F49CF41-FD97-4942-9F2A-35E8B489E7FB} => D:\Program Files\WinMount\WinMTExt.dll [2010-10-20] (WinMount International Inc.) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PDFArchitect5_ManagerExt] -> {00B7B69F-6774-4906-9C7F-7D117A3644A9} => D:\Program Files\PDF Architect 5\creator-context-menu.dll [2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => D:\Program Files\PDFCreator\PDFCreatorShell.DLL [2021-08-26] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [RhinoShExt] -> {C81DCBCA-8AE2-41FC-9C39-78B160393210} => D:\Program Files\Rhinoceros 4.0\System\RhinoShExt.dll [2010-04-01] (Robert McNeel & Associates) [File not signed]
ContextMenuHandlers1: [ShlExtMenu] -> {231B20E6-A4F5-456E-984D-BE082084A168} => D:\Program Files\WinMount\WinMTExt.dll [2010-10-20] (WinMount International Inc.) [File not signed]
ContextMenuHandlers1: [WinMTExt] -> {231B20E6-A4F5-456E-984D-BE082084A168} => D:\Program Files\WinMount\WinMTExt.dll [2010-10-20] (WinMount International Inc.) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [WinMTExt] -> {231B20E6-A4F5-456E-984D-BE082084A168} => D:\Program Files\WinMount\WinMTExt.dll [2010-10-20] (WinMount International Inc.) [File not signed]
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [WinMTExt] -> {231B20E6-A4F5-456E-984D-BE082084A168} => D:\Program Files\WinMount\WinMTExt.dll [2010-10-20] (WinMount International Inc.) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll [2010-11-25] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.i420] => D:\Windows\system32\i420vfw.dll [83456 2010-11-03] (www.helixcommunity.org) [File not signed]
HKLM\...\Drivers32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32: [VIDC.VP80] => vp8vfw.dll
HKLM\...\Drivers32: [vidc.yv12] => D:\Windows\system32\yv12vfw.dll [83456 2010-11-03] (www.helixcommunity.org) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: D:\Users\Paul\Favorites\NCH Software Download Site.lnk -> hxxp://www.nch.com.au/index.htm
Shortcut: D:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Frex16\install_tools.lnk -> D:\Program Files\Frex16\install_tools.bat ()

==================== Loaded Modules (Whitelisted) =============

2009-01-20 12:51 - 2009-01-20 12:51 - 000007168 _____ () [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atixclib.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 000270336 _____ () [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2015-03-19 11:22 - 2015-03-19 11:22 - 000094208 _____ () [File not signed] D:\Program Files\Common Files\Research In Motion\Tunnel Manager\libxpmux.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Actions.CCAA.Shared.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.DPPE.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.EEU.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.GD.Shared.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Hotkeys.Shared.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.REG.Shared.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Source.Kit.Server.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000006144 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.WinMessages.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000006144 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.Shared.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\APM.Foundation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ATICCCom.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.Implementation.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CustomFormats.Graphics.Shared.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000397312 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000053248 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.shared.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000630784 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Dashboard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000069632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Shared.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000692224 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Wizard.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000053248 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000049152 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000749568 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000077824 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.shared.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000364544 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Wizard.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000573440 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 001708032 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager2.Graphics.Wizard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000094208 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000196608 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000204800 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000880640 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000102400 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Shared.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000409600 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Wizard.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000675840 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000081920 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Runtime.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.shared.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000397312 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000073728 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Shared.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000094208 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 000184320 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Dashboard.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Runtime.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.shared.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.Runtime.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000009728 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000073728 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.Shared.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.Shared.Private.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Wizard.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Wizard.Shared.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Dashboard.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Runtime.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Shared.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Wizard.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000010240 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.Private.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Extension.EEU.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000049152 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.Private.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000057344 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.SkinFactory.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000581632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Systemtray.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.Shared.Private.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000098304 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Private.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.XManifest.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.Private.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000036864 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Private.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.Foundation.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000106496 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.Implementation.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\NEWAEM.Foundation.dll
2010-11-05 09:46 - 2010-11-05 09:46 - 000098304 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-10-08 06:52 - 2010-10-08 06:52 - 000081920 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ADL.Foundation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000061440 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\APM.Server.dll
2010-10-07 04:16 - 2010-10-07 04:16 - 000450560 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ATIDEMGX.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000376832 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000065536 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000036864 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000053248 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 001306624 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager2.Graphics.Dashboard.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000040960 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.Private.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 001220608 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000061440 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000405504 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.dll
2007-05-02 16:44 - 2007-05-02 16:44 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0703.dll
2007-08-09 15:58 - 2007-08-09 15:58 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0706.dll
2009-06-17 04:27 - 2009-06-17 04:27 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll
2009-06-17 09:24 - 2009-06-17 09:24 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll
2008-04-03 15:29 - 2008-04-03 15:29 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll
2009-04-22 11:13 - 2009-04-22 11:13 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0805.dll
2008-12-30 10:04 - 2008-12-30 10:04 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0812.dll
2009-06-17 09:24 - 2009-06-17 09:24 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0906.dll
2009-12-08 05:49 - 2009-12-08 05:49 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0912.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000741376 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Implementation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000007168 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Private.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000708608 _____ (Advanced Micro Devices, Inc.) [File not signed] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll
2010-11-25 20:33 - 2010-11-25 20:33 - 000003584 _____ (Advanced Micro Devices, Inc.) [File not signed] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiamcsy.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000065536 _____ (Advanced Mirco Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.Dashboard.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000385024 _____ (Advanced Mirco Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000155648 _____ (Advanced Mirco Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll
2010-03-03 23:27 - 2010-03-03 23:27 - 000016384 _____ (ATI Technologies Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Foundation.dll
2009-04-22 11:13 - 2009-04-22 11:13 - 000045056 _____ (ATI Technologies Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0601.dll
2016-05-15 22:39 - 2016-05-15 22:39 - 001105920 _____ (Microsoft Corporation) [File not signed] D:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\MFC80.DLL
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\msvcp140.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\MSVCP140.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\ucrtbase.DLL
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\VCRUNTIME140.dll
2017-07-03 08:02 - 2021-10-28 21:46 - 000145408 _____ (pdfforge GmbH) [File not signed] D:\Windows\System32\pdfcmon.dll
2010-04-01 09:29 - 2010-04-01 09:29 - 001028096 _____ (Robert McNeel & Associates) [File not signed] D:\Program Files\Rhinoceros 4.0\System\RhinoShExt.dll
2019-01-17 12:27 - 2018-09-05 21:32 - 002095104 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Program Files\AVAST Software\SecureLine\libcrypto-1_1.dll
2016-07-23 12:38 - 2010-08-31 16:16 - 000071680 _____ (WinMount International Corp) [File not signed] D:\Program Files\WinMount\FastZip.dll
2016-07-23 12:38 - 2010-10-20 12:22 - 000257024 _____ (WinMount International Inc.) [File not signed] D:\Program Files\WinMount\WinMTExt.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: D:\Geologické epochy.psd:SummaryInformation [43]
AlternateDataStreams: D:\Geologické epochy.psd:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: D:\ProgramData\TEMP:87C79266 [250]
AlternateDataStreams: D:\ProgramData\TEMP:A31FAD21 [183]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

HKU\S-1-5-21-1540482146-1299034176-466505332-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {0A8141B0-BF64-4776-8F60-A01F27FAE797} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {0E187198-2A48-4B0E-9DB0-9513B1A09914} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {433B194A-DFD5-4AA0-80D7-3750386D11DA} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {52C08E28-9218-49FF-934B-4C807414FA63} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {75594041-EB71-4644-8C31-6E6BCF1A99FA} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {92310A37-410A-4A48-800B-82F866A035A8} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {CBFCEF11-FAC7-41AE-84B5-B54D5FCB901B} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {E062D435-DAC5-4F76-9AC3-552AB601E2AD} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {E09F3787-72E1-4043-98E6-85E464E70589} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_29530
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Program Files\Java\jre1.8.0_311\bin\ssv.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> D:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-14] (Google Inc -> Google Inc.)
BHO: PDF Architect 5 Helper -> {AEA429F3-D2D4-4BD7-A03E-5357DA017733} -> D:\Program Files\PDF Architect 5\creator-ie-helper.dll [2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Program Files\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-14] (Google Inc -> Google Inc.)
Toolbar: HKLM - PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - D:\Program Files\PDF Architect 5\creator-ie-plugin.dll [2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
Toolbar: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-14] (Google Inc -> Google Inc.)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2019-01-05 11:36 - 000000824 _____ D:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> D:\Program Files\Common Files\Oracle\Java\javapath;D:\WinAVR-20100110\bin;D:\WinAVR-20100110\utils\bin;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;D:\Program Files\ATI Technologies\ATI.ACE\Core-Static;D:\Program Files\Microchip\MPLAB C32 Suite\bin
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\Control Panel\Desktop\\Wallpaper -> D:\Users\Paul\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.1.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupfolder: D:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma Loader.exe.lnk => D:\Windows\pss\Adobe Gamma Loader.exe.lnk.CommonStartup
MSCONFIG\startupreg: ArcSoft Connection Service => D:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
MSCONFIG\startupreg: CCleaner Smart Cleaning => "D:\Program Files\CCleaner\ccleaner.exe" /MONITOR
MSCONFIG\startupreg: com.squirrel.Teams.Teams => D:\Users\Paul\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
MSCONFIG\startupreg: cz.seznam.software.szndesktop => "D:\Users\Paul\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
MSCONFIG\startupreg: DriverMax_RESTART => "D:\Program Files\Innovative Solutions\DriverMax\drivermax.exe" -RESTART
MSCONFIG\startupreg: LightScribe Control Panel => D:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
MSCONFIG\startupreg: Opera Browser Assistant => D:\Program Files\Opera\assistant\browser_assistant.exe
MSCONFIG\startupreg: RIM PeerManager => "D:\Program Files\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
MSCONFIG\startupreg: RIMBBLaunchAgent.exe => D:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
MSCONFIG\startupreg: seznam-listicka-distribuce => "D:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{07690A63-6F9A-4E1C-A16A-45C3A48EC23D}D:\openarena-0.8.8\openarena.exe] => (Allow) D:\openarena-0.8.8\openarena.exe () [File not signed]
FirewallRules: [UDP Query User{B0BAD57B-390A-4216-AF73-A334EAFAEE60}D:\openarena-0.8.8\openarena.exe] => (Allow) D:\openarena-0.8.8\openarena.exe () [File not signed]
FirewallRules: [TCP Query User{32243AC1-23FB-4981-BBBC-62679055BC92}D:\openarena-0.8.8\openarena.exe] => (Allow) D:\openarena-0.8.8\openarena.exe () [File not signed]
FirewallRules: [UDP Query User{ADFE3A90-2A4E-48D8-9AAA-305B36D75E4C}D:\openarena-0.8.8\openarena.exe] => (Allow) D:\openarena-0.8.8\openarena.exe () [File not signed]
FirewallRules: [TCP Query User{731EB03E-F5D9-47C0-8DFB-8EC25DA3E8C2}D:\stronghold crusader\stronghold crusader.exe] => (Allow) D:\stronghold crusader\stronghold crusader.exe (Firefly Studios Limited -> )
FirewallRules: [UDP Query User{9C74AAF2-8D34-4CE8-87A4-3CEB55D95699}D:\stronghold crusader\stronghold crusader.exe] => (Allow) D:\stronghold crusader\stronghold crusader.exe (Firefly Studios Limited -> )
FirewallRules: [TCP Query User{DA62E754-6DB6-4397-8431-1F7DFECB95C2}D:\windows\system32\dplaysvr.exe] => (Allow) D:\windows\system32\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{402D64C0-18E5-400D-89B0-A414118C7E20}D:\windows\system32\dplaysvr.exe] => (Allow) D:\windows\system32\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{F6E84859-83A0-4394-8431-C58A616B475A}D:\stronghold crusader\stronghold crusader.exe] => (Allow) D:\stronghold crusader\stronghold crusader.exe (Firefly Studios Limited -> )
FirewallRules: [UDP Query User{D5392AF1-2E96-44F7-88D9-5552477DF31E}D:\stronghold crusader\stronghold crusader.exe] => (Allow) D:\stronghold crusader\stronghold crusader.exe (Firefly Studios Limited -> )
FirewallRules: [{7B6E47FD-E929-4C5A-B47D-A39F761401B4}] => (Allow) D:\Westwood\Dune2000\DUNE2000.DAT (Intelligent Games) [File not signed]
FirewallRules: [{28437B86-2C32-4C6E-9B82-B4E25A794E02}] => (Allow) D:\Westwood\Dune2000\DUNE2000.DAT (Intelligent Games) [File not signed]
FirewallRules: [{1A963838-4470-437B-8D7B-11F264262CD8}] => (Allow) D:\Westwood\Dune2000\DUNE2000.DAT (Intelligent Games) [File not signed]
FirewallRules: [{4CA04C4E-5914-4500-9D57-564D3749BF60}] => (Allow) D:\Westwood\Dune2000\DUNE2000.DAT (Intelligent Games) [File not signed]
FirewallRules: [{7A3805A2-DCEB-4010-89F2-E8B7A16C48F8}] => (Allow) D:\Program Files\Real Time Analyzer\rta.exe => No File
FirewallRules: [{F6BC3170-37D8-4DFE-B415-505C180C9ED3}] => (Allow) D:\Program Files\Real Time Analyzer\rta.exe => No File
FirewallRules: [{235BC2DE-006F-4DBF-A073-E10E3BE05386}] => (Allow) D:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{6DFBCFFE-2DBC-496C-B220-080D6BF8DF95}] => (Allow) D:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{B0A0731E-5192-4018-9BE3-D355406D2B32}] => (Allow) D:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{70D55F62-6F17-426B-88D8-744CC55EB68A}] => (Allow) D:\Program Files\WindroyeBox\WindroyeBoxHD.exe => No File
FirewallRules: [{BB1F2038-1130-4CB1-A6B5-9A8761B704DC}] => (Allow) D:\Program Files\WindroyeBox\WindroyeBoxHD.exe => No File
FirewallRules: [{A8B4C56A-0D01-4439-A7A6-FCE98C117A66}] => (Allow) D:\Program Files\Windroye\Windroye.exe => No File
FirewallRules: [{67E8F37C-F767-4EC6-AD0E-CBFE8E8DCD2A}] => (Allow) D:\Program Files\Windroye\Windroye.exe => No File
FirewallRules: [{B6C6138D-7019-484E-80C2-D4AFA258940A}] => (Allow) LPort=4481
FirewallRules: [{361596B0-EBDA-4B9D-8DFC-48E16C74D7D2}] => (Allow) LPort=4481
FirewallRules: [{ED7FD584-303F-4A7A-A204-3A24DA2C03EC}] => (Allow) LPort=4482
FirewallRules: [{2D946A27-EFDF-4B0A-8AE7-87451CACAB27}] => (Allow) LPort=4482
FirewallRules: [{817651EE-8947-489B-85F2-F6735283A691}] => (Allow) D:\Program Files\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe (Research In Motion -> Research In Motion)
FirewallRules: [{987B3511-4AC0-40C3-BF88-1D7665D63700}] => (Allow) D:\Program Files\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe (Research In Motion -> Research In Motion)
FirewallRules: [{23E800C2-3696-4D04-9CD2-E758A4C69057}] => (Allow) tunmgr.exe => No File
FirewallRules: [{E8A8AD85-B574-499B-AD26-27D52A910474}] => (Allow) tunmgr.exe => No File
FirewallRules: [{DF9D147A-CA55-4A5D-88F7-01E07A69A7D7}] => (Allow) mDNSResponder.exe => No File
FirewallRules: [{56E21207-FE60-494C-8FED-1F76475CF3EE}] => (Allow) mDNSResponder.exe => No File
FirewallRules: [{A9D51181-4D3C-4E11-9544-9E6247BE97AB}] => (Allow) D:\Program Files\Common Files\Research In Motion\nginx\nginx.exe (BlackBerry Ltd. -> )
FirewallRules: [{DEA3752C-4349-4A3A-99FD-97CC1A0C2ADC}] => (Allow) D:\Program Files\BlackBerry\BlackBerry Blend\desktopinvokeproxy.exe (BlackBerry Ltd. -> BlackBerry Limited. All rights reserved)
FirewallRules: [TCP Query User{21872AD0-A7B8-4F6B-8EC7-1FB842187BBE}D:\program files\common files\research in motion\tunnel manager\peermanager.exe] => (Block) D:\program files\common files\research in motion\tunnel manager\peermanager.exe (BlackBerry Ltd. -> BlackBerry Limited)
FirewallRules: [UDP Query User{33C65EFB-9195-4905-8B34-DD4D3320053E}D:\program files\common files\research in motion\tunnel manager\peermanager.exe] => (Block) D:\program files\common files\research in motion\tunnel manager\peermanager.exe (BlackBerry Ltd. -> BlackBerry Limited)
FirewallRules: [TCP Query User{F97D57AB-66DB-41DB-9418-7C050FB00D0C}D:\program files\common files\research in motion\tunnel manager\peermanager.exe] => (Block) D:\program files\common files\research in motion\tunnel manager\peermanager.exe (BlackBerry Ltd. -> BlackBerry Limited)
FirewallRules: [UDP Query User{ED0C974D-44F9-470C-9447-175F8063A936}D:\program files\common files\research in motion\tunnel manager\peermanager.exe] => (Block) D:\program files\common files\research in motion\tunnel manager\peermanager.exe (BlackBerry Ltd. -> BlackBerry Limited)
FirewallRules: [{D93767E1-940C-469A-ABDA-7FA34163EFCA}] => (Allow) D:\Program Files\Opera\75.0.3969.243\opera.exe => No File
FirewallRules: [{B2A21E2E-7617-4845-ABF0-A48DB0667067}] => (Allow) D:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6FB363D2-F386-4B6B-9663-EFCB24976AFA}] => (Allow) D:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) [File not signed]
FirewallRules: [{A1C80AA7-E955-4AFA-8996-710BBBCC5182}] => (Allow) D:\Program Files\Opera\80.0.4170.63\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{C29ED58D-CA3F-4552-AFDC-1FC3ABAC26E8}] => (Block) D:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5055B2B3-D07E-4919-998B-CDAB99B5B9BC}] => (Block) D:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8F22446E-8A19-4006-9432-45D9516F5BF1}] => (Allow) d:\program files\opera\80.0.4170.72\opera.exe (Opera Software AS -> Opera Software)

==================== Restore Points =========================

02-07-2021 12:43:17 Naplánovaný kontrolní bod
01-08-2021 17:16:47 Removed Nero Burning ROM 2014.
01-08-2021 17:32:39 Removed LightScribe System Software.
25-10-2021 15:08:51 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============

Name: staport
Description: staport
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: staport
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: ========================

Application errors:
==================
Error: (11/13/2021 01:40:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 01:40:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 01:40:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 01:40:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 01:40:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 01:40:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 01:40:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 01:40:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

System errors:
=============
Error: (11/13/2021 02:02:33 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/13/2021 01:39:15 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 40. Stav interní chyby: 252

Error: (11/13/2021 01:39:14 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: Byla vygenerována následující výstraha o závažné chybě: 40. Stav interní chyby: 252

Error: (11/13/2021 01:35:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba %1!s! Update (avast) neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (11/13/2021 01:33:48 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
staport

Error: (11/13/2021 01:33:31 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Avast Cleanup neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (11/10/2021 11:16:35 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Windows Update přestala během spouštění reagovat.

