Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

kontrola logu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
czech 08
Návštěvník
Návštěvník
Příspěvky: 38
Registrován: 12 úno 2021 16:28

kontrola logu

#1 Příspěvek od czech 08 »

FRST.txt


==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [123672 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [tvncontrol] => "C:\Program Files\TightVNC\tvnserver.exe" -controlservice -slave
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [2196344 2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Users\PC\AppData\Local\Programs\Zoner\ZPS X\binary\Program32\ZPSTRAY.EXE [811680 2021-06-18] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\MountPoints2: {0276854f-87b3-11eb-ab36-244bfe775eb1} - "F:\Lenovo_Suite.exe"
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\MountPoints2: {ea3aec86-83ed-11eb-ab32-244bfe775eb1} - "E:\LenovoUsbDriver.exe"
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HPLJ1020LM: C:\Windows\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-19] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Parallels Toolbox.lnk [2021-07-19]
ShortcutTarget: Parallels Toolbox.lnk -> C:\Program Files\Parallels\Parallels Toolbox\PrlToolbox.exe (Parallels International GmbH -> Parallels)
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2021-07-13]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2624BDB3-58B5-451C-A209-71FEB9F7D9C1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114048 2021-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {331CBF10-D2C5-4105-9648-60DF85C71B5B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [114048 2021-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {3E1302F4-A7DB-47F4-938B-486E88F3A128} - System32\Tasks\Zoner.Updater.S-1-5-21-321179341-2139502707-572524282-1001 => C:\ProgramData\Zoner\Zoner.Installer.Core\Updater.exe [1602464 2021-07-28] (ZONER software, a.s. -> ZONER software, a.s.)
Task: {459248BF-520A-4EE2-BBFA-B030BB3DD6ED} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4902680 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
Task: {585AB7F3-2F7D-4485-92FE-513A0C73F3A2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-24] (Google LLC -> Google LLC)
Task: {5887142D-8C62-4FF2-97A8-BECDE52F9DDA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-24] (Google LLC -> Google LLC)
Task: {9FD5FB4E-79CB-4CCE-A1F5-D478F70A9129} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253888 2021-08-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {B6A7D54F-BDBD-4636-8150-DFABE24253B7} - System32\Tasks\Parallels\Toolbox\DisableCamera => C:\Program Files\Parallels\Parallels Toolbox\DisableCamera.exe [772984 2021-07-23] (Parallels International GmbH -> Parallels)
Task: {BEC93E07-93E5-4461-8E40-18F28BB3D157} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23253888 2021-08-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {C1100914-8E9A-40F8-89E4-2AF6D4403183} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-08-20] (Avast Software s.r.o. -> Avast Software)
Task: {D51B55CD-FD32-45C3-B42F-745D0FEFFDD2} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {DF425217-2062-486D-A22B-C730A94770F9} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2989424 2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {F48D2DB3-D10D-40BF-B360-8321F70115DD} - System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIS => C:\Windows\SysWOW64\XPSViewer\TasksG\G-1-10-52\TG_1.3.54.41.exe (Access Denied) <==== ATTENTION
Task: {F91A1D3E-2497-4AC4-AD8C-3F688C921D60} - System32\Tasks\StartRPCService => NET [Argument = START RPCService]

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Intel PTT EK Recertification.job => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 86.49.5.221 86.49.5.222
Tcpip\..\Interfaces\{03ed72bc-7c71-4e7f-9275-79a541e551fb}: [DhcpNameServer] 86.49.5.221 86.49.5.222

Edge:
=======
Edge Profile: C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-20]