Error: (11/10/2021 11:12:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba %1!s! Update (avast) neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 1104 06/14/2007
Motherboard: ASUSTeK Computer INC. P5LD2-SE
Processor: Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz
Percentage of memory in use: 90%
Total physical RAM: 2047.18 MB
Available physical RAM: 189.78 MB
Total Virtual: 4094.36 MB
Available Virtual: 1560.39 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:38.29 GB) (Free:16.76 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Datový) (Fixed) (Total:465.75 GB) (Free:256.13 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 38.3 GB) (Disk ID: 989C989C)
Partition 1: (Active) - (Size=38.3 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: B89D8E20)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=0F Extended)

==================== End of Addition.txt =======================

#2 Příspěvek od **Rudy** » 13 lis 2021 16:42

Zdravím!
Avast by bylo nejlépe přeinstalovat. Jinak spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

rokony · #3 Příspěvek od **rokony** » 13 lis 2021 17:08

# -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-10-26.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 11-13-2021
# Duration: 00:00:27
# OS: Windows 7 Home Premium
# Cleaned: 10
# Failed: 0

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted D:\Program Files\Seznam.cz
Deleted D:\Users\Paul\AppData\Roaming\DriverFinder
Deleted D:\Users\Paul\AppData\Roaming\Seznam.cz

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SeznamInstall
Deleted HKCU\Software\Mozilla\NativeMessagingHosts\sznpp_nm
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Opera Browser Assistant
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\cz.seznam.software.szndesktop
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\seznam-listicka-distribuce

***** [ Chromium (and derivatives) ] *****

Deleted Seznam doplněk - Email - bgjpfhpjcgdppjbgnpnjllokbmcdllig

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2206 octets] - [13/11/2021 15:42:22]

########## EOF - D:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

#4 Příspěvek od **Rudy** » 13 lis 2021 17:51

Dejte nové logy FRST+Addition.

rokony · #5 Příspěvek od **rokony** » 13 lis 2021 18:11

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-11-2021
Ran by Paul (administrator) on HORNÍ (13-11-2021 18:00:42)
Running from D:\Users\Paul\Desktop
Loaded Profiles: Paul
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Default browser: "D:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices Inc.) [File not signed] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ArcSoft, Inc. -> ArcSoft Inc.) D:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(ATI Technologies Inc.) [File not signed] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe <3>
(AVAST Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\SecureLine\Vpn.exe <2>
(AVAST Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
(BlackBerry Ltd. -> Apple Inc.) D:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe
(BlackBerry Ltd. -> BlackBerry Limited) D:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
(BlackBerry Ltd. -> BlackBerry Limited) D:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
(Google LLC -> Google LLC) [File not signed] D:\Program Files\Google\Chrome\Application\chrome.exe <13>
(Microsoft Windows Hardware Compatibility Publisher -> AMD) D:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) D:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.) D:\Program Files\Analog Devices\Core\smax4pnp.exe
(Oracle America, Inc. -> Oracle Corporation) D:\Program Files\Common Files\Java\Java Update\jusched.exe
(pdfforge GmbH -> Â© pdfforge GmbH.) D:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
(pdfforge GmbH -> pdfforge GmbH) D:\Program Files\PDF Architect 5\creator-ws.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => D:\Program Files\AVAST Software\Avast\AvLaunch.exe [123672 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [StartCCC] => D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-11-25] (Advanced Micro Devices, Inc.) [File not signed]
HKLM\...\Run: [ATICustomerCare] => D:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [311296 2010-05-04] (Advanced Micro Devices, Inc.) [File not signed]
HKLM\...\Run: [SoundMAXPnP] => D:\Program Files\Analog Devices\Core\smax4pnp.exe [868352 2006-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
HKLM\...\Run: [TuneupUI.exe] => "D:\Program Files\Avast Software\Cleanup\TuneupUI.exe" /nogui (No File)
HKLM\...\Run: [SunJavaUpdateSched] => D:\Program Files\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\...\Run: [Paul] => explorer.exe hxxp://exinariuminix.info (No File) <==== ATTENTION
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\...\MountPoints2: {3e16c316-cb70-11ea-8da8-001bfc7ae341} - D:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\Start.exe
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\...\MountPoints2: {5c9ddade-19b3-11e6-9501-806e6f6e6963} - E:\setup.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => D:\Windows\System32\SPReview\SPReview.exe [280576 2016-05-24] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows NT x86\Print Processors\hpzpplhn: D:\Windows\System32\spool\prtprocs\W32X86\hpzpplhn.dll [89600 2009-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\pdfcmon: D:\Windows\system32\pdfcmon.dll [145408 2021-10-28] (pdfforge GmbH) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> D:\Program Files\AVAST Software\Browser\Application\90.0.9310.93\Installer\chrmstp.exe [2021-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> D:\Program Files\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-11-13] (Google LLC -> Google LLC) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> D:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2021-04-21] (Adobe Inc. -> Adobe Systems, Inc.)
Startup: D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2019-05-25]
ShortcutTarget: Avast SecureLine VPN.lnk -> D:\Program Files\AVAST Software\SecureLine\Vpn.exe (AVAST Software s.r.o. -> AVAST Software)
BootExecute: autocheck autochk * icarus_rvrt.exe
GroupPolicy: Restriction ? <==== ATTENTION
Policies: D:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1103384F-650A-4FAF-BDF2-D40227402CCA} - System32\Tasks\{D150EB2D-B749-477B-B60B-4A7B137AD3FE} => D:\Windows\system32\pcalua.exe -a "D:\Office-2007-CZ-+-key-+-klasické-menu\Office 2007\MS office 2007 cz + key\setup.exe" -d "D:\Office-2007-CZ-+-key-+-klasické-menu\Office 2007\MS office 2007 cz + key"
Task: {27B2B6D8-FBFF-4A47-8C36-C586F63004AF} - System32\Tasks\Avast Software\Avast Cleanup BugReport => D:\Program Files\Avast Software\Cleanup\AvBugReport.exe -> --send "dumps|report" --silent --product 62 --programpath "D:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "D:\Program Files\Avast Software\Cleanup\Setup" --path "D:\ProgramData\Avast Software\Cleanup\log" --path "D:\ProgramData\Avast Software\Icarus\Logs" --guid de3927f3-91fc-4291-aa2b-ef2710de54d8
Task: {34DF9DFA-4F88-46C7-B32F-3872C97E599E} - System32\Tasks\GoogleUpdateTaskMachineCore => D:\Program Files\Google\Update\GoogleUpdate.exe [152216 2016-05-14] (Google Inc -> Google Inc.)
Task: {440D52EE-C9C7-41CA-9E8E-268C527C690B} - System32\Tasks\AvastUpdateTaskMachineCore => D:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /c (No File)
Task: {506F7A63-6E42-40D7-BBFF-5D6073CC39BE} - System32\Tasks\Avast SecureLine VPN Update => D:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe [1390472 2019-10-24] (AVAST Software s.r.o. -> AVAST Software)
Task: {62BBA638-A677-43CF-8A6B-C2FD4626C318} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => D:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1994496 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
Task: {6F696061-3C12-4221-BA92-F2055FB4E4EE} - System32\Tasks\Avast Software\Avast Cleanup Update => D:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe /update:avast-tu /silent (No File)
Task: {7D409E4F-5100-4C53-8EDF-6F18AA9E8123} - System32\Tasks\EOSv3 Scheduler onTime => D:\Users\Paul\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-06-02] (ESET, spol. s r.o. -> ESET)
Task: {8E410EA4-32B3-4F27-BD54-691E61227BE8} - System32\Tasks\AVAST Software\Avast settings backup => D:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (No File)
Task: {97EE9223-C971-42ED-93B4-355E902CBAEB} - System32\Tasks\Adobe Acrobat Update Task => D:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (No File)
Task: {9EFE7BF9-69F9-4E5F-91FC-A0696B8AEBBC} - System32\Tasks\Avast Software\Overseer => D:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1546480 2021-06-12] (Avast Software s.r.o. -> Avast Software)
Task: {A79983B7-A5A0-47FF-AE85-70238BD14EA9} - System32\Tasks\{99BE2EB5-1EA6-4432-8629-564CB0EF4DF8} => D:\Windows\system32\pcalua.exe -a D:\WinAVR-20100110\bin\avr-insight.exe -d D:\WinAVR-20100110\bin
Task: {B63B9C26-200A-44CD-91C0-DFE4D73BEA7F} - System32\Tasks\Adobe Flash Player Updater => D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-10-28] (Adobe Inc. -> Adobe)
Task: {B75FFEFC-B35A-4E21-9EDE-88B5A8143F71} - System32\Tasks\Opera scheduled Autoupdate 1463218688 => d:\program files\opera\launcher.exe [3255504 2021-10-27] (Opera Software AS -> Opera Software)
Task: {B93CEB8C-020C-4CA0-86BE-AA0C7B40457B} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => D:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1994496 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
Task: {C7957738-0FF2-4908-A5E8-56C728725BE3} - System32\Tasks\EOSv3 Scheduler onLogOn => D:\Users\Paul\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-06-02] (ESET, spol. s r.o. -> ESET)
Task: {CB77912A-92E4-4832-BD12-375F51295380} - System32\Tasks\Paul => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Paul /t REG_SZ /d "explorer.exe http://exinariuminix.info" /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Paul /t REG_SZ /d "explorer.exe hxxp://exinariuminix.info" (No File) <==== ATTENTION
Task: {CFE7D029-511D-4B16-B2E3-28BC86877C26} - System32\Tasks\GoogleUpdateTaskMachineUA => D:\Program Files\Google\Update\GoogleUpdate.exe [152216 2016-05-14] (Google Inc -> Google Inc.)
Task: {D3D8AD07-3ABB-4EC0-AA5D-7E4DD9F3EE93} - System32\Tasks\AvastUpdateTaskMachineUA => D:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /ua /installsource scheduler (No File)
Task: {D97B9FD5-32B2-4458-966D-2B137A971D82} - System32\Tasks\Avast Emergency Update => D:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4409112 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
Task: {DBB43A70-7186-4A1F-925D-AC82193E0EC0} - System32\Tasks\Opera scheduled assistant Autoupdate 1582822965 => D:\Program Files\Opera\launcher.exe [3255504 2021-10-27] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="D:\Program Files\Opera\assistant" $(Arg0)
Task: {EA371E07-1B6C-438F-A2FD-0B2F2FD723BA} - System32\Tasks\{C99291A1-F890-4962-8810-3360C88DEDD9} => D:\Windows\system32\pcalua.exe -a D:\Users\Paul\Downloads\avr8-gnu-toolchain-installer-3.5.3.90-win32.any.x86.exe -d D:\Users\Paul\Downloads

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{D6ECA6D6-AEEC-4F56-BCEA-2CB0696DDEE5}: [NameServer] 100.120.96.1
Tcpip\..\Interfaces\{E569009B-2FE4-45AC-8C3D-91D6B2DA1FAF}: [DhcpNameServer] 10.0.1.138

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: D:\Users\Paul\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-20]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.311.2 -> D:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> D:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @RIM.com/WebSLLauncher,version=1.0 -> D:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2015-03-19] (Research In Motion -> )
FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> D:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-27] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> D:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-27] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Reader -> D:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default [2021-11-13]
CHR Notifications: Default -> hxxps://17.cprmatix.com
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR NewTab: Default -> Not-active:"chrome-extension://blmojkbhnkkphngknkmgccmlenfaelkd/speeddial/html/newTab.html"
CHR Extension: (Dokumenty) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-26]
CHR Extension: (Seznam doplněk - Esko-) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2019-10-14]
CHR Extension: (Avast Passwords) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2020-02-15]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-11-13]
CHR Extension: (Platby Internetového obchodu Chrome) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKU\S-1-5-21-1540482146-1299034176-466505332-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1540482146-1299034176-466505332-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd]
CHR HKU\S-1-5-21-1540482146-1299034176-466505332-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]

Opera:
=======
OPR Profile: D:\Users\Paul\AppData\Roaming\Opera Software\Opera Stable [2021-11-13]
OPR Notifications: Opera Stable -> hxxps://jolly-me.ru
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - D:\Users\Paul\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-10-28]
OPR Extension: (Amazon Assistant Promotion) - D:\Users\Paul\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-10-27]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; D:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [109056 2009-09-28] (ArcSoft, Inc. -> ArcSoft Inc.)
S3 AdobeFlashPlayerUpdateSvc; D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-10-28] (Adobe Inc. -> Adobe)
R2 AMD External Events Utility; D:\Windows\system32\atiesrxx.exe [176128 2010-11-26] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R3 aswbIDSAgent; D:\Program Files\AVAST Software\Avast\aswidsagent.exe [7532624 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [626968 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; D:\Program Files\AVAST Software\Avast\afwServ.exe [1564952 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; D:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [407832 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; D:\Program Files\AVAST Software\Browser\Application\90.0.9310.93\elevation_service.exe [1173256 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; D:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-12] (Avast Software s.r.o. -> AVAST Software)
R3 BlackBerry Device Manager; D:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [588024 2014-10-31] (BlackBerry Ltd. -> BlackBerry Limited)
S3 GoogleChromeElevationService; D:\Program Files\Google\Chrome\Application\95.0.4638.69\elevation_service.exe [1245016 2021-10-28] (Google LLC -> Google LLC) [File not signed]
S3 PDF Architect 5; D:\Program Files\PDF Architect 5\ws.exe [2468128 2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 5 CrashHandler; D:\Program Files\PDF Architect 5\crash-handler-ws.exe [979744 2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 5 Creator; D:\Program Files\PDF Architect 5\creator-ws.exe [778528 2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 5 Manager; D:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985848 2017-05-16] (pdfforge GmbH -> Â© pdfforge GmbH.)
R2 Pml Driver HPZ12; D:\Windows\system32\HPZipm12.dll [52736 2009-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
R2 RIM MDNS; D:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe [396024 2015-03-19] (BlackBerry Ltd. -> Apple Inc.)
R2 RIM Tunnel Service; D:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe [1354488 2015-03-19] (BlackBerry Ltd. -> BlackBerry Limited)
R2 SecureLine; D:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [6828424 2019-10-23] (AVAST Software s.r.o. -> AVAST Software)
S3 WinDefend; D:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
S2 AdobeARMservice; "D:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe" [X]
S2 avast; "D:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X]
S3 avastm; "D:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X]
S2 CleanupPSvc; "D:\Program Files\Avast Software\Cleanup\TuneupSvc.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ADIHdAudAddService; D:\Windows\System32\drivers\ADIHdAud.sys [316928 2007-01-16] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
R3 Afc; D:\Windows\System32\drivers\Afc.sys [18688 2006-11-10] (ArcSoft, Inc. -> Arcsoft, Inc.)
R3 amdkmdag; D:\Windows\System32\DRIVERS\atikmdag.sys [6650368 2010-11-26] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 amdkmdap; D:\Windows\System32\DRIVERS\atikmpag.sys [231936 2010-11-26] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R1 aswArPot; D:\Windows\System32\drivers\aswArPot.sys [186304 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; D:\Windows\System32\drivers\aswbidsdriver.sys [312360 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; D:\Windows\System32\drivers\aswbidsh.sys [206376 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; D:\Windows\System32\drivers\aswbuniv.sys [91688 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; D:\Windows\System32\drivers\aswKbd.sys [39304 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; D:\Windows\System32\drivers\aswMonFlt.sys [154016 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; D:\Windows\System32\drivers\aswNetHub.sys [393032 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; D:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2020-03-12] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; D:\Windows\System32\drivers\aswRdr2.sys [92760 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; D:\Windows\System32\drivers\aswRvrt.sys [71920 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; D:\Windows\System32\drivers\aswSnx.sys [690144 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; D:\Windows\System32\drivers\aswSP.sys [459064 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; D:\Windows\System32\drivers\aswStm.sys [161368 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; D:\Windows\System32\DRIVERS\aswTap.sys [48152 2017-03-14] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; D:\Windows\System32\drivers\aswVmm.sys [266184 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; D:\Windows\System32\drivers\AtihdW73.sys [101392 2010-11-17] (ATI Technologies, Inc -> Advanced Micro Devices)
S3 atikmdag; D:\Windows\System32\DRIVERS\atikmdag.sys [6650368 2010-11-26] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
S3 blackberryncm; D:\Windows\System32\DRIVERS\blackberryncm6.sys [22016 2014-09-08] (Microsoft Windows Hardware Compatibility Publisher -> BlackBerry)
S3 BULKUSB; D:\Windows\System32\Drivers\BULKUSB.sys [23000 2011-09-26] (SIEMENS AG -> Windows (R) Win 7 DDK provider)
S3 cpuz134; D:\Program Files\CPUID\PC Wizard 2010\pcwiz_x32.sys [20328 2010-07-09] (CPUID -> Windows (R) Win 7 DDK provider)
S3 DLPortIO; D:\Windows\system32\DRIVERS\DLPortIO.SYS [3584 2000-06-29] () [File not signed]
R1 HWiNFO32; D:\Windows\system32\drivers\HWiNFO32.SYS [23840 2016-05-15] (Martin Malik - REALiX -> REALiX(tm))
S3 RimUsb; D:\Windows\System32\Drivers\RimUsb.sys [68608 2014-05-06] (Microsoft Windows Hardware Compatibility Publisher -> BlackBerry Limited)
R3 rimvndis; D:\Windows\System32\Drivers\rimvndis6.sys [14848 2015-03-19] (Microsoft Windows Hardware Compatibility Publisher -> BlackBerry Limited)
R3 RimVSerPort; D:\Windows\System32\DRIVERS\RimSerial.sys [35840 2012-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Ltd)
S1 staport; D:\Windows\System32\Drivers\staport.sys [39424 2021-10-28] (AVAST Software s.r.o. -> )
R2 TVicPort; D:\Windows\System32\Drivers\TVicPort.sys [14544 2005-03-30] (EnTech Taiwan) [File not signed]
R1 UimBus; D:\Windows\System32\DRIVERS\UimBus.sys [95280 2015-11-10] (Paragon Software GmbH -> )
R1 Uim_DEVIM; D:\Windows\System32\DRIVERS\uim_devim.sys [20528 2015-11-10] (Paragon Software GmbH -> )
R1 Uim_IM; D:\Windows\System32\DRIVERS\uim_im.sys [541232 2015-11-10] (Paragon Software GmbH -> )
R3 WinDriver6; D:\Windows\System32\drivers\windrvr6.sys [195424 2009-09-02] (Jungo LTD -> Jungo)
R1 WMDrive; D:\Windows\system32\drivers\WMDrive.sys [65856 2016-07-23] (Beijing KaiXin ShengZhou Technology Co., Ltd. -> WinMount International Inc) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-13 18:00 - 2021-11-13 18:02 - 000024326 _____ D:\Users\Paul\Desktop\FRST.txt
2021-11-13 16:34 - 2021-11-13 16:34 - 000570816 _____ D:\Windows\Minidump\111321-19047-01.dmp
2021-11-13 15:44 - 2021-11-13 15:44 - 000002210 _____ D:\Users\Paul\Desktop\AdwCleaner[C00].txt
2021-11-13 15:41 - 2021-11-13 15:42 - 000000000 ____D D:\AdwCleaner
2021-11-13 15:41 - 2021-11-13 15:41 - 008553680 _____ (Malwarebytes) D:\Users\Paul\Downloads\adwcleaner_8.3.0.exe
2021-11-13 13:52 - 2021-11-13 18:01 - 000000000 ____D D:\FRST
2021-11-13 13:51 - 2021-11-13 13:50 - 002019840 _____ (Farbar) D:\Users\Paul\Desktop\FRST.exe
2021-11-13 13:49 - 2021-11-13 13:50 - 002019840 _____ (Farbar) D:\Users\Paul\Downloads\FRST.exe
2021-10-28 21:45 - 2021-10-28 21:46 - 000000000 ____D D:\Program Files\PDFCreator
2021-10-28 21:45 - 2021-10-28 21:45 - 000000714 _____ D:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator.lnk
2021-10-28 21:45 - 2021-10-28 21:45 - 000000668 _____ D:\Users\Public\Desktop\PDFCreator.lnk
2021-10-28 21:42 - 2021-10-28 23:14 - 000004366 _____ D:\Windows\system32\Tasks\Adobe Flash Player Updater
2021-10-28 18:45 - 2021-10-28 18:45 - 000039424 _____ () D:\Windows\system32\Drivers\staport.sys
2021-10-28 18:44 - 2021-10-28 18:43 - 000287512 _____ (AVAST Software) D:\Windows\system32\aswBoot.exe
2021-10-28 18:44 - 2021-10-28 18:43 - 000161368 _____ (AVAST Software) D:\Windows\system32\Drivers\aswStm.sys
2021-10-28 13:00 - 2021-10-28 13:00 - 000000000 ____D D:\Program Files\Common Files\Oracle
2021-10-28 12:59 - 2021-10-28 12:59 - 000000000 ____D D:\Program Files\Common Files\Java

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-13 17:37 - 2016-05-14 10:32 - 000000000 ____D D:\Program Files\Google
2021-11-13 16:48 - 2009-07-14 05:34 - 000014016 ____H D:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-11-13 16:48 - 2009-07-14 05:34 - 000014016 ____H D:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-11-13 16:42 - 2016-05-14 10:22 - 001582262 _____ D:\Windows\system32\PerfStringBackup.INI
2021-11-13 16:42 - 2009-07-14 09:44 - 000668138 _____ D:\Windows\system32\perfh005.dat
2021-11-13 16:42 - 2009-07-14 09:44 - 000140798 _____ D:\Windows\system32\perfc005.dat
2021-11-13 16:42 - 2009-07-14 03:37 - 000000000 ____D D:\Windows\inf
2021-11-13 16:35 - 2009-07-14 05:53 - 000000006 ____H D:\Windows\Tasks\SA.DAT
2021-11-13 16:34 - 2021-08-01 17:52 - 286029245 _____ D:\Windows\MEMORY.DMP
2021-11-13 16:34 - 2016-05-29 18:46 - 000000000 ____D D:\Windows\Minidump
2021-11-13 16:29 - 2016-05-14 10:26 - 000000000 ____D D:\ProgramData\AVAST Software
2021-11-13 14:21 - 2016-05-14 11:39 - 000002176 _____ D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-11-13 14:21 - 2016-05-14 11:39 - 000002135 _____ D:\Users\Public\Desktop\Google Chrome.lnk
2021-11-13 13:38 - 2017-03-14 18:27 - 000004168 _____ D:\Windows\system32\Tasks\Avast Emergency Update
2021-10-28 23:15 - 2016-05-14 11:12 - 000003322 _____ D:\Windows\system32\Tasks\{D150EB2D-B749-477B-B60B-4A7B137AD3FE}
2021-10-28 23:15 - 2016-05-14 10:30 - 000000000 ____D D:\Windows\system32\Tasks\AVAST Software
2021-10-28 23:14 - 2021-04-24 18:39 - 000003474 _____ D:\Windows\system32\Tasks\Paul
2021-10-28 23:14 - 2021-03-15 18:16 - 000003816 _____ D:\Windows\system32\Tasks\Opera scheduled Autoupdate 1463218688
2021-10-28 23:14 - 2017-03-01 18:17 - 000003114 _____ D:\Windows\system32\Tasks\{99BE2EB5-1EA6-4432-8629-564CB0EF4DF8}
2021-10-28 23:14 - 2017-03-01 17:02 - 000003198 _____ D:\Windows\system32\Tasks\{C99291A1-F890-4962-8810-3360C88DEDD9}
2021-10-28 23:14 - 2016-05-14 10:32 - 000003376 _____ D:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-28 23:14 - 2016-05-14 10:32 - 000003248 _____ D:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-10-28 21:49 - 2016-05-14 10:37 - 000000000 ____D D:\Program Files\Opera
2021-10-28 21:48 - 2016-05-14 10:50 - 000000000 ____D D:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-10-28 21:48 - 2016-05-14 10:50 - 000000000 ____D D:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-10-28 21:48 - 2016-05-14 10:50 - 000000000 ____D D:\Program Files\WinRAR
2021-10-28 21:47 - 2018-03-25 17:25 - 000001030 _____ D:\Users\Public\Desktop\VLC media player.lnk
2021-10-28 21:46 - 2017-07-03 08:02 - 000145408 _____ (pdfforge GmbH) D:\Windows\system32\pdfcmon.dll
2021-10-28 21:42 - 2017-10-08 17:48 - 000842296 _____ (Adobe) D:\Windows\system32\FlashPlayerApp.exe
2021-10-28 21:42 - 2017-10-08 17:48 - 000175160 _____ (Adobe) D:\Windows\system32\FlashPlayerCPLApp.cpl
2021-10-28 21:41 - 2017-10-08 17:48 - 000000000 ____D D:\Windows\system32\Macromed
2021-10-28 18:50 - 2021-06-12 17:34 - 000002009 _____ D:\Users\Public\Desktop\Avast Premium Security.lnk
2021-10-28 18:45 - 2019-01-17 12:33 - 000312360 _____ (AVAST Software) D:\Windows\system32\Drivers\aswbidsdriver.sys
2021-10-28 18:45 - 2019-01-17 12:24 - 000206376 _____ (AVAST Software) D:\Windows\system32\Drivers\aswbidsh.sys
2021-10-28 18:45 - 2019-01-17 12:24 - 000091688 _____ (AVAST Software) D:\Windows\system32\Drivers\aswbuniv.sys
2021-10-28 18:43 - 2020-10-20 17:34 - 000154016 _____ (AVAST Software) D:\Windows\system32\Drivers\aswMonFlt.sys
2021-10-28 18:43 - 2020-05-01 09:20 - 000393032 _____ (AVAST Software) D:\Windows\system32\Drivers\aswNetHub.sys
2021-10-28 18:43 - 2018-11-10 13:26 - 000039304 _____ (AVAST Software) D:\Windows\system32\Drivers\aswKbd.sys
2021-10-28 18:43 - 2017-11-17 13:14 - 000186304 _____ (AVAST Software) D:\Windows\system32\Drivers\aswArPot.sys
2021-10-28 18:43 - 2016-05-14 10:30 - 000690144 _____ (AVAST Software) D:\Windows\system32\Drivers\aswSnx.sys
2021-10-28 18:43 - 2016-05-14 10:30 - 000459064 _____ (AVAST Software) D:\Windows\system32\Drivers\aswSP.sys
2021-10-28 18:43 - 2016-05-14 10:30 - 000266184 _____ (AVAST Software) D:\Windows\system32\Drivers\aswVmm.sys
2021-10-28 18:43 - 2016-05-14 10:30 - 000092760 _____ (AVAST Software) D:\Windows\system32\Drivers\aswRdr2.sys
2021-10-28 18:43 - 2016-05-14 10:30 - 000071920 _____ (AVAST Software) D:\Windows\system32\Drivers\aswRvrt.sys
2021-10-28 15:37 - 2014-11-20 17:48 - 000000000 ____D D:\Programy
2021-10-28 14:10 - 2021-06-02 18:15 - 000001199 _____ D:\Users\Paul\Desktop\ESET Online Scanner.lnk
2021-10-28 13:00 - 2020-07-25 16:53 - 000000000 ____D D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-10-28 13:00 - 2020-07-25 16:52 - 000000000 ____D D:\Program Files\Java
2021-10-28 12:57 - 2020-07-25 16:53 - 000162648 _____ (Oracle Corporation) D:\Windows\system32\WindowsAccessBridge.dll
2021-10-25 14:38 - 2020-01-04 19:16 - 000000000 ____D D:\Users\Paul\Documents\Hyperborea

==================== Files in the root of some directories ========

2017-10-08 15:04 - 2017-10-08 15:04 - 005082084 _____ (The Public) D:\Users\Paul\AppData\Roaming\Avisynth.exe
2017-10-08 15:04 - 2017-10-08 15:04 - 005243208 _____ ( ) D:\Users\Paul\AppData\Roaming\AvsP.exe
2017-10-08 15:04 - 2017-10-08 15:04 - 002169915 _____ (LIGHTNING UK!) D:\Users\Paul\AppData\Roaming\Imgburn.exe
2017-10-08 15:04 - 2017-10-08 15:04 - 001357348 _____ () D:\Users\Paul\AppData\Roaming\MatroskaSplitter.exe
2020-06-25 15:12 - 2021-01-12 19:48 - 000000616 _____ () D:\Users\Paul\AppData\Roaming\Rim.Desktop.Exception.log
2020-06-25 15:10 - 2020-06-26 18:19 - 000002245 _____ () D:\Users\Paul\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2020-06-25 15:12 - 2021-01-12 19:47 - 000000616 _____ () D:\Users\Paul\AppData\Roaming\Rim.DesktopHelper.Exception.log
2017-10-08 15:04 - 2017-10-08 15:04 - 007760687 _____ (Boraxsoft) D:\Users\Paul\AppData\Roaming\SetupGFD.exe
2017-10-08 15:04 - 2017-10-08 15:04 - 000117723 _____ () D:\Users\Paul\AppData\Roaming\yuvcodecs-1.3.exe
2020-06-25 15:14 - 2020-06-25 15:14 - 000008704 _____ () D:\Users\Paul\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2021-05-19 16:23 - 2021-05-19 16:23 - 000000000 _____ () D:\Users\Paul\AppData\Local\{13FFC920-4C8C-44FC-84A3-3CAF286DAB9A}
2021-05-09 17:00 - 2021-05-09 17:00 - 000000000 _____ () D:\Users\Paul\AppData\Local\{33800955-1D98-422E-9582-F0256B787C41}
2021-05-14 17:19 - 2021-05-14 17:19 - 000000000 _____ () D:\Users\Paul\AppData\Local\{40BBF283-08EB-49CD-BCD8-350970023F47}
2018-09-29 07:54 - 2018-09-29 07:54 - 000000000 _____ () D:\Users\Paul\AppData\Local\{54B7DF88-666B-4FDA-A981-7ED61029A11B}
2021-05-19 16:22 - 2021-05-19 16:22 - 000000000 _____ () D:\Users\Paul\AppData\Local\{6F008943-A81A-4A0A-A482-54E317E3156C}
2018-09-29 07:54 - 2018-09-29 07:54 - 000000000 _____ () D:\Users\Paul\AppData\Local\{9E61736D-F39B-4510-865C-61C28095AA45}
2021-05-14 17:19 - 2021-05-14 17:19 - 000000000 _____ () D:\Users\Paul\AppData\Local\{CDDAC471-7472-4D41-B5C0-438A3877F75A}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2021-11-13 14:59
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 09-11-2021
Ran by Paul (13-11-2021 18:03:16)
Running from D:\Users\Paul\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2016-05-14 09:17:04)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1540482146-1299034176-466505332-500 - Administrator - Disabled)
Guest (S-1-5-21-1540482146-1299034176-466505332-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1540482146-1299034176-466505332-1002 - Limited - Enabled)
Paul (S-1-5-21-1540482146-1299034176-466505332-1001 - Administrator - Enabled) => D:\Users\Paul

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
FW: Avast Antivirus (Disabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.001.20155 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 32.0.0.465 - Adobe)
Adobe Photoshop 6.0.1 CE (HKLM\...\Adobe Photoshop 6.0.1 CE) (Version: 6.0.1 - Adobe Systems, Inc.)
ArcSoft MediaImpression 2 (HKLM\...\{044197D0-BA1C-4567-A8E3-A6491A6DC4EE}) (Version: 2.0.19.573 - ArcSoft)
ATI Catalyst Install Manager (HKLM\...\{4B52E7BC-28A6-F68C-A12F-BC7581BE344C}) (Version: 3.0.804.0 - ATI Technologies, Inc.)
ATI Catalyst Registration (HKLM\...\{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}) (Version: 3.00.0000 - ATI Technologies Inc.) Hidden
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 21.1.9940.2746 - Avast Software)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 21.9.2493 - Avast Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 90.0.9310.93 - Autoři prohlížeče Avast Secure Browser)
Avast SecureLine (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 5.1.419 - AVAST Software)
AviSynth 2.6 (HKLM\...\AviSynth) (Version: 2.6.0.2 - GPL Public release.)
AVRStudio4 (HKLM\...\{D5D88F8F-FDA4-4CF4-9F3E-3F40118C2120}) (Version: 4.18.684 - Atmel)
AvsP (HKLM\...\AvsP_is1) (Version: - )
BASCOM-AVR (HKLM\...\{47F94730-ABD2-47F6-920E-EA8CDB6DD0C6}_is1) (Version: 2.0.7.1 - MCS Electronics)
BBSAK (HKLM\...\{E2B4FE1C-2CFA-47EE-A88C-A14D0FF1F0B0}) (Version: 1.9.11 - JMT Labs)
BlackBerry 10 Desktop Software (HKLM\...\{a0642dd3-1105-464b-84c8-caaf676c39c8}) (Version: 1.1.0.22 - BlackBerry)
BlackBerry Blend (HKLM\...\{1DA42C01-4ED2-4B4E-B90C-18FCBA12FC41}) (Version: 1.1.0.23 - BlackBerry Ltd.) Hidden
BlackBerry Communication Drivers (HKLM\...\{46CD5A63-0C1F-45C3-B643-CA87A17275C0}) (Version: 8.0.0.119 - BlackBerry Ltd.) Hidden
BlackBerry Desktop Software 7.1 (HKLM\...\{BE5B0450-DCCB-4FE9-93E2-3B38D88A745B}) (Version: 7.1.0.41 - Research In Motion Ltd.) Hidden
BlackBerry Desktop Software 7.1 (HKLM\...\BlackBerry_Desktop) (Version: 7.1.0.41 - Research In Motion Ltd.)
BlackBerry Device Drivers (HKLM\...\{3FB73D51-669B-4AC0-9410-CF0C451E58BF}) (Version: 8.0.0.119 - BlackBerry Ltd.) Hidden
BlackBerry Device Software Updater (HKLM\...\{E755A98B-F45F-4008-A1A5-FC4CB4D2177A}) (Version: 8.0.0.66 - Research In Motion Ltd)
BlackBerry Link (HKLM\...\{C42468F9-9812-4550-A54B-5DDB062EB10F}) (Version: 1.2.4.28 - BlackBerry) Hidden
BlackBerry Link Remover (HKLM\...\{44D65CAB-1BC8-47B7-BF5B-3EB8B6BB0276}) (Version: 1.2.4.0 - BlackBerry Ltd.) Hidden
Dune 2000 (HKLM\...\Dune 2000) (Version: - )
Dune 2000 Money Maker v1.20 (HKLM\...\Dune 2000 Money Maker v1.20) (Version: - )
elektron version 5.1.0.0 (HKLM\...\elektron 5.1.0.0_is1) (Version: - Company: Pepinator)
Elektron verze 1.5 (HKLM\...\Elektron_is1) (Version: 1.5 - )
Filtered Noise Generator 1.2 (HKLM\...\75C4D645-0101-49A6-AC1A-69DDA6998885_is1) (Version: - Timo Esser)
Frex16 (HKLM\...\Frex162017.04.04) (Version: 2017.04.04 - Ken Uzzell)
Google Chrome (HKLM\...\Google Chrome) (Version: 95.0.4638.69 - Google LLC)
Google Toolbar for Internet Explorer (HKLM\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
Haali Media Splitter (HKLM\...\HaaliMkx) (Version: - )
HD Tune Pro 5.50 (HKLM\...\HD Tune Pro_is1) (Version: - EFD Software)
Helix YUV Codecs (remove only) (HKLM\...\HelixYUVCodecs) (Version: - )
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.0.0 - LIGHTNING UK!)
Java 8 Update 311 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
JDS6600 1.00 (HKLM\...\JDS6600 1.00) (Version: 1.00 - JUN CE)
KMPlayer (remove only) (HKLM\...\The KMPlayer) (Version: 4.1.3.3 - PandoraTV)
LJConfig (HKLM\...\{53F396C7-269B-42F5-933D-7EDA67D9A048}) (Version: 1.2 - VicTech Software)
Manager (HKLM\...\{8DED36D9-54D6-4127-A112-5A1BA1CDD66B}) (Version: 5.0.26.33533 - 2017 pdfforge GmbH. All rights reserved) Hidden
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
mini Ring Core Calculator 1.2 (HKLM\...\minirk12_is1) (Version: 1.2 - DL5SWB)
MPLAB Tools v8.90 (HKLM\...\{4BFBFE90-75A0-4728-8625-9776B82C99B3}) (Version: 8.90 - Microchip Technology Inc.) Hidden
MPLAB Tools v8.90 (HKLM\...\InstallShield_{4BFBFE90-75A0-4728-8625-9776B82C99B3}) (Version: 8.90 - Microchip Technology Inc.)
Multi Tone Generator (HKLM\...\Multi Tone Generator_is1) (Version: 1.4 - Timo Esser)
OpenAL (HKLM\...\OpenAL) (Version: - )
Opera Stable 80.0.4170.72 (HKLM\...\Opera 80.0.4170.72) (Version: 80.0.4170.72 - Opera Software)
Paragon Hard Disk Manager™ 15 Professional (HKLM\...\{1E104AF0-EA49-11DE-AC07-005056C00008}) (Version: 90.00.0003 - Paragon Software)
PC Wizard 2010.1.96 (HKLM\...\PC Wizard 2010_is1) (Version: - CPUID)
PDF Architect 5 Create Module (HKLM\...\{D4357D67-F66E-4FB0-8040-67E1045A5C54}) (Version: 5.0.24.33400 - pdfforge GmbH) Hidden
PDF Architect 5 Edit Module (HKLM\...\{D111BC40-7196-4A2C-8ED7-992D36990591}) (Version: 5.0.24.33400 - pdfforge GmbH) Hidden
PDF Architect 5 View Module (HKLM\...\{0247CCDF-4FAF-4AB8-A6C7-F2A63A306E0E}) (Version: 5.0.24.33400 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{90AD48B3-56D7-46DB-8A6E-1DDD6939BBD3}) (Version: 4.4.0 - pdfforge GmbH)
PonyProg2000 v2.07c (HKLM\...\PonyProg2000_is1) (Version: 2.07c - LancOS)
Rhinoceros 4.0 (HKLM\...\{5C2CBFFD-FC3B-4AA9-993B-CE2B8DA25B87}) (Version: 4.0.20118 - McNeel & Associates)
Rhinoceros 4.0 SR8 (HKLM\...\{95E1E426-EE9E-4F68-8F02-58A5A09B38F3}) (Version: 4.0.50401 - Robert McNeel & Associates)
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 6.10.1.6110 - Analog Devices)
Test Tone Generator 4.5 (HKLM\...\A9CD4C7D-6D93-4B56-A226-1D28DB060A87_is1) (Version: - Timo Esser)
The Lord of the Rings FREE Trial (HKLM\...\{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}) (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
Tisk Obalek 3.2.2.7 (HKLM\...\Tisk Obalek_is1) (Version: 3.2.2.7 - Mgr. Radovan Kraus)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
WavePad Sound Editor (HKLM\...\WavePad) (Version: 7.05 - NCH Software)
Westwood Shared Internet Components (HKLM\...\WOLAPI) (Version: - )
WinAVR 20100110 (remove only) (HKLM\...\WinAVR-20100110) (Version: 20100110 - )
WinHTTrack Website Copier 3.49-2 (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.49.2 - HTTrack)
WinMount V3.4.1020 (HKLM\...\WinMount_is1) (Version: 3.4.1020 - WinMount)
WinPic (HKLM\...\WinPic_is1) (Version: - Wolfgang Buescher (DL4YHF))
WinRAR 6.02 (32-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
WMV9/VC-1 Video Playback (HKLM\...\{DFB92E80-F614-8710-37BD-E5091D241B90}) (Version: 1.0.51125.2159 - ATI Technologies Inc.) Hidden