FireFox:
========
FF DefaultProfile: 2hjvx19l.default
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\2hjvx19l.default [2021-06-04]
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\wkt3qk0h.default-release [2021-06-04]
FF DownloadDir: E:
FF Session Restore: Mozilla\Firefox\Profiles\wkt3qk0h.default-release -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\wkt3qk0h.default-release -> hxxps://mail.google.com
FF Extension: (No Name) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\wkt3qk0h.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-06-04]
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-03-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-03-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-07-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [No File]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2021-08-20]
CHR Notifications: Default -> hxxps://aternos.org; hxxps://meet.google.com; hxxps://top.gg; hxxps://web.whatsapp.com; hxxps://www.instagram.com; hxxps://www.youtube.com
CHR NewTab: Default -> Active:"chrome-extension://hdpcadigjkbcpnlcpbcohpafiaefanki/index.html"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-24]
CHR Extension: (Just Black) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2021-03-01]
CHR Extension: (Dokumenty) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-24]
CHR Extension: (Disk Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-24]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-24]
CHR Extension: (uBlock Origin) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-07-29]
CHR Extension: (Smart Auto Reload) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmojnplfenlnmkmgnkmkomnnfnklkkbj [2021-02-27]
CHR Extension: (Tabulky) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-24]
CHR Extension: (HTTPS Everywhere) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2021-07-14]
CHR Extension: (Dokumenty Google offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-29]
CHR Extension: (Avast Online Security) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-08-20]
CHR Extension: (nightTab) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdpcadigjkbcpnlcpbcohpafiaefanki [2021-06-07]
CHR Extension: (CrossPilot) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\migomhggnppjdijnfkiimcpjgnhmnale [2021-06-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-24]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-27]
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\System Profile [2021-03-06]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8262736 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [627480 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [374552 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9142128 2021-08-05] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\FileSyncHelper.exe [2382200 2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\OneDriveUpdaterService.exe [2739576 2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\NisSrv.exe [2483624 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MsMpEng.exe [128392 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [269200 2020-09-27] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35720 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [218976 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [367640 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [250392 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99352 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [17344 2021-08-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41352 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [184648 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [559816 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [108408 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82904 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851704 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [471920 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215392 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [328568 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [174968 2021-01-07] (Oracle Corporation -> Oracle Corporation)
R3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [48136 2021-02-25] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49544 2021-02-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [420088 2021-02-27] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [72952 2021-02-27] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath
U1 avgbdisk; no ImagePath
S3 WacHidRouter; \SystemRoot\System32\drivers\wachidrouter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-08-20 07:03 - 2021-08-20 07:03 - 000000000 ____D C:\Users\PC\AppData\Local\Avast Software
2021-08-20 07:02 - 2021-08-20 07:02 - 000559816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000471920 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000339736 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-08-20 07:02 - 2021-08-20 07:02 - 000328568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000250392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000215392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000184648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000108408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000099352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000082904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000041352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000017344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswElam.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000003990 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-08-20 07:02 - 2021-08-20 07:02 - 000002160 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2021-08-20 07:02 - 2021-08-20 07:02 - 000000000 ____D C:\Users\PC\AppData\Roaming\Avast Software
2021-08-20 07:02 - 2021-08-20 07:02 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2021-08-20 07:02 - 2021-08-20 07:01 - 000851704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-08-20 07:02 - 2021-08-20 07:01 - 000367640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-08-20 07:02 - 2021-08-20 07:01 - 000218976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-08-20 07:02 - 2021-08-20 07:01 - 000035720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-08-20 07:01 - 2021-08-20 07:01 - 000000000 ____D C:\Program Files\Avast Software
2021-08-20 07:00 - 2021-08-20 07:00 - 004146112 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgremoverx.exe
2021-08-20 06:54 - 2021-08-20 06:54 - 000000000 ___HD C:\$AV_AVG
2021-08-15 18:53 - 2021-08-15 18:53 - 000000000 ___HD C:\$WinREAgent
2021-08-15 18:33 - 2021-08-20 17:08 - 000008852 _____ C:\Users\PC\AppData\Local\prl_toolbox_ceplog.xml
2021-08-13 17:00 - 2021-08-13 17:00 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-08-13 17:00 - 2021-08-13 17:00 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-08-13 17:00 - 2021-08-13 17:00 - 000011347 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-08-10 19:11 - 2021-08-19 19:13 - 000009225 _____ C:\Users\PC\OneDrive\Dokumenty\Kroky.xlsx
2021-08-09 18:23 - 2021-08-09 18:23 - 000001882 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity Hub.lnk
2021-08-09 18:23 - 2021-08-09 18:23 - 000000000 ____D C:\Program Files\Unity Hub
2021-08-08 18:29 - 2021-08-08 18:29 - 001823280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-08-08 18:29 - 2021-08-08 18:29 - 001393480 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-08-08 18:29 - 2021-08-08 18:29 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2021-08-08 18:28 - 2021-08-08 18:28 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll
2021-07-29 09:12 - 2021-07-30 12:18 - 000000517 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2021-07-29 09:06 - 2021-07-29 09:06 - 000001162 _____ C:\Windows\system32\config\VSMIDK
2021-07-29 09:02 - 2021-07-29 09:02 - 000000000 ____D C:\Windows\system32\BestPractices
2021-07-29 08:06 - 2021-07-29 08:06 - 000000000 ____D C:\ProgramData\SystemAcCrux
2021-07-29 08:06 - 2021-07-29 08:06 - 000000000 ____D C:\ProgramData\EaseUS Todo PCTrans
2021-07-29 08:06 - 2021-07-29 08:06 - 000000000 ____D C:\Program Files (x86)\EaseUS
2021-07-28 15:04 - 2021-08-18 21:02 - 000003158 _____ C:\Windows\system32\Tasks\Zoner.Updater.S-1-5-21-321179341-2139502707-572524282-1001
2021-07-28 15:04 - 2021-07-28 15:04 - 000001556 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Zoner Photo Studio X.lnk
2021-07-28 07:58 - 2021-07-28 07:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Parallels Toolbox

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-08-20 17:16 - 2021-02-12 18:46 - 000000000 ____D C:\FRST
2021-08-20 17:13 - 2021-06-15 15:12 - 000000000 ____D C:\Users\PC\AppData\Roaming\.tlauncher
2021-08-20 17:13 - 2021-03-25 16:55 - 000000000 ____D C:\Users\PC\AppData\Roaming\discord
2021-08-20 17:10 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-08-20 17:10 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2021-08-20 17:09 - 2021-03-25 16:55 - 000000000 ____D C:\Users\PC\AppData\Local\Discord
2021-08-20 17:08 - 2021-01-24 20:05 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-20 17:08 - 2021-01-22 16:57 - 000000000 ___RD C:\Users\PC\OneDrive
2021-08-20 08:01 - 2021-01-24 20:08 - 000000000 ____D C:\ProgramData\NVIDIA
2021-08-20 08:01 - 2021-01-24 20:05 - 001693140 _____ C:\Windows\system32\PerfStringBackup.INI
2021-08-20 08:01 - 2019-12-07 16:41 - 000716770 _____ C:\Windows\system32\perfh005.dat
2021-08-20 08:01 - 2019-12-07 16:41 - 000144948 _____ C:\Windows\system32\perfc005.dat
2021-08-20 08:01 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2021-08-20 07:55 - 2021-07-18 16:28 - 000000000 ____D C:\ProgramData\AVG
2021-08-20 07:55 - 2021-07-13 06:48 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2021-08-20 07:55 - 2021-03-06 19:11 - 000000000 ____D C:\ProgramData\Avast Software
2021-08-20 07:55 - 2020-09-27 09:51 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-08-20 07:55 - 2020-09-27 07:50 - 000008192 ___SH C:\DumpStack.log.tmp
2021-08-20 07:55 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-20 07:54 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-08-20 07:02 - 2021-07-18 17:05 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2021-08-20 07:02 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-08-19 19:38 - 2021-06-15 15:12 - 000000000 ____D C:\Users\PC\AppData\Roaming\.minecraft
2021-08-19 18:56 - 2021-07-13 06:48 - 000003206 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-08-19 18:56 - 2021-07-13 06:48 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-08-19 06:54 - 2021-01-24 20:06 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-08-18 21:02 - 2021-04-21 07:30 - 000003402 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-08-18 21:02 - 2021-04-21 07:30 - 000003178 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-08-18 21:02 - 2021-04-01 09:57 - 000002532 _____ C:\Windows\system32\Tasks\StartRPCService
2021-08-18 21:02 - 2021-01-24 20:16 - 000000000 ____D C:\Users\PC\AppData\Roaming\vlc
2021-08-18 21:02 - 2021-01-24 20:13 - 000003220 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2021-08-18 21:02 - 2020-09-27 09:53 - 000003512 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-18 21:02 - 2020-09-27 09:53 - 000003288 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-18 21:02 - 2020-09-27 07:50 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-08-16 17:25 - 2021-01-22 16:57 - 000000000 ____D C:\Users\PC\AppData\Local\PlaceholderTileLogoFolder
2021-08-15 18:58 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2021-08-15 18:53 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2021-08-15 10:15 - 2021-01-22 16:56 - 000000000 ____D C:\Users\PC\AppData\Local\Packages
2021-08-15 10:02 - 2021-01-28 17:11 - 000000000 ____D C:\Users\PC\AppData\Local\Bluestacks
2021-08-15 09:58 - 2021-01-24 20:32 - 000000000 ____D C:\Users\PC\AppData\Roaming\UnityHub
2021-08-15 09:53 - 2021-01-24 20:31 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Unity
2021-08-14 18:44 - 2021-06-06 14:05 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-08-14 18:41 - 2020-09-27 09:53 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-08-13 17:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2021-08-13 17:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2021-08-13 17:03 - 2021-01-24 20:10 - 000000000 ____D C:\Windows\system32\MRT
2021-08-13 17:01 - 2021-01-24 20:10 - 133215968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-08-11 19:02 - 2021-01-28 10:59 - 000000000 ____D C:\Users\PC\AppData\Local\CrashDumps
2021-08-08 18:32 - 2020-09-27 07:50 - 000451120 _____ C:\Windows\system32\FNTCACHE.DAT
2021-08-08 18:32 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\UNP
2021-08-08 18:32 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-08-08 18:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-08-08 18:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2021-08-08 18:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2021-08-08 18:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2021-08-08 18:32 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing
2021-08-08 18:19 - 2021-02-27 18:23 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-07-29 17:39 - 2021-05-25 15:52 - 000000000 ____D C:\Users\PC\AppData\Roaming\Discord Bot Client
2021-07-29 17:15 - 2021-03-01 11:10 - 000000000 ____D C:\ProgramData\Voicemod