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1540482146-1299034176-466505332-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> D:\Users\Paul\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20339.4\x86\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-28] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [MountOverlayIcon] -> {0F49CF41-FD97-4942-9F2A-35E8B489E7FB} => D:\Program Files\WinMount\WinMTExt.dll [2010-10-20] (WinMount International Inc.) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PDFArchitect5_ManagerExt] -> {00B7B69F-6774-4906-9C7F-7D117A3644A9} => D:\Program Files\PDF Architect 5\creator-context-menu.dll [2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => D:\Program Files\PDFCreator\PDFCreatorShell.DLL [2021-08-26] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [RhinoShExt] -> {C81DCBCA-8AE2-41FC-9C39-78B160393210} => D:\Program Files\Rhinoceros 4.0\System\RhinoShExt.dll [2010-04-01] (Robert McNeel & Associates) [File not signed]
ContextMenuHandlers1: [ShlExtMenu] -> {231B20E6-A4F5-456E-984D-BE082084A168} => D:\Program Files\WinMount\WinMTExt.dll [2010-10-20] (WinMount International Inc.) [File not signed]
ContextMenuHandlers1: [WinMTExt] -> {231B20E6-A4F5-456E-984D-BE082084A168} => D:\Program Files\WinMount\WinMTExt.dll [2010-10-20] (WinMount International Inc.) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [WinMTExt] -> {231B20E6-A4F5-456E-984D-BE082084A168} => D:\Program Files\WinMount\WinMTExt.dll [2010-10-20] (WinMount International Inc.) [File not signed]
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [WinMTExt] -> {231B20E6-A4F5-456E-984D-BE082084A168} => D:\Program Files\WinMount\WinMTExt.dll [2010-10-20] (WinMount International Inc.) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll [2010-11-25] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.i420] => D:\Windows\system32\i420vfw.dll [83456 2010-11-03] (www.helixcommunity.org) [File not signed]
HKLM\...\Drivers32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32: [VIDC.VP80] => vp8vfw.dll
HKLM\...\Drivers32: [vidc.yv12] => D:\Windows\system32\yv12vfw.dll [83456 2010-11-03] (www.helixcommunity.org) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: D:\Users\Paul\Favorites\NCH Software Download Site.lnk -> hxxp://www.nch.com.au/index.htm
Shortcut: D:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Frex16\install_tools.lnk -> D:\Program Files\Frex16\install_tools.bat ()

==================== Loaded Modules (Whitelisted) =============

2009-01-20 12:51 - 2009-01-20 12:51 - 000007168 _____ () [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atixclib.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 000270336 _____ () [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2015-03-19 11:22 - 2015-03-19 11:22 - 000094208 _____ () [File not signed] D:\Program Files\Common Files\Research In Motion\Tunnel Manager\libxpmux.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Actions.CCAA.Shared.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.DPPE.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.EEU.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.GD.Shared.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Hotkeys.Shared.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.REG.Shared.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Source.Kit.Server.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000006144 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.WinMessages.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000006144 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.Shared.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\APM.Foundation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ATICCCom.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.Implementation.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CustomFormats.Graphics.Shared.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000397312 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000053248 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.shared.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000630784 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Dashboard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000069632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Shared.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000692224 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Wizard.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000053248 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000049152 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000749568 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000077824 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.shared.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000364544 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Wizard.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000573440 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 001708032 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager2.Graphics.Wizard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000094208 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000196608 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000204800 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000880640 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000102400 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Shared.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000409600 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Wizard.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000675840 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000081920 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Runtime.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.shared.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000397312 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000073728 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Shared.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000094208 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 000184320 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Dashboard.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Runtime.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.shared.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.Runtime.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000009728 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000073728 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.Shared.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.Shared.Private.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Wizard.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Wizard.Shared.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Dashboard.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Runtime.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Shared.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Wizard.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000010240 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.Private.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Extension.EEU.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000049152 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.Private.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000057344 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.SkinFactory.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000581632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Systemtray.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.Shared.Private.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000098304 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Private.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.XManifest.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.Private.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000036864 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Private.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.Foundation.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000106496 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.Implementation.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\NEWAEM.Foundation.dll
2010-11-05 09:46 - 2010-11-05 09:46 - 000098304 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-10-08 06:52 - 2010-10-08 06:52 - 000081920 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ADL.Foundation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000061440 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\APM.Server.dll
2010-10-07 04:16 - 2010-10-07 04:16 - 000450560 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ATIDEMGX.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000376832 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000065536 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000036864 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000053248 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 001306624 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager2.Graphics.Dashboard.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000040960 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.Private.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 001220608 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000061440 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000405504 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.dll
2007-05-02 16:44 - 2007-05-02 16:44 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0703.dll
2007-08-09 15:58 - 2007-08-09 15:58 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0706.dll
2009-06-17 04:27 - 2009-06-17 04:27 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll
2009-06-17 09:24 - 2009-06-17 09:24 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll
2008-04-03 15:29 - 2008-04-03 15:29 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll
2009-04-22 11:13 - 2009-04-22 11:13 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0805.dll
2008-12-30 10:04 - 2008-12-30 10:04 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0812.dll
2009-06-17 09:24 - 2009-06-17 09:24 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0906.dll
2009-12-08 05:49 - 2009-12-08 05:49 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0912.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000741376 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Implementation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000007168 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Private.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000065536 _____ (Advanced Mirco Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.Dashboard.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000385024 _____ (Advanced Mirco Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000155648 _____ (Advanced Mirco Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll
2010-03-03 23:27 - 2010-03-03 23:27 - 000016384 _____ (ATI Technologies Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Foundation.dll
2009-04-22 11:13 - 2009-04-22 11:13 - 000045056 _____ (ATI Technologies Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0601.dll
2021-11-13 14:19 - 2021-10-28 03:00 - 151033688 _____ (Google LLC -> ) [File not signed] D:\Program Files\Google\Chrome\Application\95.0.4638.69\chrome.dll
2021-11-13 14:20 - 2021-10-28 03:00 - 000358232 _____ (Google LLC -> ) [File not signed] D:\Program Files\Google\Chrome\Application\95.0.4638.69\libegl.dll
2021-11-13 14:20 - 2021-10-28 03:00 - 006853464 _____ (Google LLC -> ) [File not signed] D:\Program Files\Google\Chrome\Application\95.0.4638.69\libglesv2.dll
2021-11-13 14:20 - 2021-10-28 03:00 - 003850584 _____ (Google LLC -> ) [File not signed] D:\Program Files\Google\Chrome\Application\95.0.4638.69\vk_swiftshader.dll
2021-11-13 14:20 - 2021-10-28 03:00 - 000639832 _____ (Google LLC -> ) [File not signed] D:\Program Files\Google\Chrome\Application\95.0.4638.69\vulkan-1.dll
2021-11-13 14:20 - 2021-10-28 03:00 - 000957784 _____ (Google LLC -> Google LLC) [File not signed] D:\Program Files\Google\Chrome\Application\95.0.4638.69\chrome_elf.dll
2016-05-15 22:39 - 2016-05-15 22:39 - 001105920 _____ (Microsoft Corporation) [File not signed] D:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\MFC80.DLL
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\msvcp140.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\MSVCP140.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\ucrtbase.DLL
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\VCRUNTIME140.dll
2017-07-03 08:02 - 2021-10-28 21:46 - 000145408 _____ (pdfforge GmbH) [File not signed] D:\Windows\System32\pdfcmon.dll
2010-04-01 09:29 - 2010-04-01 09:29 - 001028096 _____ (Robert McNeel & Associates) [File not signed] D:\Program Files\Rhinoceros 4.0\System\RhinoShExt.dll
2019-01-17 12:27 - 2018-09-05 21:32 - 002095104 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Program Files\AVAST Software\SecureLine\libcrypto-1_1.dll
2016-07-23 12:38 - 2010-10-20 12:22 - 000257024 _____ (WinMount International Inc.) [File not signed] D:\Program Files\WinMount\WinMTExt.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: D:\Geologické epochy.psd:SummaryInformation [43]
AlternateDataStreams: D:\Geologické epochy.psd:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: D:\ProgramData\TEMP:87C79266 [250]
AlternateDataStreams: D:\ProgramData\TEMP:A31FAD21 [183]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

HKU\S-1-5-21-1540482146-1299034176-466505332-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {0A8141B0-BF64-4776-8F60-A01F27FAE797} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {0E187198-2A48-4B0E-9DB0-9513B1A09914} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {433B194A-DFD5-4AA0-80D7-3750386D11DA} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {52C08E28-9218-49FF-934B-4C807414FA63} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {75594041-EB71-4644-8C31-6E6BCF1A99FA} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {92310A37-410A-4A48-800B-82F866A035A8} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {CBFCEF11-FAC7-41AE-84B5-B54D5FCB901B} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {E062D435-DAC5-4F76-9AC3-552AB601E2AD} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {E09F3787-72E1-4043-98E6-85E464E70589} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_29530
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Program Files\Java\jre1.8.0_311\bin\ssv.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> D:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-14] (Google Inc -> Google Inc.)
BHO: PDF Architect 5 Helper -> {AEA429F3-D2D4-4BD7-A03E-5357DA017733} -> D:\Program Files\PDF Architect 5\creator-ie-helper.dll [2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Program Files\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-14] (Google Inc -> Google Inc.)
Toolbar: HKLM - PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - D:\Program Files\PDF Architect 5\creator-ie-plugin.dll [2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
Toolbar: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-14] (Google Inc -> Google Inc.)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2019-01-05 11:36 - 000000824 _____ D:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> D:\Program Files\Common Files\Oracle\Java\javapath;D:\WinAVR-20100110\bin;D:\WinAVR-20100110\utils\bin;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;D:\Program Files\ATI Technologies\ATI.ACE\Core-Static;D:\Program Files\Microchip\MPLAB C32 Suite\bin
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\Control Panel\Desktop\\Wallpaper -> D:\Users\Paul\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.1.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupfolder: D:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma Loader.exe.lnk => D:\Windows\pss\Adobe Gamma Loader.exe.lnk.CommonStartup
MSCONFIG\startupreg: ArcSoft Connection Service => D:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
MSCONFIG\startupreg: CCleaner Smart Cleaning => "D:\Program Files\CCleaner\ccleaner.exe" /MONITOR
MSCONFIG\startupreg: com.squirrel.Teams.Teams => D:\Users\Paul\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
MSCONFIG\startupreg: DriverMax_RESTART => "D:\Program Files\Innovative Solutions\DriverMax\drivermax.exe" -RESTART
MSCONFIG\startupreg: LightScribe Control Panel => D:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
MSCONFIG\startupreg: RIM PeerManager => "D:\Program Files\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
MSCONFIG\startupreg: RIMBBLaunchAgent.exe => D:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{07690A63-6F9A-4E1C-A16A-45C3A48EC23D}D:\openarena-0.8.8\openarena.exe] => (Allow) D:\openarena-0.8.8\openarena.exe () [File not signed]
FirewallRules: [UDP Query User{B0BAD57B-390A-4216-AF73-A334EAFAEE60}D:\openarena-0.8.8\openarena.exe] => (Allow) D:\openarena-0.8.8\openarena.exe () [File not signed]
FirewallRules: [TCP Query User{32243AC1-23FB-4981-BBBC-62679055BC92}D:\openarena-0.8.8\openarena.exe] => (Allow) D:\openarena-0.8.8\openarena.exe () [File not signed]
FirewallRules: [UDP Query User{ADFE3A90-2A4E-48D8-9AAA-305B36D75E4C}D:\openarena-0.8.8\openarena.exe] => (Allow) D:\openarena-0.8.8\openarena.exe () [File not signed]
FirewallRules: [TCP Query User{731EB03E-F5D9-47C0-8DFB-8EC25DA3E8C2}D:\stronghold crusader\stronghold crusader.exe] => (Allow) D:\stronghold crusader\stronghold crusader.exe (Firefly Studios Limited -> )
FirewallRules: [UDP Query User{9C74AAF2-8D34-4CE8-87A4-3CEB55D95699}D:\stronghold crusader\stronghold crusader.exe] => (Allow) D:\stronghold crusader\stronghold crusader.exe (Firefly Studios Limited -> )
FirewallRules: [TCP Query User{DA62E754-6DB6-4397-8431-1F7DFECB95C2}D:\windows\system32\dplaysvr.exe] => (Allow) D:\windows\system32\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{402D64C0-18E5-400D-89B0-A414118C7E20}D:\windows\system32\dplaysvr.exe] => (Allow) D:\windows\system32\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{F6E84859-83A0-4394-8431-C58A616B475A}D:\stronghold crusader\stronghold crusader.exe] => (Allow) D:\stronghold crusader\stronghold crusader.exe (Firefly Studios Limited -> )
FirewallRules: [UDP Query User{D5392AF1-2E96-44F7-88D9-5552477DF31E}D:\stronghold crusader\stronghold crusader.exe] => (Allow) D:\stronghold crusader\stronghold crusader.exe (Firefly Studios Limited -> )
FirewallRules: [{7B6E47FD-E929-4C5A-B47D-A39F761401B4}] => (Allow) D:\Westwood\Dune2000\DUNE2000.DAT (Intelligent Games) [File not signed]
FirewallRules: [{28437B86-2C32-4C6E-9B82-B4E25A794E02}] => (Allow) D:\Westwood\Dune2000\DUNE2000.DAT (Intelligent Games) [File not signed]
FirewallRules: [{1A963838-4470-437B-8D7B-11F264262CD8}] => (Allow) D:\Westwood\Dune2000\DUNE2000.DAT (Intelligent Games) [File not signed]
FirewallRules: [{4CA04C4E-5914-4500-9D57-564D3749BF60}] => (Allow) D:\Westwood\Dune2000\DUNE2000.DAT (Intelligent Games) [File not signed]
FirewallRules: [{7A3805A2-DCEB-4010-89F2-E8B7A16C48F8}] => (Allow) D:\Program Files\Real Time Analyzer\rta.exe => No File
FirewallRules: [{F6BC3170-37D8-4DFE-B415-505C180C9ED3}] => (Allow) D:\Program Files\Real Time Analyzer\rta.exe => No File
FirewallRules: [{235BC2DE-006F-4DBF-A073-E10E3BE05386}] => (Allow) D:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{6DFBCFFE-2DBC-496C-B220-080D6BF8DF95}] => (Allow) D:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{B0A0731E-5192-4018-9BE3-D355406D2B32}] => (Allow) D:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{70D55F62-6F17-426B-88D8-744CC55EB68A}] => (Allow) D:\Program Files\WindroyeBox\WindroyeBoxHD.exe => No File
FirewallRules: [{BB1F2038-1130-4CB1-A6B5-9A8761B704DC}] => (Allow) D:\Program Files\WindroyeBox\WindroyeBoxHD.exe => No File
FirewallRules: [{A8B4C56A-0D01-4439-A7A6-FCE98C117A66}] => (Allow) D:\Program Files\Windroye\Windroye.exe => No File
FirewallRules: [{67E8F37C-F767-4EC6-AD0E-CBFE8E8DCD2A}] => (Allow) D:\Program Files\Windroye\Windroye.exe => No File
FirewallRules: [{B6C6138D-7019-484E-80C2-D4AFA258940A}] => (Allow) LPort=4481
FirewallRules: [{361596B0-EBDA-4B9D-8DFC-48E16C74D7D2}] => (Allow) LPort=4481
FirewallRules: [{ED7FD584-303F-4A7A-A204-3A24DA2C03EC}] => (Allow) LPort=4482
FirewallRules: [{2D946A27-EFDF-4B0A-8AE7-87451CACAB27}] => (Allow) LPort=4482
FirewallRules: [{817651EE-8947-489B-85F2-F6735283A691}] => (Allow) D:\Program Files\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe (Research In Motion -> Research In Motion)
FirewallRules: [{987B3511-4AC0-40C3-BF88-1D7665D63700}] => (Allow) D:\Program Files\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe (Research In Motion -> Research In Motion)
FirewallRules: [{23E800C2-3696-4D04-9CD2-E758A4C69057}] => (Allow) tunmgr.exe => No File
FirewallRules: [{E8A8AD85-B574-499B-AD26-27D52A910474}] => (Allow) tunmgr.exe => No File
FirewallRules: [{DF9D147A-CA55-4A5D-88F7-01E07A69A7D7}] => (Allow) mDNSResponder.exe => No File
FirewallRules: [{56E21207-FE60-494C-8FED-1F76475CF3EE}] => (Allow) mDNSResponder.exe => No File
FirewallRules: [{A9D51181-4D3C-4E11-9544-9E6247BE97AB}] => (Allow) D:\Program Files\Common Files\Research In Motion\nginx\nginx.exe (BlackBerry Ltd. -> )
FirewallRules: [{DEA3752C-4349-4A3A-99FD-97CC1A0C2ADC}] => (Allow) D:\Program Files\BlackBerry\BlackBerry Blend\desktopinvokeproxy.exe (BlackBerry Ltd. -> BlackBerry Limited. All rights reserved)
FirewallRules: [TCP Query User{21872AD0-A7B8-4F6B-8EC7-1FB842187BBE}D:\program files\common files\research in motion\tunnel manager\peermanager.exe] => (Block) D:\program files\common files\research in motion\tunnel manager\peermanager.exe (BlackBerry Ltd. -> BlackBerry Limited)
FirewallRules: [UDP Query User{33C65EFB-9195-4905-8B34-DD4D3320053E}D:\program files\common files\research in motion\tunnel manager\peermanager.exe] => (Block) D:\program files\common files\research in motion\tunnel manager\peermanager.exe (BlackBerry Ltd. -> BlackBerry Limited)
FirewallRules: [TCP Query User{F97D57AB-66DB-41DB-9418-7C050FB00D0C}D:\program files\common files\research in motion\tunnel manager\peermanager.exe] => (Block) D:\program files\common files\research in motion\tunnel manager\peermanager.exe (BlackBerry Ltd. -> BlackBerry Limited)
FirewallRules: [UDP Query User{ED0C974D-44F9-470C-9447-175F8063A936}D:\program files\common files\research in motion\tunnel manager\peermanager.exe] => (Block) D:\program files\common files\research in motion\tunnel manager\peermanager.exe (BlackBerry Ltd. -> BlackBerry Limited)
FirewallRules: [{D93767E1-940C-469A-ABDA-7FA34163EFCA}] => (Allow) D:\Program Files\Opera\75.0.3969.243\opera.exe => No File
FirewallRules: [{B2A21E2E-7617-4845-ABF0-A48DB0667067}] => (Allow) D:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A1C80AA7-E955-4AFA-8996-710BBBCC5182}] => (Allow) D:\Program Files\Opera\80.0.4170.63\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{C29ED58D-CA3F-4552-AFDC-1FC3ABAC26E8}] => (Block) D:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5055B2B3-D07E-4919-998B-CDAB99B5B9BC}] => (Block) D:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8F22446E-8A19-4006-9432-45D9516F5BF1}] => (Allow) d:\program files\opera\80.0.4170.72\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{82457769-8806-4783-A464-ED1B48F09284}] => (Allow) D:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) [File not signed]

==================== Restore Points =========================

02-07-2021 12:43:17 Naplánovaný kontrolní bod
01-08-2021 17:16:47 Removed Nero Burning ROM 2014.
01-08-2021 17:32:39 Removed LightScribe System Software.
25-10-2021 15:08:51 Naplánovaný kontrolní bod
13-11-2021 15:07:20 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============

Name: staport
Description: staport
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: staport
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: ========================

Application errors:
==================
Error: (11/13/2021 05:55:47 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 05:55:47 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 05:55:47 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 05:55:47 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 05:55:47 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 05:55:47 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 05:55:46 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 05:55:46 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

System errors:
=============
Error: (11/13/2021 06:08:50 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/13/2021 04:42:36 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Windows Update přestala během spouštění reagovat.