2021-07-29 17:14 - 2021-03-01 11:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod
2021-07-29 17:14 - 2021-03-01 11:10 - 000000000 ____D C:\Program Files\Voicemod Desktop
2021-07-29 17:08 - 2021-04-19 10:41 - 000000000 ____D C:\Program Files\Cheat Engine 7.2
2021-07-29 09:06 - 2021-04-14 17:20 - 000006656 ____N (Microsoft Corporation) C:\Windows\system32\Drivers\Synth3dVsp.sys
2021-07-29 09:06 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\schemas
2021-07-29 09:05 - 2021-06-22 15:38 - 006555984 _____ (Microsoft Corporation) C:\Windows\system32\vmchipset.dll
2021-07-29 09:05 - 2021-06-11 15:09 - 002400696 _____ (Microsoft Corporation) C:\Windows\system32\vmwp.exe
2021-07-29 09:05 - 2021-06-05 12:33 - 000343504 _____ (Microsoft Corporation) C:\Windows\system32\TpmEngUM.dll
2021-07-29 09:05 - 2021-06-05 12:33 - 000293856 _____ (Microsoft Corporation) C:\Windows\system32\TpmEngUM138.dll
2021-07-29 09:05 - 2021-06-05 12:33 - 000212792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmsvcext.sys
2021-07-29 09:05 - 2021-04-14 17:21 - 001305416 _____ (Microsoft Corporation) C:\Windows\system32\vmemulateddevices.dll
2021-07-29 09:05 - 2021-04-14 17:21 - 000625488 _____ (Microsoft Corporation) C:\Windows\system32\VmEmulatedStorage.dll
2021-07-29 09:05 - 2021-04-14 17:21 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\vmvpci.dll
2021-07-29 09:05 - 2021-04-14 17:21 - 000374088 _____ (Microsoft Corporation) C:\Windows\system32\VmEmulatedNic.dll
2021-07-29 09:05 - 2021-04-14 17:21 - 000281416 _____ (Microsoft Corporation) C:\Windows\system32\vmicvdev.dll
2021-07-29 09:05 - 2021-04-14 17:21 - 000242512 _____ (Microsoft Corporation) C:\Windows\system32\vmsynthfcvdev.dll
2021-07-29 09:05 - 2021-04-14 17:21 - 000209208 _____ (Microsoft Corporation) C:\Windows\system32\gpupvdev.dll
2021-07-29 09:05 - 2021-04-14 17:21 - 000203080 _____ (Microsoft Corporation) C:\Windows\system32\vmicrdv.dll
2021-07-29 09:05 - 2021-04-14 17:21 - 000202040 _____ (Microsoft Corporation) C:\Windows\system32\vmtpm.dll
2021-07-29 09:05 - 2021-04-14 17:21 - 000194872 _____ (Microsoft Corporation) C:\Windows\system32\vpcievdev.dll
2021-07-29 09:05 - 2021-04-14 17:21 - 000154936 _____ (Microsoft Corporation) C:\Windows\system32\vmdebug.dll
2021-07-29 09:05 - 2021-04-14 17:20 - 000660816 _____ (Microsoft Corporation) C:\Windows\system32\vmuidevices.dll
2021-07-29 09:05 - 2021-04-14 17:20 - 000546616 _____ (Microsoft Corporation) C:\Windows\system32\vmpmem.dll
2021-07-29 09:05 - 2021-04-14 17:20 - 000530256 _____ (Microsoft Corporation) C:\Windows\system32\vmserial.dll
2021-07-29 09:05 - 2021-04-14 17:20 - 000507728 _____ (Microsoft Corporation) C:\Windows\system32\vmusrv.dll
2021-07-29 09:05 - 2021-04-14 17:20 - 000407352 _____ (Microsoft Corporation) C:\Windows\system32\VmSynthNic.dll
2021-07-29 09:05 - 2021-04-14 17:20 - 000402768 _____ (Microsoft Corporation) C:\Windows\system32\vmsynthstor.dll
2021-07-29 09:05 - 2021-04-14 17:20 - 000381776 _____ (Microsoft Corporation) C:\Windows\system32\vmsmb.dll
2021-07-29 09:05 - 2021-04-14 17:20 - 000374072 _____ C:\Windows\system32\vp9fs.dll
2021-07-29 09:05 - 2021-04-14 17:20 - 000317264 _____ (Microsoft Corporation) C:\Windows\system32\vmiccore.dll
2021-07-29 09:05 - 2021-04-14 17:20 - 000292664 _____ (Microsoft Corporation) C:\Windows\system32\vmdynmem.dll
2021-07-29 09:05 - 2021-04-14 17:20 - 000246608 _____ (Microsoft Corporation) C:\Windows\system32\vmflexio.dll
2021-07-29 09:05 - 2021-04-14 17:20 - 000211768 _____ (Microsoft Corporation) C:\Windows\system32\vmbusvdev.dll
2021-07-29 09:05 - 2021-04-14 17:20 - 000129360 _____ (Microsoft Corporation) C:\Windows\system32\vmvirtio.dll
2021-07-29 09:05 - 2021-01-24 20:21 - 000143872 _____ (Microsoft Corporation) C:\Windows\system32\hgclientservice.dll
2021-07-29 09:05 - 2020-10-09 22:48 - 000671744 _____ C:\Windows\system32\hgattest.dll
2021-07-29 09:05 - 2020-10-09 22:47 - 000109384 _____ (Microsoft Corporation) C:\Windows\system32\vmwpevents.dll
2021-07-29 09:05 - 2020-10-09 22:46 - 000206152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vpcivsp.sys
2021-07-29 09:05 - 2020-10-09 22:46 - 000071992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pcip.sys
2021-07-29 09:05 - 2019-12-07 11:10 - 000182560 _____ (Microsoft Corporation) C:\Windows\system32\vmsp.exe
2021-07-29 09:05 - 2019-12-07 11:10 - 000137728 _____ (Microsoft Corporation) C:\Windows\system32\HgsClientWmi.dll
2021-07-29 09:05 - 2019-12-07 11:10 - 000077624 _____ (Microsoft Corporation) C:\Windows\system32\rtpm.dll
2021-07-29 09:05 - 2019-12-07 11:10 - 000057856 _____ C:\Windows\system32\hgsclientplugin.dll
2021-07-29 09:05 - 2019-12-07 11:10 - 000044040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ramparser.sys
2021-07-29 09:05 - 2019-12-07 11:10 - 000043640 _____ (Microsoft Corporation) C:\Windows\system32\vmplatformca.exe
2021-07-29 09:05 - 2019-12-07 11:10 - 000037888 _____ (Microsoft Corporation) C:\Windows\system32\AttestationWmiProvider.dll
2021-07-29 09:05 - 2019-12-07 11:10 - 000035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\lunparser.sys
2021-07-29 09:05 - 2019-12-07 11:10 - 000016384 _____ C:\Windows\system32\hgclientserviceps.dll
2021-07-29 09:05 - 2019-12-07 11:10 - 000015360 _____ (Microsoft Corporation) C:\Windows\system32\HostGuardianServiceClientResources.dll
2021-07-29 09:05 - 2019-12-07 11:10 - 000012088 _____ (Microsoft Corporation) C:\Windows\system32\f1db7d81-95be-4911-935a-8ab71629112a_vmsvcext_sys.dll
2021-07-29 09:05 - 2019-12-07 11:09 - 000039440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\passthruparser.sys
2021-07-29 09:05 - 2019-12-07 11:09 - 000027448 _____ (Microsoft Corporation) C:\Windows\system32\VrdUmed.dll
2021-07-29 09:05 - 2019-12-07 11:09 - 000006658 _____ C:\Windows\system32\VmChipset Third-Party Notices.txt
2021-07-29 09:04 - 2021-04-14 17:21 - 000087888 _____ (Microsoft Corporation) C:\Windows\system32\vmhgs.dll
2021-07-29 09:04 - 2021-02-06 12:34 - 000183104 _____ (Microsoft Corporation) C:\Windows\system32\HyperVSysprepProvider.dll
2021-07-29 09:03 - 2021-06-22 15:38 - 014207824 _____ (Microsoft Corporation) C:\Windows\system32\vmms.exe
2021-07-29 09:03 - 2021-06-05 12:33 - 000672592 _____ (Microsoft Corporation) C:\Windows\system32\vmcompute.dll
2021-07-29 09:03 - 2021-05-14 14:56 - 000176968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storvsp.sys
2021-07-29 09:03 - 2021-04-14 17:21 - 000568648 _____ (Microsoft Corporation) C:\Windows\system32\vsconfig.dll
2021-07-29 09:03 - 2021-04-14 17:21 - 000504120 _____ (Microsoft Corporation) C:\Windows\system32\VmDataStore.dll
2021-07-29 09:03 - 2021-04-14 17:21 - 000175944 _____ (Microsoft Corporation) C:\Windows\system32\hvc.exe
2021-07-29 09:03 - 2021-04-14 17:20 - 000405840 _____ (Microsoft Corporation) C:\Windows\system32\vmprox.dll
2021-07-29 09:03 - 2021-04-14 17:20 - 000261432 _____ (Microsoft Corporation) C:\Windows\system32\VmCrashDump.dll
2021-07-29 09:03 - 2021-04-14 17:20 - 000260408 _____ (Microsoft Corporation) C:\Windows\system32\hcsdiag.exe
2021-07-29 09:03 - 2021-04-14 17:20 - 000079184 _____ (Microsoft Corporation) C:\Windows\system32\vmwpctrl.dll
2021-07-29 09:03 - 2021-02-27 18:37 - 000036176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvsocketcontrol.sys
2021-07-29 09:03 - 2021-01-24 20:21 - 000286520 _____ (Microsoft Corporation) C:\Windows\system32\vmsif.dll
2021-07-29 09:03 - 2021-01-24 20:21 - 000129336 _____ (Microsoft Corporation) C:\Windows\system32\rdp4vs.dll
2021-07-29 09:03 - 2020-10-09 22:47 - 000122168 _____ (Microsoft Corporation) C:\Windows\system32\vmsifcore.dll
2021-07-29 09:03 - 2020-10-09 22:47 - 000027960 _____ (Microsoft Corporation) C:\Windows\system32\vmsifproxystub.dll
2021-07-29 09:03 - 2019-12-07 11:10 - 001579818 _____ C:\Windows\system32\WindowsVirtualization.V2.mof
2021-07-29 09:03 - 2019-12-07 11:10 - 001152064 _____ C:\Windows\system32\WindowsHyperVCluster.V2.mof
2021-07-29 09:03 - 2019-12-07 11:10 - 000073744 _____ (Microsoft Corporation) C:\Windows\system32\vmmsprox.dll
2021-07-29 09:03 - 2019-12-07 11:09 - 000222008 _____ (Microsoft Corporation) C:\Windows\system32\NetMgmtIF.dll
2021-07-29 09:03 - 2019-12-07 11:09 - 000151352 _____ C:\Windows\system32\nmscrub.exe
2021-07-29 09:03 - 2019-12-07 11:09 - 000142648 _____ (Microsoft Corporation) C:\Windows\system32\nmbind.exe
2021-07-29 09:03 - 2019-12-07 11:09 - 000123704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbkmclr.sys
2021-07-29 09:03 - 2019-12-07 11:09 - 000061240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pvhdparser.sys
2021-07-29 09:03 - 2019-12-07 11:09 - 000049192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdparser.sys
2021-07-29 09:03 - 2019-12-07 11:09 - 000037112 _____ (Microsoft Corporation) C:\Windows\system32\sbresources.dll
2021-07-29 09:03 - 2019-12-07 11:09 - 000031544 _____ (Microsoft Corporation) C:\Windows\system32\vmcomputeeventlog.dll
2021-07-29 09:03 - 2019-12-07 11:09 - 000012816 _____ (Microsoft Corporation) C:\Windows\system32\f989b52d-f928-44a3-9bf1-bf0c1da6a0d6_HyperV-DeviceVirtualization.dll
2021-07-29 09:03 - 2019-12-07 11:09 - 000012600 _____ (Microsoft Corporation) C:\Windows\system32\d4d78066-e6db-44b7-b5cd-2eb82dce620c_HyperV-ComputeLegacy.dll
2021-07-29 09:03 - 2019-12-07 11:09 - 000012600 _____ (Microsoft Corporation) C:\Windows\system32\c4d66f00-b6f0-4439-ac9b-c5ea13fe54d7_HyperV-ComputeCore.dll
2021-07-28 15:04 - 2021-02-04 13:20 - 000000000 ____D C:\ProgramData\Zoner
2021-07-28 14:54 - 2021-07-19 06:57 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Parallels Toolbox
2021-07-28 12:24 - 2021-01-25 11:22 - 000000000 ____D C:\Users\PC\AppData\Local\D3DSCache
2021-07-27 20:08 - 2021-01-25 11:06 - 000000000 ____D C:\Users\PC\AppData\Local\.IdentityService