Error: (11/13/2021 04:40:02 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: Služba WMPNetworkSvc nebyla spuštěna správně, protože u funkce CoCreateInstance (CLSID_UPnPDeviceFinder) došlo k chybě 0x80004005. Zkontrolujte, zda je spuštěná služba UPnPHost a zda je správně nainstalována součást systému Windows UPnPHost.

Error: (11/13/2021 04:39:58 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Centrum zabezpečení byla ukončena s následující chybou:
%%16389

Error: (11/13/2021 04:39:49 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby ShellHWDetection bylo dosaženo časového limitu (30000 ms).

Error: (11/13/2021 04:38:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba inteligentního přenosu na pozadí neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (11/13/2021 04:38:49 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby BITS bylo dosaženo časového limitu (30000 ms).

Error: (11/13/2021 04:38:19 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Browser bylo dosaženo časového limitu (30000 ms).

==================== Memory info ===========================

BIOS: American Megatrends Inc. 1104 06/14/2007
Motherboard: ASUSTeK Computer INC. P5LD2-SE
Processor: Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz
Percentage of memory in use: 82%
Total physical RAM: 2047.18 MB
Available physical RAM: 354.93 MB
Total Virtual: 4094.36 MB
Available Virtual: 931.63 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:38.29 GB) (Free:16.76 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Datový) (Fixed) (Total:465.75 GB) (Free:254.6 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 38.3 GB) (Disk ID: 989C989C)
Partition 1: (Active) - (Size=38.3 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: B89D8E20)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=0F Extended)

==================== End of Addition.txt =======================

#6 Příspěvek od **Rudy** » 13 lis 2021 19:13

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM\...\Run: [SunJavaUpdateSched] => D:\Program Files\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\...\Run: [Paul] => explorer.exe hxxp://exinariuminix.info (No File) <==== ATTENTION
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\...\MountPoints2: {3e16c316-cb70-11ea-8da8-001bfc7ae341} - D:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\Start.exe
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\...\MountPoints2: {5c9ddade-19b3-11e6-9501-806e6f6e6963} - E:\setup.exe
GroupPolicy: Restriction ? <==== ATTENTION
Policies: D:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {34DF9DFA-4F88-46C7-B32F-3872C97E599E} - System32\Tasks\GoogleUpdateTaskMachineCore => D:\Program Files\Google\Update\GoogleUpdate.exe [152216 2016-05-14] (Google Inc -> Google Inc.)
Task: {CB77912A-92E4-4832-BD12-375F51295380} - System32\Tasks\Paul => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Paul /t REG_SZ /d "explorer.exe http://exinariuminix.info" /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Paul /t REG_SZ /d "explorer.exe hxxp://exinariuminix.info" (No File) <==== ATTENTION
Task: {CFE7D029-511D-4B16-B2E3-28BC86877C26} - System32\Tasks\GoogleUpdateTaskMachineUA => D:\Program Files\Google\Update\GoogleUpdate.exe [152216 2016-05-14] (Google Inc -> Google Inc.)
Task: {D3D8AD07-3ABB-4EC0-AA5D-7E4DD9F3EE93} - System32\Tasks\AvastUpdateTaskMachineUA => D:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /ua /installsource scheduler (No File)
Task: {CB77912A-92E4-4832-BD12-375F51295380} - System32\Tasks\Paul => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Paul /t REG_SZ /d "explorer.exe http://exinariuminix.info" /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Paul /t REG_SZ /d "explorer.exe hxxp://exinariuminix.info" (No File) <==== ATTENTION
Task: {D3D8AD07-3ABB-4EC0-AA5D-7E4DD9F3EE93} - System32\Tasks\AvastUpdateTaskMachineUA => D:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /ua /installsource scheduler (No File)
OPR Notifications: Opera Stable -> hxxps://jolly-me.ru
D:\Windows\system32\Tasks\{D150EB2D-B749-477B-B60B-4A7B137AD3FE}
D:\Windows\system32\Tasks\{99BE2EB5-1EA6-4432-8629-564CB0EF4DF8}
D:\Windows\system32\Tasks\{C99291A1-F890-4962-8810-3360C88DEDD9}
D:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
D:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
D:\Users\Paul\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
D:\Users\Paul\AppData\Local\{13FFC920-4C8C-44FC-84A3-3CAF286DAB9A}
D:\Users\Paul\AppData\Local\{33800955-1D98-422E-9582-F0256B787C41}
D:\Users\Paul\AppData\Local\{40BBF283-08EB-49CD-BCD8-350970023F47}
D:\Users\Paul\AppData\Local\{54B7DF88-666B-4FDA-A981-7ED61029A11B}
D:\Users\Paul\AppData\Local\{6F008943-A81A-4A0A-A482-54E317E3156C}
D:\Users\Paul\AppData\Local\{9E61736D-F39B-4510-865C-61C28095AA45}
D:\Users\Paul\AppData\Local\{CDDAC471-7472-4D41-B5C0-438A3877F75A}
AlternateDataStreams: D:\Geologické epochy.psd:SummaryInformation [43]
AlternateDataStreams: D:\Geologické epochy.psd:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: D:\ProgramData\TEMP:87C79266 [250]
AlternateDataStreams: D:\ProgramData\TEMP:A31FAD21 [183]
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-14] (Google Inc -> Google Inc.)
Toolbar: HKLM - PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - D:\Program Files\PDF Architect 5\creator-ie-plugin.dll [2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
Toolbar: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-14] (Google Inc -> Google Inc.)
FirewallRules: [{7A3805A2-DCEB-4010-89F2-E8B7A16C48F8}] => (Allow) D:\Program Files\Real Time Analyzer\rta.exe => No File
FirewallRules: [{F6BC3170-37D8-4DFE-B415-505C180C9ED3}] => (Allow) D:\Program Files\Real Time Analyzer\rta.exe => No File
FirewallRules: [{70D55F62-6F17-426B-88D8-744CC55EB68A}] => (Allow) D:\Program Files\WindroyeBox\WindroyeBoxHD.exe => No File
FirewallRules: [{BB1F2038-1130-4CB1-A6B5-9A8761B704DC}] => (Allow) D:\Program Files\WindroyeBox\WindroyeBoxHD.exe => No File
FirewallRules: [{A8B4C56A-0D01-4439-A7A6-FCE98C117A66}] => (Allow) D:\Program Files\Windroye\Windroye.exe => No File
FirewallRules: [{67E8F37C-F767-4EC6-AD0E-CBFE8E8DCD2A}] => (Allow) D:\Program Files\Windroye\Windroye.exe => No File
FirewallRules: [{23E800C2-3696-4D04-9CD2-E758A4C69057}] => (Allow) tunmgr.exe => No File
FirewallRules: [{E8A8AD85-B574-499B-AD26-27D52A910474}] => (Allow) tunmgr.exe => No File
FirewallRules: [{DF9D147A-CA55-4A5D-88F7-01E07A69A7D7}] => (Allow) mDNSResponder.exe => No File
FirewallRules: [{56E21207-FE60-494C-8FED-1F76475CF3EE}] => (Allow) mDNSResponder.exe => No File
FirewallRules: [{D93767E1-940C-469A-ABDA-7FA34163EFCA}] => (Allow) D:\Program Files\Opera\75.0.3969.243\opera.exe => No File

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

rokony · #7 Příspěvek od **rokony** » 14 lis 2021 10:36

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-11-2021
Ran by Paul (administrator) on HORNÍ (13-11-2021 19:42:08)
Running from D:\Users\Paul\Desktop
Loaded Profiles: Paul
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Default browser: "D:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices Inc.) [File not signed] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ArcSoft, Inc. -> ArcSoft Inc.) D:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(ATI Technologies Inc.) [File not signed] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\afwServ.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\AvastUI.exe <5>
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\setup\instup.exe <2>
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avast Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe
(AVAST Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\SecureLine\Vpn.exe <2>
(AVAST Software s.r.o. -> AVAST Software) D:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
(BlackBerry Ltd. -> Apple Inc.) D:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe
(BlackBerry Ltd. -> BlackBerry Limited) D:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
(BlackBerry Ltd. -> BlackBerry Limited) D:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
(Google Inc -> Google Inc.) D:\Program Files\Google\Update\GoogleUpdate.exe
(Microsoft Windows -> Microsoft Corporation) D:\Windows\System32\msiexec.exe
(Microsoft Windows -> Microsoft Corporation) D:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) D:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) D:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.) D:\Program Files\Analog Devices\Core\smax4pnp.exe
(pdfforge GmbH -> Â© pdfforge GmbH.) D:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
(pdfforge GmbH -> pdfforge GmbH) D:\Program Files\PDF Architect 5\creator-ws.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => D:\Program Files\AVAST Software\Avast\AvLaunch.exe [123672 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [StartCCC] => D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-11-25] (Advanced Micro Devices, Inc.) [File not signed]
HKLM\...\Run: [ATICustomerCare] => D:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [311296 2010-05-04] (Advanced Micro Devices, Inc.) [File not signed]
HKLM\...\Run: [SoundMAXPnP] => D:\Program Files\Analog Devices\Core\smax4pnp.exe [868352 2006-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
HKLM\...\Run: [TuneupUI.exe] => "D:\Program Files\Avast Software\Cleanup\TuneupUI.exe" /nogui (No File)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-18\...\RunOnce: [SPReview] => D:\Windows\System32\SPReview\SPReview.exe [280576 2016-05-24] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Windows NT x86\Print Processors\hpzpplhn: D:\Windows\System32\spool\prtprocs\W32X86\hpzpplhn.dll [89600 2009-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\pdfcmon: D:\Windows\system32\pdfcmon.dll [145408 2021-10-28] (pdfforge GmbH) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> D:\Program Files\AVAST Software\Browser\Application\90.0.9310.93\Installer\chrmstp.exe [2021-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> D:\Program Files\Google\Chrome\Application\95.0.4638.69\Installer\chrmstp.exe [2021-11-13] (Google LLC -> Google LLC) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> D:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2021-04-21] (Adobe Inc. -> Adobe Systems, Inc.)
Startup: D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2019-05-25]
ShortcutTarget: Avast SecureLine VPN.lnk -> D:\Program Files\AVAST Software\SecureLine\Vpn.exe (AVAST Software s.r.o. -> AVAST Software)
BootExecute: autocheck autochk * icarus_rvrt.exe
Policies: D:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1103384F-650A-4FAF-BDF2-D40227402CCA} - \{D150EB2D-B749-477B-B60B-4A7B137AD3FE} -> No File <==== ATTENTION
Task: {27B2B6D8-FBFF-4A47-8C36-C586F63004AF} - System32\Tasks\Avast Software\Avast Cleanup BugReport => D:\Program Files\Avast Software\Cleanup\AvBugReport.exe -> --send "dumps|report" --silent --product 62 --programpath "D:\Program Files\Avast Software\Cleanup\Setup\.." --configpath "D:\Program Files\Avast Software\Cleanup\Setup" --path "D:\ProgramData\Avast Software\Cleanup\log" --path "D:\ProgramData\Avast Software\Icarus\Logs" --guid de3927f3-91fc-4291-aa2b-ef2710de54d8
Task: {440D52EE-C9C7-41CA-9E8E-268C527C690B} - System32\Tasks\AvastUpdateTaskMachineCore => D:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /c (No File)
Task: {506F7A63-6E42-40D7-BBFF-5D6073CC39BE} - System32\Tasks\Avast SecureLine VPN Update => D:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe [1390472 2019-10-24] (AVAST Software s.r.o. -> AVAST Software)
Task: {62BBA638-A677-43CF-8A6B-C2FD4626C318} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => D:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1994496 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
Task: {6F696061-3C12-4221-BA92-F2055FB4E4EE} - System32\Tasks\Avast Software\Avast Cleanup Update => D:\Program Files\Common Files\Avast Software\Icarus\avast-tu\icarus.exe /update:avast-tu /silent (No File)
Task: {7D409E4F-5100-4C53-8EDF-6F18AA9E8123} - System32\Tasks\EOSv3 Scheduler onTime => D:\Users\Paul\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-06-02] (ESET, spol. s r.o. -> ESET)
Task: {8E410EA4-32B3-4F27-BD54-691E61227BE8} - System32\Tasks\AVAST Software\Avast settings backup => D:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (No File)
Task: {97EE9223-C971-42ED-93B4-355E902CBAEB} - System32\Tasks\Adobe Acrobat Update Task => D:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (No File)
Task: {9EFE7BF9-69F9-4E5F-91FC-A0696B8AEBBC} - System32\Tasks\Avast Software\Overseer => D:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1546480 2021-06-12] (Avast Software s.r.o. -> Avast Software)
Task: {A79983B7-A5A0-47FF-AE85-70238BD14EA9} - \{99BE2EB5-1EA6-4432-8629-564CB0EF4DF8} -> No File <==== ATTENTION
Task: {B63B9C26-200A-44CD-91C0-DFE4D73BEA7F} - System32\Tasks\Adobe Flash Player Updater => D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-10-28] (Adobe Inc. -> Adobe)
Task: {B75FFEFC-B35A-4E21-9EDE-88B5A8143F71} - System32\Tasks\Opera scheduled Autoupdate 1463218688 => d:\program files\opera\launcher.exe [3255504 2021-10-27] (Opera Software AS -> Opera Software)
Task: {B93CEB8C-020C-4CA0-86BE-AA0C7B40457B} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => D:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [1994496 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
Task: {C7957738-0FF2-4908-A5E8-56C728725BE3} - System32\Tasks\EOSv3 Scheduler onLogOn => D:\Users\Paul\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007968 2021-06-02] (ESET, spol. s r.o. -> ESET)
Task: {D97B9FD5-32B2-4458-966D-2B137A971D82} - System32\Tasks\Avast Emergency Update => D:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4409112 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
Task: {DBB43A70-7186-4A1F-925D-AC82193E0EC0} - System32\Tasks\Opera scheduled assistant Autoupdate 1582822965 => D:\Program Files\Opera\launcher.exe [3255504 2021-10-27] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="D:\Program Files\Opera\assistant" $(Arg0)
Task: {EA371E07-1B6C-438F-A2FD-0B2F2FD723BA} - \{C99291A1-F890-4962-8810-3360C88DEDD9} -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{D6ECA6D6-AEEC-4F56-BCEA-2CB0696DDEE5}: [NameServer] 100.120.96.1
Tcpip\..\Interfaces\{E569009B-2FE4-45AC-8C3D-91D6B2DA1FAF}: [DhcpNameServer] 10.0.1.138

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: D:\Users\Paul\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-20]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.311.2 -> D:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> D:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @RIM.com/WebSLLauncher,version=1.0 -> D:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2015-03-19] (Research In Motion -> )
FF Plugin: @update.avastbrowser.com/Avast Browser;version=3 -> D:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-27] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @update.avastbrowser.com/Avast Browser;version=9 -> D:\Program Files\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-27] (Avast Software s.r.o. -> AVAST Software)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Reader -> D:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default [2021-11-13]
CHR Notifications: Default -> hxxps://17.cprmatix.com
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR NewTab: Default -> Not-active:"chrome-extension://blmojkbhnkkphngknkmgccmlenfaelkd/speeddial/html/newTab.html"
CHR Extension: (Dokumenty) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-26]
CHR Extension: (Seznam doplněk - Esko-) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2019-10-14]
CHR Extension: (Avast Passwords) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2020-02-15]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2021-11-13]
CHR Extension: (Platby Internetového obchodu Chrome) - D:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKU\S-1-5-21-1540482146-1299034176-466505332-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1540482146-1299034176-466505332-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd]
CHR HKU\S-1-5-21-1540482146-1299034176-466505332-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]

Opera:
=======
OPR Profile: D:\Users\Paul\AppData\Roaming\Opera Software\Opera Stable [2021-11-13]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - D:\Users\Paul\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-10-28]
OPR Extension: (Amazon Assistant Promotion) - D:\Users\Paul\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-10-27]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; D:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [109056 2009-09-28] (ArcSoft, Inc. -> ArcSoft Inc.)
S3 AdobeFlashPlayerUpdateSvc; D:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2021-10-28] (Adobe Inc. -> Adobe)
R2 AMD External Events Utility; D:\Windows\system32\atiesrxx.exe [176128 2010-11-26] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R3 aswbIDSAgent; D:\Program Files\AVAST Software\Avast\aswidsagent.exe [7532624 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; D:\Program Files\AVAST Software\Avast\AvastSvc.exe [626968 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; D:\Program Files\AVAST Software\Avast\afwServ.exe [1564952 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; D:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [407832 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; D:\Program Files\AVAST Software\Browser\Application\90.0.9310.93\elevation_service.exe [1173256 2021-04-27] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; D:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-12] (Avast Software s.r.o. -> AVAST Software)
R3 BlackBerry Device Manager; D:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [588024 2014-10-31] (BlackBerry Ltd. -> BlackBerry Limited)
S3 GoogleChromeElevationService; D:\Program Files\Google\Chrome\Application\95.0.4638.69\elevation_service.exe [1245016 2021-10-28] (Google LLC -> Google LLC) [File not signed]
S3 PDF Architect 5; D:\Program Files\PDF Architect 5\ws.exe [2468128 2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 5 CrashHandler; D:\Program Files\PDF Architect 5\crash-handler-ws.exe [979744 2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 5 Creator; D:\Program Files\PDF Architect 5\creator-ws.exe [778528 2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 5 Manager; D:\Program Files\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985848 2017-05-16] (pdfforge GmbH -> Â© pdfforge GmbH.)
R2 Pml Driver HPZ12; D:\Windows\system32\HPZipm12.dll [52736 2009-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
R2 RIM MDNS; D:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe [396024 2015-03-19] (BlackBerry Ltd. -> Apple Inc.)
R2 RIM Tunnel Service; D:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe [1354488 2015-03-19] (BlackBerry Ltd. -> BlackBerry Limited)
R2 SecureLine; D:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [6828424 2019-10-23] (AVAST Software s.r.o. -> AVAST Software)
S3 WinDefend; D:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
S2 AdobeARMservice; "D:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe" [X]
S2 avast; "D:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /svc [X]
S3 avastm; "D:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe" /medsvc [X]
S2 CleanupPSvc; "D:\Program Files\Avast Software\Cleanup\TuneupSvc.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ADIHdAudAddService; D:\Windows\System32\drivers\ADIHdAud.sys [316928 2007-01-16] (Microsoft Windows Hardware Compatibility Publisher -> Analog Devices, Inc.)
R3 Afc; D:\Windows\System32\drivers\Afc.sys [18688 2006-11-10] (ArcSoft, Inc. -> Arcsoft, Inc.)
R3 amdkmdag; D:\Windows\System32\DRIVERS\atikmdag.sys [6650368 2010-11-26] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
R3 amdkmdap; D:\Windows\System32\DRIVERS\atikmpag.sys [231936 2010-11-26] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R1 aswArPot; D:\Windows\System32\drivers\aswArPot.sys [186304 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; D:\Windows\System32\drivers\aswbidsdriver.sys [312360 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; D:\Windows\System32\drivers\aswbidsh.sys [206376 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; D:\Windows\System32\drivers\aswbuniv.sys [91688 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; D:\Windows\System32\drivers\aswKbd.sys [39304 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; D:\Windows\System32\drivers\aswMonFlt.sys [154016 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; D:\Windows\System32\drivers\aswNetHub.sys [393032 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; D:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2020-03-12] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; D:\Windows\System32\drivers\aswRdr2.sys [92760 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; D:\Windows\System32\drivers\aswRvrt.sys [71920 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; D:\Windows\System32\drivers\aswSnx.sys [690144 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; D:\Windows\System32\drivers\aswSP.sys [459064 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; D:\Windows\System32\drivers\aswStm.sys [161368 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; D:\Windows\System32\DRIVERS\aswTap.sys [48152 2017-03-14] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; D:\Windows\System32\drivers\aswVmm.sys [266184 2021-10-28] (Avast Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; D:\Windows\System32\drivers\AtihdW73.sys [101392 2010-11-17] (ATI Technologies, Inc -> Advanced Micro Devices)
S3 atikmdag; D:\Windows\System32\DRIVERS\atikmdag.sys [6650368 2010-11-26] (Microsoft Windows Hardware Compatibility Publisher -> ATI Technologies Inc.)
S3 blackberryncm; D:\Windows\System32\DRIVERS\blackberryncm6.sys [22016 2014-09-08] (Microsoft Windows Hardware Compatibility Publisher -> BlackBerry)
S3 BULKUSB; D:\Windows\System32\Drivers\BULKUSB.sys [23000 2011-09-26] (SIEMENS AG -> Windows (R) Win 7 DDK provider)
S3 cpuz134; D:\Program Files\CPUID\PC Wizard 2010\pcwiz_x32.sys [20328 2010-07-09] (CPUID -> Windows (R) Win 7 DDK provider)
S3 DLPortIO; D:\Windows\system32\DRIVERS\DLPortIO.SYS [3584 2000-06-29] () [File not signed]
R1 HWiNFO32; D:\Windows\system32\drivers\HWiNFO32.SYS [23840 2016-05-15] (Martin Malik - REALiX -> REALiX(tm))
S3 RimUsb; D:\Windows\System32\Drivers\RimUsb.sys [68608 2014-05-06] (Microsoft Windows Hardware Compatibility Publisher -> BlackBerry Limited)
R3 rimvndis; D:\Windows\System32\Drivers\rimvndis6.sys [14848 2015-03-19] (Microsoft Windows Hardware Compatibility Publisher -> BlackBerry Limited)
R3 RimVSerPort; D:\Windows\System32\DRIVERS\RimSerial.sys [35840 2012-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Ltd)
S1 staport; D:\Windows\System32\Drivers\staport.sys [39424 2021-10-28] (AVAST Software s.r.o. -> )
R2 TVicPort; D:\Windows\System32\Drivers\TVicPort.sys [14544 2005-03-30] (EnTech Taiwan) [File not signed]
R1 UimBus; D:\Windows\System32\DRIVERS\UimBus.sys [95280 2015-11-10] (Paragon Software GmbH -> )
R1 Uim_DEVIM; D:\Windows\System32\DRIVERS\uim_devim.sys [20528 2015-11-10] (Paragon Software GmbH -> )
R1 Uim_IM; D:\Windows\System32\DRIVERS\uim_im.sys [541232 2015-11-10] (Paragon Software GmbH -> )
R3 WinDriver6; D:\Windows\System32\drivers\windrvr6.sys [195424 2009-09-02] (Jungo LTD -> Jungo)
R1 WMDrive; D:\Windows\system32\drivers\WMDrive.sys [65856 2016-07-23] (Beijing KaiXin ShengZhou Technology Co., Ltd. -> WinMount International Inc) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-13 19:42 - 2021-11-13 19:45 - 000022404 _____ D:\Users\Paul\Desktop\FRST.txt
2021-11-13 19:37 - 2021-11-13 19:37 - 000000008 __RSH D:\ProgramData\ntuser.pol
2021-11-13 19:33 - 2021-11-13 19:35 - 000013786 _____ D:\Users\Paul\Desktop\Fixlog.txt
2021-11-13 16:34 - 2021-11-13 16:34 - 000570816 _____ D:\Windows\Minidump\111321-19047-01.dmp
2021-11-13 15:44 - 2021-11-13 15:44 - 000002210 _____ D:\Users\Paul\Desktop\AdwCleaner[C00].txt
2021-11-13 15:41 - 2021-11-13 15:42 - 000000000 ____D D:\AdwCleaner
2021-11-13 15:41 - 2021-11-13 15:41 - 008553680 _____ (Malwarebytes) D:\Users\Paul\Downloads\adwcleaner_8.3.0.exe
2021-11-13 13:52 - 2021-11-13 19:44 - 000000000 ____D D:\FRST
2021-11-13 13:51 - 2021-11-13 13:50 - 002019840 _____ (Farbar) D:\Users\Paul\Desktop\FRST.exe
2021-11-13 13:49 - 2021-11-13 13:50 - 002019840 _____ (Farbar) D:\Users\Paul\Downloads\FRST.exe
2021-10-28 21:45 - 2021-10-28 21:46 - 000000000 ____D D:\Program Files\PDFCreator
2021-10-28 21:45 - 2021-10-28 21:45 - 000000714 _____ D:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator.lnk
2021-10-28 21:45 - 2021-10-28 21:45 - 000000668 _____ D:\Users\Public\Desktop\PDFCreator.lnk
2021-10-28 21:42 - 2021-10-28 23:14 - 000004366 _____ D:\Windows\system32\Tasks\Adobe Flash Player Updater
2021-10-28 18:45 - 2021-10-28 18:45 - 000039424 _____ () D:\Windows\system32\Drivers\staport.sys
2021-10-28 18:44 - 2021-10-28 18:43 - 000287512 _____ (AVAST Software) D:\Windows\system32\aswBoot.exe
2021-10-28 18:44 - 2021-10-28 18:43 - 000161368 _____ (AVAST Software) D:\Windows\system32\Drivers\aswStm.sys
2021-10-28 13:00 - 2021-10-28 13:00 - 000000000 ____D D:\Program Files\Common Files\Oracle
2021-10-28 12:59 - 2021-10-28 12:59 - 000000000 ____D D:\Program Files\Common Files\Java

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-11-13 19:44 - 2016-05-14 10:22 - 001582262 _____ D:\Windows\system32\PerfStringBackup.INI
2021-11-13 19:44 - 2009-07-14 09:44 - 000668138 _____ D:\Windows\system32\perfh005.dat
2021-11-13 19:44 - 2009-07-14 09:44 - 000140798 _____ D:\Windows\system32\perfc005.dat
2021-11-13 19:44 - 2009-07-14 03:37 - 000000000 ____D D:\Windows\inf
2021-11-13 19:40 - 2016-05-14 10:32 - 000000000 ____D D:\Program Files\Google
2021-11-13 19:37 - 2016-05-14 10:26 - 000000000 ____D D:\ProgramData\AVAST Software
2021-11-13 19:37 - 2009-07-14 05:53 - 000000006 ____H D:\Windows\Tasks\SA.DAT
2021-11-13 19:33 - 2009-07-14 03:37 - 000000000 ___HD D:\Windows\system32\GroupPolicy
2021-11-13 16:48 - 2009-07-14 05:34 - 000014016 ____H D:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-11-13 16:48 - 2009-07-14 05:34 - 000014016 ____H D:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-11-13 16:34 - 2021-08-01 17:52 - 286029245 _____ D:\Windows\MEMORY.DMP
2021-11-13 16:34 - 2016-05-29 18:46 - 000000000 ____D D:\Windows\Minidump
2021-11-13 14:21 - 2016-05-14 11:39 - 000002176 _____ D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-11-13 14:21 - 2016-05-14 11:39 - 000002135 _____ D:\Users\Public\Desktop\Google Chrome.lnk
2021-11-13 13:38 - 2017-03-14 18:27 - 000004168 _____ D:\Windows\system32\Tasks\Avast Emergency Update
2021-10-28 23:15 - 2016-05-14 10:30 - 000000000 ____D D:\Windows\system32\Tasks\AVAST Software
2021-10-28 23:14 - 2021-03-15 18:16 - 000003816 _____ D:\Windows\system32\Tasks\Opera scheduled Autoupdate 1463218688
2021-10-28 21:49 - 2016-05-14 10:37 - 000000000 ____D D:\Program Files\Opera
2021-10-28 21:48 - 2016-05-14 10:50 - 000000000 ____D D:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-10-28 21:48 - 2016-05-14 10:50 - 000000000 ____D D:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-10-28 21:48 - 2016-05-14 10:50 - 000000000 ____D D:\Program Files\WinRAR
2021-10-28 21:47 - 2018-03-25 17:25 - 000001030 _____ D:\Users\Public\Desktop\VLC media player.lnk
2021-10-28 21:46 - 2017-07-03 08:02 - 000145408 _____ (pdfforge GmbH) D:\Windows\system32\pdfcmon.dll
2021-10-28 21:42 - 2017-10-08 17:48 - 000842296 _____ (Adobe) D:\Windows\system32\FlashPlayerApp.exe
2021-10-28 21:42 - 2017-10-08 17:48 - 000175160 _____ (Adobe) D:\Windows\system32\FlashPlayerCPLApp.cpl
2021-10-28 21:41 - 2017-10-08 17:48 - 000000000 ____D D:\Windows\system32\Macromed
2021-10-28 18:50 - 2021-06-12 17:34 - 000002009 _____ D:\Users\Public\Desktop\Avast Premium Security.lnk
2021-10-28 18:45 - 2019-01-17 12:33 - 000312360 _____ (AVAST Software) D:\Windows\system32\Drivers\aswbidsdriver.sys
2021-10-28 18:45 - 2019-01-17 12:24 - 000206376 _____ (AVAST Software) D:\Windows\system32\Drivers\aswbidsh.sys
2021-10-28 18:45 - 2019-01-17 12:24 - 000091688 _____ (AVAST Software) D:\Windows\system32\Drivers\aswbuniv.sys
2021-10-28 18:43 - 2020-10-20 17:34 - 000154016 _____ (AVAST Software) D:\Windows\system32\Drivers\aswMonFlt.sys
2021-10-28 18:43 - 2020-05-01 09:20 - 000393032 _____ (AVAST Software) D:\Windows\system32\Drivers\aswNetHub.sys
2021-10-28 18:43 - 2018-11-10 13:26 - 000039304 _____ (AVAST Software) D:\Windows\system32\Drivers\aswKbd.sys
2021-10-28 18:43 - 2017-11-17 13:14 - 000186304 _____ (AVAST Software) D:\Windows\system32\Drivers\aswArPot.sys
2021-10-28 18:43 - 2016-05-14 10:30 - 000690144 _____ (AVAST Software) D:\Windows\system32\Drivers\aswSnx.sys
2021-10-28 18:43 - 2016-05-14 10:30 - 000459064 _____ (AVAST Software) D:\Windows\system32\Drivers\aswSP.sys
2021-10-28 18:43 - 2016-05-14 10:30 - 000266184 _____ (AVAST Software) D:\Windows\system32\Drivers\aswVmm.sys
2021-10-28 18:43 - 2016-05-14 10:30 - 000092760 _____ (AVAST Software) D:\Windows\system32\Drivers\aswRdr2.sys
2021-10-28 18:43 - 2016-05-14 10:30 - 000071920 _____ (AVAST Software) D:\Windows\system32\Drivers\aswRvrt.sys
2021-10-28 15:37 - 2014-11-20 17:48 - 000000000 ____D D:\Programy
2021-10-28 14:10 - 2021-06-02 18:15 - 000001199 _____ D:\Users\Paul\Desktop\ESET Online Scanner.lnk
2021-10-28 13:00 - 2020-07-25 16:53 - 000000000 ____D D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-10-28 13:00 - 2020-07-25 16:52 - 000000000 ____D D:\Program Files\Java
2021-10-28 12:57 - 2020-07-25 16:53 - 000162648 _____ (Oracle Corporation) D:\Windows\system32\WindowsAccessBridge.dll
2021-10-25 14:38 - 2020-01-04 19:16 - 000000000 ____D D:\Users\Paul\Documents\Hyperborea

==================== Files in the root of some directories ========

2017-10-08 15:04 - 2017-10-08 15:04 - 005082084 _____ (The Public) D:\Users\Paul\AppData\Roaming\Avisynth.exe
2017-10-08 15:04 - 2017-10-08 15:04 - 005243208 _____ ( ) D:\Users\Paul\AppData\Roaming\AvsP.exe
2017-10-08 15:04 - 2017-10-08 15:04 - 002169915 _____ (LIGHTNING UK!) D:\Users\Paul\AppData\Roaming\Imgburn.exe
2017-10-08 15:04 - 2017-10-08 15:04 - 001357348 _____ () D:\Users\Paul\AppData\Roaming\MatroskaSplitter.exe
2020-06-25 15:12 - 2021-01-12 19:48 - 000000616 _____ () D:\Users\Paul\AppData\Roaming\Rim.Desktop.Exception.log
2020-06-25 15:10 - 2020-06-26 18:19 - 000002245 _____ () D:\Users\Paul\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2020-06-25 15:12 - 2021-01-12 19:47 - 000000616 _____ () D:\Users\Paul\AppData\Roaming\Rim.DesktopHelper.Exception.log
2017-10-08 15:04 - 2017-10-08 15:04 - 007760687 _____ (Boraxsoft) D:\Users\Paul\AppData\Roaming\SetupGFD.exe
2017-10-08 15:04 - 2017-10-08 15:04 - 000117723 _____ () D:\Users\Paul\AppData\Roaming\yuvcodecs-1.3.exe

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2021-11-13 14:59
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 09-11-2021
Ran by Paul (13-11-2021 19:45:46)
Running from D:\Users\Paul\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2016-05-14 09:17:04)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1540482146-1299034176-466505332-500 - Administrator - Disabled)
Guest (S-1-5-21-1540482146-1299034176-466505332-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1540482146-1299034176-466505332-1002 - Limited - Enabled)
Paul (S-1-5-21-1540482146-1299034176-466505332-1001 - Administrator - Enabled) => D:\Users\Paul