==================== Files in the root of some directories ========

2021-01-29 09:16 - 2021-01-29 09:16 - 000000016 _____ () C:\Users\PC\AppData\Roaming\obs-virtualcam.txt
2021-07-19 06:57 - 2021-08-20 17:16 - 000216720 _____ () C:\Users\PC\AppData\Local\parallels_toolbox.log
2021-08-15 18:33 - 2021-08-20 17:08 - 000008852 _____ () C:\Users\PC\AppData\Local\prl_toolbox_ceplog.xml
2021-06-05 16:09 - 2021-06-05 16:09 - 000009213 _____ () C:\Users\PC\AppData\Local\recently-used.xbel
2021-02-04 14:06 - 2021-04-18 17:04 - 000007602 _____ () C:\Users\PC\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)










Addition.txt

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-08-2021
Ran by PC (20-08-2021 17:17:40)
Running from C:\Users\PC\OneDrive\Plocha
Windows 10 Home Version 21H1 19043.1165 (X64) (2021-01-22 14:54:55)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-321179341-2139502707-572524282-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-321179341-2139502707-572524282-503 - Limited - Disabled)
Guest (S-1-5-21-321179341-2139502707-572524282-501 - Limited - Disabled)
PC (S-1-5-21-321179341-2139502707-572524282-1001 - Administrator - Enabled) => C:\Users\PC
WDAGUtilityAccount (S-1-5-21-321179341-2139502707-572524282-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Android Studio (HKLM\...\Android Studio) (Version: 4.2 - Google LLC)
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.6.2474 - Avast Software)
Blackmagic RAW Common Components (HKLM\...\{60461BA6-AFA0-4D54-AFE1-54EC717AA7D9}) (Version: 1.8.2 - Blackmagic Design)
DaVinci Resolve (HKLM\...\{47B30418-F683-4F19-BEF9-BA5E490154BF}) (Version: 16.2.8005 - Blackmagic Design)
Discord (HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Discord Bot Client 3.1.0 (HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\d7d6c003-3311-5417-82ce-9b214b524ab2) (Version: 3.1.0 - Flam3rboy)
GeoGebra Classic (HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\GeoGebra_6) (Version: 6.0.637 - International GeoGebra Institute)
GIMP 2.10.24 (HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\GIMP-2_is1) (Version: 2.10.24 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 92.0.4515.159 - Google LLC)
Inno Setup verze 6.1.2 (HKLM-x32\...\Inno Setup 6_is1) (Version: 6.1.2 - jrsoftware.org)
Intel® Hardware Accelerated Execution Manager (HKLM\...\HAXM) (Version: 7.6.5 - Intel Corporation)
Java 8 Update 281 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180281F0}) (Version: 8.0.2810.9 - Oracle Corporation)
Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation)
Java SE Development Kit 8 Update 281 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180281}) (Version: 8.0.2810.9 - Oracle Corporation)
LenovoUsbDriver 1.0.9 (HKLM-x32\...\LenovoUsbDriver) (Version: 1.0.9 - Lenovo)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 92.0.902.73 - Microsoft Corporation)
Microsoft Office 2016 pro domácnosti - cs-cz (HKLM\...\HomeStudentRetail - cs-cz) (Version: 16.0.14228.20250 - Microsoft Corporation)
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 21.150.0725.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{852D8FE5-BC66-4061-B1C4-CADF51E5B27D}) (Version: 2.82.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29910 (HKLM-x32\...\{53f1dc9d-ed94-4650-a079-129785ce7905}) (Version: 14.28.29910.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29910 (HKLM-x32\...\{c65252bf-6d9a-40b9-baf9-27e4e23dfa2f}) (Version: 14.28.29910.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.9.3365.38425 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.14 (x86) (HKLM-x32\...\{910975ce-2379-434d-8e20-b36e068df1a9}) (Version: 3.1.14.29915 - Microsoft Corporation)
Node.js (HKLM\...\{140389EF-5573-4B66-9218-B739F767AFBD}) (Version: 14.17.0 - Node.js Foundation)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.9.5 - Notepad++ Team)
NVIDIA Ovladač HD audia 1.3.38.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.35 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 456.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.71 - NVIDIA Corporation)
NVIDIA USBC Driver 1.45.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.45.831.832 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.0.1 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14228.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14228.20222 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14228.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Parallels Toolbox (HKLM\...\{84BABB60-4000-4F9B-9D35-BE27E7FEDE63}) (Version: 5.0.0.3021 - Parallels International GmbH)