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.001.20155 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 32.0.0.465 - Adobe)
Adobe Photoshop 6.0.1 CE (HKLM\...\Adobe Photoshop 6.0.1 CE) (Version: 6.0.1 - Adobe Systems, Inc.)
ArcSoft MediaImpression 2 (HKLM\...\{044197D0-BA1C-4567-A8E3-A6491A6DC4EE}) (Version: 2.0.19.573 - ArcSoft)
ATI Catalyst Install Manager (HKLM\...\{4B52E7BC-28A6-F68C-A12F-BC7581BE344C}) (Version: 3.0.804.0 - ATI Technologies, Inc.)
ATI Catalyst Registration (HKLM\...\{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}) (Version: 3.00.0000 - ATI Technologies Inc.) Hidden
Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 21.1.9940.2746 - Avast Software)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 21.9.2493 - Avast Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 90.0.9310.93 - Autoři prohlížeče Avast Secure Browser)
Avast SecureLine (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 5.1.419 - AVAST Software)
AviSynth 2.6 (HKLM\...\AviSynth) (Version: 2.6.0.2 - GPL Public release.)
AVRStudio4 (HKLM\...\{D5D88F8F-FDA4-4CF4-9F3E-3F40118C2120}) (Version: 4.18.684 - Atmel)
AvsP (HKLM\...\AvsP_is1) (Version: - )
BASCOM-AVR (HKLM\...\{47F94730-ABD2-47F6-920E-EA8CDB6DD0C6}_is1) (Version: 2.0.7.1 - MCS Electronics)
BBSAK (HKLM\...\{E2B4FE1C-2CFA-47EE-A88C-A14D0FF1F0B0}) (Version: 1.9.11 - JMT Labs)
BlackBerry 10 Desktop Software (HKLM\...\{a0642dd3-1105-464b-84c8-caaf676c39c8}) (Version: 1.1.0.22 - BlackBerry)
BlackBerry Blend (HKLM\...\{1DA42C01-4ED2-4B4E-B90C-18FCBA12FC41}) (Version: 1.1.0.23 - BlackBerry Ltd.) Hidden
BlackBerry Communication Drivers (HKLM\...\{46CD5A63-0C1F-45C3-B643-CA87A17275C0}) (Version: 8.0.0.119 - BlackBerry Ltd.) Hidden
BlackBerry Desktop Software 7.1 (HKLM\...\{BE5B0450-DCCB-4FE9-93E2-3B38D88A745B}) (Version: 7.1.0.41 - Research In Motion Ltd.) Hidden
BlackBerry Desktop Software 7.1 (HKLM\...\BlackBerry_Desktop) (Version: 7.1.0.41 - Research In Motion Ltd.)
BlackBerry Device Drivers (HKLM\...\{3FB73D51-669B-4AC0-9410-CF0C451E58BF}) (Version: 8.0.0.119 - BlackBerry Ltd.) Hidden
BlackBerry Device Software Updater (HKLM\...\{E755A98B-F45F-4008-A1A5-FC4CB4D2177A}) (Version: 8.0.0.66 - Research In Motion Ltd)
BlackBerry Link (HKLM\...\{C42468F9-9812-4550-A54B-5DDB062EB10F}) (Version: 1.2.4.28 - BlackBerry) Hidden
BlackBerry Link Remover (HKLM\...\{44D65CAB-1BC8-47B7-BF5B-3EB8B6BB0276}) (Version: 1.2.4.0 - BlackBerry Ltd.) Hidden
Dune 2000 (HKLM\...\Dune 2000) (Version: - )
Dune 2000 Money Maker v1.20 (HKLM\...\Dune 2000 Money Maker v1.20) (Version: - )
elektron version 5.1.0.0 (HKLM\...\elektron 5.1.0.0_is1) (Version: - Company: Pepinator)
Elektron verze 1.5 (HKLM\...\Elektron_is1) (Version: 1.5 - )
Filtered Noise Generator 1.2 (HKLM\...\75C4D645-0101-49A6-AC1A-69DDA6998885_is1) (Version: - Timo Esser)
Frex16 (HKLM\...\Frex162017.04.04) (Version: 2017.04.04 - Ken Uzzell)
Google Chrome (HKLM\...\Google Chrome) (Version: 95.0.4638.69 - Google LLC)
Google Toolbar for Internet Explorer (HKLM\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
Haali Media Splitter (HKLM\...\HaaliMkx) (Version: - )
HD Tune Pro 5.50 (HKLM\...\HD Tune Pro_is1) (Version: - EFD Software)
Helix YUV Codecs (remove only) (HKLM\...\HelixYUVCodecs) (Version: - )
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.0.0 - LIGHTNING UK!)
Java 8 Update 311 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
JDS6600 1.00 (HKLM\...\JDS6600 1.00) (Version: 1.00 - JUN CE)
KMPlayer (remove only) (HKLM\...\The KMPlayer) (Version: 4.1.3.3 - PandoraTV)
LJConfig (HKLM\...\{53F396C7-269B-42F5-933D-7EDA67D9A048}) (Version: 1.2 - VicTech Software)
Manager (HKLM\...\{8DED36D9-54D6-4127-A112-5A1BA1CDD66B}) (Version: 5.0.26.33533 - 2017 pdfforge GmbH. All rights reserved) Hidden
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
mini Ring Core Calculator 1.2 (HKLM\...\minirk12_is1) (Version: 1.2 - DL5SWB)
MPLAB Tools v8.90 (HKLM\...\{4BFBFE90-75A0-4728-8625-9776B82C99B3}) (Version: 8.90 - Microchip Technology Inc.) Hidden
MPLAB Tools v8.90 (HKLM\...\InstallShield_{4BFBFE90-75A0-4728-8625-9776B82C99B3}) (Version: 8.90 - Microchip Technology Inc.)
Multi Tone Generator (HKLM\...\Multi Tone Generator_is1) (Version: 1.4 - Timo Esser)
OpenAL (HKLM\...\OpenAL) (Version: - )
Opera Stable 80.0.4170.72 (HKLM\...\Opera 80.0.4170.72) (Version: 80.0.4170.72 - Opera Software)
Paragon Hard Disk Manager™ 15 Professional (HKLM\...\{1E104AF0-EA49-11DE-AC07-005056C00008}) (Version: 90.00.0003 - Paragon Software)
PC Wizard 2010.1.96 (HKLM\...\PC Wizard 2010_is1) (Version: - CPUID)
PDF Architect 5 Create Module (HKLM\...\{D4357D67-F66E-4FB0-8040-67E1045A5C54}) (Version: 5.0.24.33400 - pdfforge GmbH) Hidden
PDF Architect 5 Edit Module (HKLM\...\{D111BC40-7196-4A2C-8ED7-992D36990591}) (Version: 5.0.24.33400 - pdfforge GmbH) Hidden
PDF Architect 5 View Module (HKLM\...\{0247CCDF-4FAF-4AB8-A6C7-F2A63A306E0E}) (Version: 5.0.24.33400 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{90AD48B3-56D7-46DB-8A6E-1DDD6939BBD3}) (Version: 4.4.0 - pdfforge GmbH)
PonyProg2000 v2.07c (HKLM\...\PonyProg2000_is1) (Version: 2.07c - LancOS)
Rhinoceros 4.0 (HKLM\...\{5C2CBFFD-FC3B-4AA9-993B-CE2B8DA25B87}) (Version: 4.0.20118 - McNeel & Associates)
Rhinoceros 4.0 SR8 (HKLM\...\{95E1E426-EE9E-4F68-8F02-58A5A09B38F3}) (Version: 4.0.50401 - Robert McNeel & Associates)
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 6.10.1.6110 - Analog Devices)
Test Tone Generator 4.5 (HKLM\...\A9CD4C7D-6D93-4B56-A226-1D28DB060A87_is1) (Version: - Timo Esser)
The Lord of the Rings FREE Trial (HKLM\...\{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}) (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
Tisk Obalek 3.2.2.7 (HKLM\...\Tisk Obalek_is1) (Version: 3.2.2.7 - Mgr. Radovan Kraus)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
WavePad Sound Editor (HKLM\...\WavePad) (Version: 7.05 - NCH Software)
Westwood Shared Internet Components (HKLM\...\WOLAPI) (Version: - )
WinAVR 20100110 (remove only) (HKLM\...\WinAVR-20100110) (Version: 20100110 - )
WinHTTrack Website Copier 3.49-2 (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.49.2 - HTTrack)
WinMount V3.4.1020 (HKLM\...\WinMount_is1) (Version: 3.4.1020 - WinMount)
WinPic (HKLM\...\WinPic_is1) (Version: - Wolfgang Buescher (DL4YHF))
WinRAR 6.02 (32-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
WMV9/VC-1 Video Playback (HKLM\...\{DFB92E80-F614-8710-37BD-E5091D241B90}) (Version: 1.0.51125.2159 - ATI Technologies Inc.) Hidden

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1540482146-1299034176-466505332-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> D:\Users\Paul\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20339.4\x86\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-28] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [MountOverlayIcon] -> {0F49CF41-FD97-4942-9F2A-35E8B489E7FB} => D:\Program Files\WinMount\WinMTExt.dll [2010-10-20] (WinMount International Inc.) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PDFArchitect5_ManagerExt] -> {00B7B69F-6774-4906-9C7F-7D117A3644A9} => D:\Program Files\PDF Architect 5\creator-context-menu.dll [2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => D:\Program Files\PDFCreator\PDFCreatorShell.DLL [2021-08-26] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [RhinoShExt] -> {C81DCBCA-8AE2-41FC-9C39-78B160393210} => D:\Program Files\Rhinoceros 4.0\System\RhinoShExt.dll [2010-04-01] (Robert McNeel & Associates) [File not signed]
ContextMenuHandlers1: [ShlExtMenu] -> {231B20E6-A4F5-456E-984D-BE082084A168} => D:\Program Files\WinMount\WinMTExt.dll [2010-10-20] (WinMount International Inc.) [File not signed]
ContextMenuHandlers1: [WinMTExt] -> {231B20E6-A4F5-456E-984D-BE082084A168} => D:\Program Files\WinMount\WinMTExt.dll [2010-10-20] (WinMount International Inc.) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [WinMTExt] -> {231B20E6-A4F5-456E-984D-BE082084A168} => D:\Program Files\WinMount\WinMTExt.dll [2010-10-20] (WinMount International Inc.) [File not signed]
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [WinMTExt] -> {231B20E6-A4F5-456E-984D-BE082084A168} => D:\Program Files\WinMount\WinMTExt.dll [2010-10-20] (WinMount International Inc.) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll [2010-11-25] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\AVAST Software\Avast\ashShell.dll [2021-10-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.i420] => D:\Windows\system32\i420vfw.dll [83456 2010-11-03] (www.helixcommunity.org) [File not signed]
HKLM\...\Drivers32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32: [VIDC.VP80] => vp8vfw.dll
HKLM\...\Drivers32: [vidc.yv12] => D:\Windows\system32\yv12vfw.dll [83456 2010-11-03] (www.helixcommunity.org) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: D:\Users\Paul\Favorites\NCH Software Download Site.lnk -> hxxp://www.nch.com.au/index.htm
Shortcut: D:\Users\Paul\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Frex16\install_tools.lnk -> D:\Program Files\Frex16\install_tools.bat ()

==================== Loaded Modules (Whitelisted) =============

2009-01-20 12:51 - 2009-01-20 12:51 - 000007168 _____ () [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atixclib.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 000270336 _____ () [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2015-03-19 11:22 - 2015-03-19 11:22 - 000094208 _____ () [File not signed] D:\Program Files\Common Files\Research In Motion\Tunnel Manager\libxpmux.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Actions.CCAA.Shared.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.DPPE.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.EEU.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.GD.Shared.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Hotkeys.Shared.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.REG.Shared.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Source.Kit.Server.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000006144 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.WinMessages.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\APM.Foundation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ATICCCom.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.Implementation.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CustomFormats.Graphics.Shared.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000397312 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000053248 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.shared.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000630784 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Dashboard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000069632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Shared.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000692224 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Wizard.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000053248 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000049152 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000749568 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000077824 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.shared.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000364544 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Wizard.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000573440 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 001708032 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager2.Graphics.Wizard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000094208 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000196608 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000204800 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000880640 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000102400 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Shared.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000409600 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Wizard.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000675840 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000081920 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Runtime.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.shared.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000397312 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000073728 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Shared.dll
2010-11-25 20:38 - 2010-11-25 20:38 - 000094208 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 000184320 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Dashboard.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Runtime.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.shared.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.Runtime.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000009728 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000073728 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.Shared.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.Shared.Private.dll
2010-11-25 20:36 - 2010-11-25 20:36 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Wizard.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Wizard.Shared.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Dashboard.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Runtime.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Shared.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Wizard.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000010240 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.Private.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Extension.EEU.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000049152 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.Private.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000057344 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.SkinFactory.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000581632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Systemtray.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.Shared.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.Shared.Private.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000098304 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Private.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.XManifest.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.Private.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000036864 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Private.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.Foundation.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000106496 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.Implementation.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\NEWAEM.Foundation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000006144 _____ (Advanced Micro Devices Inc.) [File not signed] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.Shared.dll
2010-11-05 09:46 - 2010-11-05 09:46 - 000098304 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-10-08 06:52 - 2010-10-08 06:52 - 000081920 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ADL.Foundation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000061440 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\APM.Server.dll
2010-10-07 04:16 - 2010-10-07 04:16 - 000450560 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ATIDEMGX.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000376832 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000065536 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000036864 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
2010-11-25 20:37 - 2010-11-25 20:37 - 000053248 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
2010-11-25 20:41 - 2010-11-25 20:41 - 001306624 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager2.Graphics.Dashboard.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000040960 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.Private.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 001220608 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000061440 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000405504 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.dll
2007-05-02 16:44 - 2007-05-02 16:44 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0703.dll
2007-08-09 15:58 - 2007-08-09 15:58 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0706.dll
2009-06-17 04:27 - 2009-06-17 04:27 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll
2009-06-17 09:24 - 2009-06-17 09:24 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll
2008-04-03 15:29 - 2008-04-03 15:29 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll
2009-04-22 11:13 - 2009-04-22 11:13 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0805.dll
2008-12-30 10:04 - 2008-12-30 10:04 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0812.dll
2009-06-17 09:24 - 2009-06-17 09:24 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0906.dll
2009-12-08 05:49 - 2009-12-08 05:49 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0912.dll
2010-11-25 20:40 - 2010-11-25 20:40 - 000741376 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Implementation.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000007168 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Private.dll
2010-11-25 20:39 - 2010-11-25 20:39 - 000065536 _____ (Advanced Mirco Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.Dashboard.dll
2010-11-25 20:35 - 2010-11-25 20:35 - 000385024 _____ (Advanced Mirco Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll
2010-11-25 20:34 - 2010-11-25 20:34 - 000155648 _____ (Advanced Mirco Devices, Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll
2010-03-03 23:27 - 2010-03-03 23:27 - 000016384 _____ (ATI Technologies Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Foundation.dll
2009-04-22 11:13 - 2009-04-22 11:13 - 000045056 _____ (ATI Technologies Inc.) [File not signed] [File is in use] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0601.dll
2016-05-15 22:39 - 2016-05-15 22:39 - 001105920 _____ (Microsoft Corporation) [File not signed] D:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\MFC80.DLL
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\msvcp140.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\MSVCP140.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\msvcp140.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\MSVCP140.dll
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\ucrtbase.DLL
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\ucrtbase.DLL
2021-10-28 18:44 - 2021-10-28 18:44 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] D:\Program Files\AVAST Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2021-11-10 23:17 - 2021-11-10 23:17 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] D:\Program Files\AVAST Software\Avast\defs\21111008\avast.local_vc142.crt\VCRUNTIME140.dll
2021-11-13 19:43 - 2021-11-13 19:43 - 000000000 ____L (Microsoft Corporation) [simlink -> D:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] D:\Program Files\AVAST Software\Avast\defs\21111302\avast.local_vc142.crt\VCRUNTIME140.dll
2017-07-03 08:02 - 2021-10-28 21:46 - 000145408 _____ (pdfforge GmbH) [File not signed] D:\Windows\System32\pdfcmon.dll
2010-04-01 09:29 - 2010-04-01 09:29 - 001028096 _____ (Robert McNeel & Associates) [File not signed] D:\Program Files\Rhinoceros 4.0\System\RhinoShExt.dll
2019-01-17 12:27 - 2018-09-05 21:32 - 002095104 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Program Files\AVAST Software\SecureLine\libcrypto-1_1.dll
2016-07-23 12:38 - 2010-10-20 12:22 - 000257024 _____ (WinMount International Inc.) [File not signed] D:\Program Files\WinMount\WinMTExt.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: D:\Geologické epochy.psd:SummaryInformation [43]
AlternateDataStreams: D:\Geologické epochy.psd:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

HKU\S-1-5-21-1540482146-1299034176-466505332-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {0A8141B0-BF64-4776-8F60-A01F27FAE797} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {0E187198-2A48-4B0E-9DB0-9513B1A09914} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {433B194A-DFD5-4AA0-80D7-3750386D11DA} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {52C08E28-9218-49FF-934B-4C807414FA63} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {75594041-EB71-4644-8C31-6E6BCF1A99FA} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {92310A37-410A-4A48-800B-82F866A035A8} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {CBFCEF11-FAC7-41AE-84B5-B54D5FCB901B} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {E062D435-DAC5-4F76-9AC3-552AB601E2AD} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_29530
SearchScopes: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> {E09F3787-72E1-4043-98E6-85E464E70589} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_29530
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Program Files\Java\jre1.8.0_311\bin\ssv.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> D:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-14] (Google Inc -> Google Inc.)
BHO: PDF Architect 5 Helper -> {AEA429F3-D2D4-4BD7-A03E-5357DA017733} -> D:\Program Files\PDF Architect 5\creator-ie-helper.dll [2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Program Files\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-10-28] (Oracle America, Inc. -> Oracle Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2019-01-05 11:36 - 000000824 _____ D:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> D:\Program Files\Common Files\Oracle\Java\javapath;D:\WinAVR-20100110\bin;D:\WinAVR-20100110\utils\bin;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;D:\Program Files\ATI Technologies\ATI.ACE\Core-Static;D:\Program Files\Microchip\MPLAB C32 Suite\bin
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\Control Panel\Desktop\\Wallpaper -> D:\Users\Paul\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.1.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupfolder: D:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma Loader.exe.lnk => D:\Windows\pss\Adobe Gamma Loader.exe.lnk.CommonStartup
MSCONFIG\startupreg: ArcSoft Connection Service => D:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
MSCONFIG\startupreg: CCleaner Smart Cleaning => "D:\Program Files\CCleaner\ccleaner.exe" /MONITOR
MSCONFIG\startupreg: com.squirrel.Teams.Teams => D:\Users\Paul\AppData\Local\Microsoft\Teams\Update.exe --processStart "Teams.exe" --process-start-args "--system-initiated"
MSCONFIG\startupreg: DriverMax_RESTART => "D:\Program Files\Innovative Solutions\DriverMax\drivermax.exe" -RESTART
MSCONFIG\startupreg: LightScribe Control Panel => D:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
MSCONFIG\startupreg: RIM PeerManager => "D:\Program Files\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
MSCONFIG\startupreg: RIMBBLaunchAgent.exe => D:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{07690A63-6F9A-4E1C-A16A-45C3A48EC23D}D:\openarena-0.8.8\openarena.exe] => (Allow) D:\openarena-0.8.8\openarena.exe () [File not signed]
FirewallRules: [UDP Query User{B0BAD57B-390A-4216-AF73-A334EAFAEE60}D:\openarena-0.8.8\openarena.exe] => (Allow) D:\openarena-0.8.8\openarena.exe () [File not signed]
FirewallRules: [TCP Query User{32243AC1-23FB-4981-BBBC-62679055BC92}D:\openarena-0.8.8\openarena.exe] => (Allow) D:\openarena-0.8.8\openarena.exe () [File not signed]
FirewallRules: [UDP Query User{ADFE3A90-2A4E-48D8-9AAA-305B36D75E4C}D:\openarena-0.8.8\openarena.exe] => (Allow) D:\openarena-0.8.8\openarena.exe () [File not signed]
FirewallRules: [TCP Query User{731EB03E-F5D9-47C0-8DFB-8EC25DA3E8C2}D:\stronghold crusader\stronghold crusader.exe] => (Allow) D:\stronghold crusader\stronghold crusader.exe (Firefly Studios Limited -> )
FirewallRules: [UDP Query User{9C74AAF2-8D34-4CE8-87A4-3CEB55D95699}D:\stronghold crusader\stronghold crusader.exe] => (Allow) D:\stronghold crusader\stronghold crusader.exe (Firefly Studios Limited -> )
FirewallRules: [TCP Query User{DA62E754-6DB6-4397-8431-1F7DFECB95C2}D:\windows\system32\dplaysvr.exe] => (Allow) D:\windows\system32\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{402D64C0-18E5-400D-89B0-A414118C7E20}D:\windows\system32\dplaysvr.exe] => (Allow) D:\windows\system32\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{F6E84859-83A0-4394-8431-C58A616B475A}D:\stronghold crusader\stronghold crusader.exe] => (Allow) D:\stronghold crusader\stronghold crusader.exe (Firefly Studios Limited -> )
FirewallRules: [UDP Query User{D5392AF1-2E96-44F7-88D9-5552477DF31E}D:\stronghold crusader\stronghold crusader.exe] => (Allow) D:\stronghold crusader\stronghold crusader.exe (Firefly Studios Limited -> )
FirewallRules: [{7B6E47FD-E929-4C5A-B47D-A39F761401B4}] => (Allow) D:\Westwood\Dune2000\DUNE2000.DAT (Intelligent Games) [File not signed]
FirewallRules: [{28437B86-2C32-4C6E-9B82-B4E25A794E02}] => (Allow) D:\Westwood\Dune2000\DUNE2000.DAT (Intelligent Games) [File not signed]
FirewallRules: [{1A963838-4470-437B-8D7B-11F264262CD8}] => (Allow) D:\Westwood\Dune2000\DUNE2000.DAT (Intelligent Games) [File not signed]
FirewallRules: [{4CA04C4E-5914-4500-9D57-564D3749BF60}] => (Allow) D:\Westwood\Dune2000\DUNE2000.DAT (Intelligent Games) [File not signed]
FirewallRules: [{235BC2DE-006F-4DBF-A073-E10E3BE05386}] => (Allow) D:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{6DFBCFFE-2DBC-496C-B220-080D6BF8DF95}] => (Allow) D:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{B0A0731E-5192-4018-9BE3-D355406D2B32}] => (Allow) D:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B6C6138D-7019-484E-80C2-D4AFA258940A}] => (Allow) LPort=4481
FirewallRules: [{361596B0-EBDA-4B9D-8DFC-48E16C74D7D2}] => (Allow) LPort=4481
FirewallRules: [{ED7FD584-303F-4A7A-A204-3A24DA2C03EC}] => (Allow) LPort=4482
FirewallRules: [{2D946A27-EFDF-4B0A-8AE7-87451CACAB27}] => (Allow) LPort=4482
FirewallRules: [{817651EE-8947-489B-85F2-F6735283A691}] => (Allow) D:\Program Files\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe (Research In Motion -> Research In Motion)
FirewallRules: [{987B3511-4AC0-40C3-BF88-1D7665D63700}] => (Allow) D:\Program Files\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe (Research In Motion -> Research In Motion)
FirewallRules: [{A9D51181-4D3C-4E11-9544-9E6247BE97AB}] => (Allow) D:\Program Files\Common Files\Research In Motion\nginx\nginx.exe (BlackBerry Ltd. -> )
FirewallRules: [{DEA3752C-4349-4A3A-99FD-97CC1A0C2ADC}] => (Allow) D:\Program Files\BlackBerry\BlackBerry Blend\desktopinvokeproxy.exe (BlackBerry Ltd. -> BlackBerry Limited. All rights reserved)
FirewallRules: [TCP Query User{21872AD0-A7B8-4F6B-8EC7-1FB842187BBE}D:\program files\common files\research in motion\tunnel manager\peermanager.exe] => (Block) D:\program files\common files\research in motion\tunnel manager\peermanager.exe (BlackBerry Ltd. -> BlackBerry Limited)
FirewallRules: [UDP Query User{33C65EFB-9195-4905-8B34-DD4D3320053E}D:\program files\common files\research in motion\tunnel manager\peermanager.exe] => (Block) D:\program files\common files\research in motion\tunnel manager\peermanager.exe (BlackBerry Ltd. -> BlackBerry Limited)
FirewallRules: [TCP Query User{F97D57AB-66DB-41DB-9418-7C050FB00D0C}D:\program files\common files\research in motion\tunnel manager\peermanager.exe] => (Block) D:\program files\common files\research in motion\tunnel manager\peermanager.exe (BlackBerry Ltd. -> BlackBerry Limited)
FirewallRules: [UDP Query User{ED0C974D-44F9-470C-9447-175F8063A936}D:\program files\common files\research in motion\tunnel manager\peermanager.exe] => (Block) D:\program files\common files\research in motion\tunnel manager\peermanager.exe (BlackBerry Ltd. -> BlackBerry Limited)
FirewallRules: [{B2A21E2E-7617-4845-ABF0-A48DB0667067}] => (Allow) D:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A1C80AA7-E955-4AFA-8996-710BBBCC5182}] => (Allow) D:\Program Files\Opera\80.0.4170.63\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{C29ED58D-CA3F-4552-AFDC-1FC3ABAC26E8}] => (Block) D:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5055B2B3-D07E-4919-998B-CDAB99B5B9BC}] => (Block) D:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8F22446E-8A19-4006-9432-45D9516F5BF1}] => (Allow) d:\program files\opera\80.0.4170.72\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{82457769-8806-4783-A464-ED1B48F09284}] => (Allow) D:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) [File not signed]