Pivot Animator version 4.2.8 (HKLM-x32\...\Pivot Animator_is1) (Version: 4.2.8 - Motus Software Ltd)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Unity 2021.1.10f1 (HKLM-x32\...\Unity 2021.1.10f1) (Version: 2021.1.10f1 - Unity Technologies ApS)
Unity Hub 2.4.5 (HKLM\...\{Unity Technologies - Hub}) (Version: 2.4.5 - Unity Technologies Inc.)
Visual Studio Community 2019 (HKLM-x32\...\9601d9a3) (Version: 16.9.31105.61 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 2.16.0.1 - Voicemod S.L.)
vs_communitymsi (HKLM-x32\...\{03119992-794E-4BD1-8811-050DD87BC41C}) (Version: 16.9.31004 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{72E86320-AFF2-44F8-9C8B-0BD51E5B14DE}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{6E29FB21-642A-4E68-BD8B-745E679EB9F5}) (Version: 16.9.31004 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{D12A3F67-709D-477A-B5D3-D820E4C745E3}) (Version: 16.9.31004 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{B64FFE5E-EDCF-49DE-B528-C5AA0D0C313B}) (Version: 16.9.31004 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{27B16914-BC5D-4018-8074-071262A27F6D}) (Version: 16.2.28917 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{621CB344-D1D9-4F17-A5B5-36BBBC4F6FFA}) (Version: 16.9.31025 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{EFF1C93E-E912-4D00-85DA-5D0545F4F7FD}) (Version: 16.9.31004 - Microsoft Corporation) Hidden
vs_vswebprotocolselectormsi (HKLM-x32\...\{6C9A7596-C8E7-44B0-B5C1-15D5CB97499A}) (Version: 16.9.31004 - Microsoft Corporation) Hidden
vs_vswebprotocolselectormsires (HKLM-x32\...\{F931C15E-0ED3-4B92-942A-01EC2AF74BE6}) (Version: 16.9.31004 - Microsoft Corporation) Hidden
Zoner Photo Studio X CS (HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\ZPS X) (Version: 19.2103.2.324 - ZONER software)
Zoom (HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\ZoomUMX) (Version: 5.5.4 (13142.0301) - Zoom Video Communications, Inc.)

Packages:
=========
7-Zip File Manager (Unofficial) -> C:\Program Files\WindowsApps\HaukeGtze.7-ZipFileManagerUnofficial_1.1900.3.0_x64__6bk20wvc8rfx2 [2021-01-28] (Hauke Hasselberg)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-02-03] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-21] (Microsoft Corporation)
Files -> C:\Program Files\WindowsApps\49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t [2021-07-14] (Yair A)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-03-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-03-01] (Microsoft Corporation) [MS Ad]
Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.50.42141.0_x64__8wekyb3d8bbwe [2021-08-11] (Microsoft Corporation) [Startup Task]
ModernFlyouts (Preview) -> C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg [2021-07-14] (Sam G) [Startup Task]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.578.0_x86__zpdnekdrzrea0 [2021-08-19] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{28A80003-18FD-411D-B0A3-3C81F618E22B}\InprocServer32 -> C:\Users\PC\AppData\Local\Kingsoft\WPS Office\11.2.0.10152\office6\kwpsmenushellext64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-08-20] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-08-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2021-03-22] (Notepad++ -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-08-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Parallels Toolbox] -> {8EF5B345-1F03-49AF-BFF4-22E408646848} => C:\Program Files\Parallels\Parallels Toolbox\ShellExtension.dll [2021-07-23] (Parallels International GmbH -> )
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-08-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [Parallels Toolbox] -> {8EF5B345-1F03-49AF-BFF4-22E408646848} => C:\Program Files\Parallels\Parallels Toolbox\ShellExtension.dll [2021-07-23] (Parallels International GmbH -> )
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2020-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-08-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1_S-1-5-21-321179341-2139502707-572524282-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\PC\AppData\Local\Kingsoft\WPS Office\11.2.0.10152\office6\kwpsmenushellext64.dll -> No File
ContextMenuHandlers4_S-1-5-21-321179341-2139502707-572524282-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\PC\AppData\Local\Kingsoft\WPS Office\11.2.0.10152\office6\kwpsmenushellext64.dll -> No File