==================== Restore Points =========================

02-07-2021 12:43:17 Naplánovaný kontrolní bod
01-08-2021 17:16:47 Removed Nero Burning ROM 2014.
01-08-2021 17:32:39 Removed LightScribe System Software.
25-10-2021 15:08:51 Naplánovaný kontrolní bod
13-11-2021 15:07:20 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============

Name: staport
Description: staport
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: staport
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: ========================

Application errors:
==================
Error: (11/13/2021 07:43:35 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 07:43:35 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 07:43:35 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 07:43:35 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 07:43:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 07:43:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 07:43:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

Error: (11/13/2021 07:43:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Certifikační řetěz byl zpracován, ale byl ukončen v kořenovém certifikátu, který nemá důvěru zprostředkovatele důvěryhodnosti.
.

System errors:
=============
Error: (11/13/2021 07:51:59 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/13/2021 07:43:50 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Windows Update přestala během spouštění reagovat.

Error: (11/13/2021 07:41:07 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Centrum zabezpečení byla ukončena s následující chybou:
%%16389

Error: (11/13/2021 07:39:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba %1!s! Update (avast) neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (11/13/2021 07:37:57 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
staport

Error: (11/13/2021 07:37:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Avast Cleanup neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (11/13/2021 07:33:44 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Windows Search, ale tato akce selhala kvůli následující chybě:
Instance této služby je již spuštěna.

Error: (11/13/2021 07:33:43 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {9E175B6D-F52A-11D8-B9A5-505054503030} se v daném časovém limitu neregistroval u služby DCOM.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 1104 06/14/2007
Motherboard: ASUSTeK Computer INC. P5LD2-SE
Processor: Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz
Percentage of memory in use: 81%
Total physical RAM: 2047.18 MB
Available physical RAM: 382.27 MB
Total Virtual: 4094.36 MB
Available Virtual: 1716.75 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:38.29 GB) (Free:16.76 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Datový) (Fixed) (Total:465.75 GB) (Free:260.21 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 38.3 GB) (Disk ID: 989C989C)
Partition 1: (Active) - (Size=38.3 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: B89D8E20)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=0F Extended)

==================== End of Addition.txt =======================

#8 Příspěvek od **Rudy** » 14 lis 2021 11:22

Potřebuji vidět obsah souboru fixlog.txt. Je na ploše.

rokony · #9 Příspěvek od **rokony** » 14 lis 2021 11:51

Fix result of Farbar Recovery Scan Tool (x86) Version: 09-11-2021
Ran by Paul (13-11-2021 19:33:10) Run:1
Running from D:\Users\Paul\Desktop
Loaded Profiles: Paul
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\...\Run: [SunJavaUpdateSched] => D:\Program Files\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\...\Run: [Paul] => explorer.exe hxxp://exinariuminix.info (No File) <==== ATTENTION
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\...\MountPoints2: {3e16c316-cb70-11ea-8da8-001bfc7ae341} - D:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\Start.exe
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\...\MountPoints2: {5c9ddade-19b3-11e6-9501-806e6f6e6963} - E:\setup.exe
GroupPolicy: Restriction ? <==== ATTENTION
Policies: D:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {34DF9DFA-4F88-46C7-B32F-3872C97E599E} - System32\Tasks\GoogleUpdateTaskMachineCore => D:\Program Files\Google\Update\GoogleUpdate.exe [152216 2016-05-14] (Google Inc -> Google Inc.)
Task: {CB77912A-92E4-4832-BD12-375F51295380} - System32\Tasks\Paul => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Paul /t REG_SZ /d "explorer.exe http://exinariuminix.info" /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Paul /t REG_SZ /d "explorer.exe hxxp://exinariuminix.info" (No File) <==== ATTENTION
Task: {CFE7D029-511D-4B16-B2E3-28BC86877C26} - System32\Tasks\GoogleUpdateTaskMachineUA => D:\Program Files\Google\Update\GoogleUpdate.exe [152216 2016-05-14] (Google Inc -> Google Inc.)
Task: {D3D8AD07-3ABB-4EC0-AA5D-7E4DD9F3EE93} - System32\Tasks\AvastUpdateTaskMachineUA => D:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /ua /installsource scheduler (No File)
Task: {CB77912A-92E4-4832-BD12-375F51295380} - System32\Tasks\Paul => cmd.exe /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Paul /t REG_SZ /d "explorer.exe http://exinariuminix.info" /c REG ADD HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /f /v Paul /t REG_SZ /d "explorer.exe hxxp://exinariuminix.info" (No File) <==== ATTENTION
Task: {D3D8AD07-3ABB-4EC0-AA5D-7E4DD9F3EE93} - System32\Tasks\AvastUpdateTaskMachineUA => D:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /ua /installsource scheduler (No File)
OPR Notifications: Opera Stable -> hxxps://jolly-me.ru
D:\Windows\system32\Tasks\{D150EB2D-B749-477B-B60B-4A7B137AD3FE}
D:\Windows\system32\Tasks\{99BE2EB5-1EA6-4432-8629-564CB0EF4DF8}
D:\Windows\system32\Tasks\{C99291A1-F890-4962-8810-3360C88DEDD9}
D:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
D:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
D:\Users\Paul\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
D:\Users\Paul\AppData\Local\{13FFC920-4C8C-44FC-84A3-3CAF286DAB9A}
D:\Users\Paul\AppData\Local\{33800955-1D98-422E-9582-F0256B787C41}
D:\Users\Paul\AppData\Local\{40BBF283-08EB-49CD-BCD8-350970023F47}
D:\Users\Paul\AppData\Local\{54B7DF88-666B-4FDA-A981-7ED61029A11B}
D:\Users\Paul\AppData\Local\{6F008943-A81A-4A0A-A482-54E317E3156C}
D:\Users\Paul\AppData\Local\{9E61736D-F39B-4510-865C-61C28095AA45}
D:\Users\Paul\AppData\Local\{CDDAC471-7472-4D41-B5C0-438A3877F75A}
AlternateDataStreams: D:\Geologick� epochy.psd:SummaryInformation [43]
AlternateDataStreams: D:\Geologick� epochy.psd:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: D:\ProgramData\TEMP:87C79266 [250]
AlternateDataStreams: D:\ProgramData\TEMP:A31FAD21 [183]
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-14] (Google Inc -> Google Inc.)
Toolbar: HKLM - PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - D:\Program Files\PDF Architect 5\creator-ie-plugin.dll [2017-05-08] (pdfforge GmbH -> pdfforge GmbH)
Toolbar: HKU\S-1-5-21-1540482146-1299034176-466505332-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-14] (Google Inc -> Google Inc.)
FirewallRules: [{7A3805A2-DCEB-4010-89F2-E8B7A16C48F8}] => (Allow) D:\Program Files\Real Time Analyzer\rta.exe => No File
FirewallRules: [{F6BC3170-37D8-4DFE-B415-505C180C9ED3}] => (Allow) D:\Program Files\Real Time Analyzer\rta.exe => No File
FirewallRules: [{70D55F62-6F17-426B-88D8-744CC55EB68A}] => (Allow) D:\Program Files\WindroyeBox\WindroyeBoxHD.exe => No File
FirewallRules: [{BB1F2038-1130-4CB1-A6B5-9A8761B704DC}] => (Allow) D:\Program Files\WindroyeBox\WindroyeBoxHD.exe => No File
FirewallRules: [{A8B4C56A-0D01-4439-A7A6-FCE98C117A66}] => (Allow) D:\Program Files\Windroye\Windroye.exe => No File
FirewallRules: [{67E8F37C-F767-4EC6-AD0E-CBFE8E8DCD2A}] => (Allow) D:\Program Files\Windroye\Windroye.exe => No File
FirewallRules: [{23E800C2-3696-4D04-9CD2-E758A4C69057}] => (Allow) tunmgr.exe => No File
FirewallRules: [{E8A8AD85-B574-499B-AD26-27D52A910474}] => (Allow) tunmgr.exe => No File
FirewallRules: [{DF9D147A-CA55-4A5D-88F7-01E07A69A7D7}] => (Allow) mDNSResponder.exe => No File
FirewallRules: [{56E21207-FE60-494C-8FED-1F76475CF3EE}] => (Allow) mDNSResponder.exe => No File
FirewallRules: [{D93767E1-940C-469A-ABDA-7FA34163EFCA}] => (Allow) D:\Program Files\Opera\75.0.3969.243\opera.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully.
"HKU\S-1-5-21-1540482146-1299034176-466505332-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Paul" => removed successfully.
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3e16c316-cb70-11ea-8da8-001bfc7ae341} => removed successfully.
HKU\S-1-5-21-1540482146-1299034176-466505332-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5c9ddade-19b3-11e6-9501-806e6f6e6963} => removed successfully.
D:\Windows\system32\GroupPolicy\Machine => moved successfully
D:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
D:\ProgramData\NTUSER.pol => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully.
HKLM\SOFTWARE\Policies\Google => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{34DF9DFA-4F88-46C7-B32F-3872C97E599E}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{34DF9DFA-4F88-46C7-B32F-3872C97E599E}" => removed successfully.
D:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{CB77912A-92E4-4832-BD12-375F51295380}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CB77912A-92E4-4832-BD12-375F51295380}" => removed successfully.
D:\Windows\System32\Tasks\Paul => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Paul" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CFE7D029-511D-4B16-B2E3-28BC86877C26}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CFE7D029-511D-4B16-B2E3-28BC86877C26}" => removed successfully.
D:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D3D8AD07-3ABB-4EC0-AA5D-7E4DD9F3EE93}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D3D8AD07-3ABB-4EC0-AA5D-7E4DD9F3EE93}" => removed successfully.
D:\Windows\System32\Tasks\AvastUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AvastUpdateTaskMachineUA" => removed successfully.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CB77912A-92E4-4832-BD12-375F51295380} => not found
"D:\Windows\System32\Tasks\Paul" => not found
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Paul => not found
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D3D8AD07-3ABB-4EC0-AA5D-7E4DD9F3EE93} => not found
"D:\Windows\System32\Tasks\AvastUpdateTaskMachineUA" => not found
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AvastUpdateTaskMachineUA => not found
"OPR Notifications" => removed successfully.
D:\Windows\system32\Tasks\{D150EB2D-B749-477B-B60B-4A7B137AD3FE} => moved successfully
D:\Windows\system32\Tasks\{99BE2EB5-1EA6-4432-8629-564CB0EF4DF8} => moved successfully
D:\Windows\system32\Tasks\{C99291A1-F890-4962-8810-3360C88DEDD9} => moved successfully
"D:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"D:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
D:\Users\Paul\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
D:\Users\Paul\AppData\Local\{13FFC920-4C8C-44FC-84A3-3CAF286DAB9A} => moved successfully
D:\Users\Paul\AppData\Local\{33800955-1D98-422E-9582-F0256B787C41} => moved successfully
D:\Users\Paul\AppData\Local\{40BBF283-08EB-49CD-BCD8-350970023F47} => moved successfully
D:\Users\Paul\AppData\Local\{54B7DF88-666B-4FDA-A981-7ED61029A11B} => moved successfully
D:\Users\Paul\AppData\Local\{6F008943-A81A-4A0A-A482-54E317E3156C} => moved successfully
D:\Users\Paul\AppData\Local\{9E61736D-F39B-4510-865C-61C28095AA45} => moved successfully
D:\Users\Paul\AppData\Local\{CDDAC471-7472-4D41-B5C0-438A3877F75A} => moved successfully
"D:\Geologick� epochy.psd" => ":SummaryInformation" ADS not found.
"D:\Geologick� epochy.psd" => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS not found.
D:\ProgramData\TEMP => ":87C79266" ADS removed successfully.
D:\ProgramData\TEMP => ":A31FAD21" ADS removed successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully.
HKLM\Software\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => removed successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{84F23192-A475-4038-B5C0-8584777F2DF4}" => removed successfully.
HKLM\Software\Classes\CLSID\{84F23192-A475-4038-B5C0-8584777F2DF4} => removed successfully.
"HKU\S-1-5-21-1540482146-1299034176-466505332-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7A3805A2-DCEB-4010-89F2-E8B7A16C48F8}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F6BC3170-37D8-4DFE-B415-505C180C9ED3}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{70D55F62-6F17-426B-88D8-744CC55EB68A}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BB1F2038-1130-4CB1-A6B5-9A8761B704DC}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A8B4C56A-0D01-4439-A7A6-FCE98C117A66}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{67E8F37C-F767-4EC6-AD0E-CBFE8E8DCD2A}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{23E800C2-3696-4D04-9CD2-E758A4C69057}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E8A8AD85-B574-499B-AD26-27D52A910474}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DF9D147A-CA55-4A5D-88F7-01E07A69A7D7}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{56E21207-FE60-494C-8FED-1F76475CF3EE}" => removed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D93767E1-940C-469A-ABDA-7FA34163EFCA}" => removed successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 24344031 B
Java, Flash, Steam htmlcache => 575 B
Windows/system/drivers => 1132556939 B
Edge => 0 B
Chrome => 117599885 B
Firefox => 0 B
Opera => 139232902 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 30126639 B
LocalService => 30258883 B
NetworkService => 30331119 B
Paul => 1106120410 B

RecycleBin => 4513194737 B
EmptyTemp: => 6.6 GB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 19:35:04 ====

#10 Příspěvek od **Rudy** » 14 lis 2021 12:00

Smazáno. Nastala nějaká změna?

rokony · #11 Příspěvek od **rokony** » 14 lis 2021 14:56

Přestalo vyskakovat okno CMD a po startu se už nespouští sám od sebe prohlížeč. V tomhle se to zlepšilo, snad i v rychlosti zavádění systému.
Avšak stále nefunguje správně Avast, Passwords mi vypisuje toto:
"Avast Passwords
Jejda, něco se pokazilo
Avast Passwords bez antiviru Avast nefunguje. Spusťte antivirus Avast a zkuste to znovu. Nemáte jej? Odsud si jej můžete zdarma stáhnout"

Mám zkusit přeinstalovat Avast?
Další problém je, že se nedostanu ze žádného prohlížeče do emailu, hláška zde:

"Vaše připojení není soukromé
Útočníci se mohou pokusit odcizit vaše údaje na webu login.szn.cz (například hesla, zprávy nebo informace o platebních kartách). Další informace
NET::ERR_CERT_DATE_INVALID"

Chyba se objevuje při pokusu o přístup na mnoho webů. Většinou bývá dole tlačítko "rozšířené možnosti", kterým se dá dostat na možnost pokračování, ale konkrétně u emailu tato možnost chybí. Nedostanu se tam z Chromu, ani Opery, ani Avast Brpwseru. Z jiného počítače to jde.
Děkuji za pomoc!

rokony · #12 Příspěvek od **rokony** » 14 lis 2021 15:35

Nyní se cosi děje, otevřel se sám od sebe Avast Browser a snažil se načíst adresu https://cps.letsencrypt.org/.
Mimochodem, problém s hláškou "Vaše připojení není soukromé" zřejmě souvisí s neplatnými certifikáty. I když podle data mají ještě platit, prohlížeče je pokládají za propadlé. Čas v počítači mám nastavený správně.
Například i tato stránka forum.viry.cz má v adresním řádku červený nápis "nezabezpečeno" a certifikát označuje za neplatný.

#13 Příspěvek od **Rudy** » 14 lis 2021 16:07

Již v 1. odpovědi jsem vám doporučil Avast přeinstalovat. Vyzkoušejte.

rokony · #14 Příspěvek od **rokony** » 14 lis 2021 17:41

Avast jsem přeinstaloval, bohužel se nedostanu do mailu k registračnímu číslu kvůli chybě certifikátů.
Avast Password už funguje, děkuji!

#15 Příspěvek od **Rudy** » 14 lis 2021 18:04

Pokud máte AvastFree, měl by se registrovat sám na 1 rok. Nemáte zač!.

VIRY.CZ

Podivné chování Avastu a další problémy...

Podivné chování Avastu a další problémy...

Re: Podivné chování Avastu a další problémy...

Re: Podivné chování Avastu a další problémy...

Re: Podivné chování Avastu a další problémy...

Re: Podivné chování Avastu a další problémy...

Re: Podivné chování Avastu a další problémy...

Re: Podivné chování Avastu a další problémy...

Re: Podivné chování Avastu a další problémy...

Re: Podivné chování Avastu a další problémy...

Re: Podivné chování Avastu a další problémy...

Re: Podivné chování Avastu a další problémy...

Re: Podivné chování Avastu a další problémy...

Re: Podivné chování Avastu a další problémy...

Re: Podivné chování Avastu a další problémy...

Re: Podivné chování Avastu a další problémy...