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============












Děkuji :)

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: kontrola logu

#2 Příspěvek od Rudy »

Zdravím!
Log FRST je bez hlavičky a log Additiom není kompletní. Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

czech 08
Návštěvník
Návštěvník
Příspěvky: 38
Registrován: 12 úno 2021 16:28

Re: kontrola logu

#3 Příspěvek od czech 08 »

Pošlu log frst a adition raději nový ještě jednou.

czech 08
Návštěvník
Návštěvník
Příspěvky: 38
Registrován: 12 úno 2021 16:28

Re: kontrola logu

#4 Příspěvek od czech 08 »

FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-08-2021
Ran by PC (administrator) on DESKTOP-VNNSM0S (ATComputers CZC) (31-08-2021 18:02:42)
Running from C:\Users\PC\OneDrive\Plocha
Loaded Profiles: PC
Platform: Windows 10 Home Version 21H1 19043.1165 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <5>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Discord Inc. -> Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-1.0.9002\Discord.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <52>
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft) [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Users\PC\AppData\Roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
(Parallels International GmbH -> Parallels) C:\Program Files\Parallels\Parallels Toolbox\PrlToolbox.exe
(Sam G) C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\ModernFlyoutsHost.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [123672 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [tvncontrol] => "C:\Program Files\TightVNC\tvnserver.exe" -controlservice -slave
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\Run: [OneDrive] => C:\Program Files (x86)\Microsoft OneDrive\OneDrive.exe [2196344 2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\Run: [Discord] => C:\Users\PC\AppData\Local\Discord\Update.exe [1512104 2021-05-24] (Discord Inc. -> GitHub)
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Users\PC\AppData\Local\Programs\Zoner\ZPS X\binary\Program32\ZPSTRAY.EXE [811680 2021-06-18] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\MountPoints2: {0276854f-87b3-11eb-ab36-244bfe775eb1} - "F:\Lenovo_Suite.exe"
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\MountPoints2: {ea3aec86-83ed-11eb-ab32-244bfe775eb1} - "E:\LenovoUsbDriver.exe"
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HPLJ1020LM: C:\Windows\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\92.0.4515.159\Installer\chrmstp.exe [2021-08-19] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Parallels Toolbox.lnk [2021-07-19]
ShortcutTarget: Parallels Toolbox.lnk -> C:\Program Files\Parallels\Parallels Toolbox\PrlToolbox.exe (Parallels International GmbH -> Parallels)
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2021-07-13]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {3E1302F4-A7DB-47F4-938B-486E88F3A128} - System32\Tasks\Zoner.Updater.S-1-5-21-321179341-2139502707-572524282-1001 => C:\ProgramData\Zoner\Zoner.Installer.Core\Updater.exe [1602464 2021-07-28] (ZONER software, a.s. -> ZONER software, a.s.)
Task: {459248BF-520A-4EE2-BBFA-B030BB3DD6ED} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4902680 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
Task: {585AB7F3-2F7D-4485-92FE-513A0C73F3A2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-24] (Google LLC -> Google LLC)
Task: {5887142D-8C62-4FF2-97A8-BECDE52F9DDA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-24] (Google LLC -> Google LLC)
Task: {598E11FD-A6FD-494B-9A5E-39FC278F38CB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21858176 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {6B340785-12D2-4C44-94E6-8E247576B529} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113496 2021-08-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {8251A344-9B73-4FF0-BF42-638D0FFAB24D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21858176 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {B6A7D54F-BDBD-4636-8150-DFABE24253B7} - System32\Tasks\Parallels\Toolbox\DisableCamera => C:\Program Files\Parallels\Parallels Toolbox\DisableCamera.exe [772984 2021-07-23] (Parallels International GmbH -> Parallels)
Task: {C1100914-8E9A-40F8-89E4-2AF6D4403183} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-08-20] (Avast Software s.r.o. -> Avast Software)
Task: {D51B55CD-FD32-45C3-B42F-745D0FEFFDD2} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {DF425217-2062-486D-A22B-C730A94770F9} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files (x86)\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [2989424 2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {F48D2DB3-D10D-40BF-B360-8321F70115DD} - System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIS => C:\Windows\SysWOW64\XPSViewer\TasksG\G-1-10-52\TG_1.3.54.41.exe <==== ATTENTION
Task: {F5F72942-91E8-4EC7-BEEB-A501DDBE6F9B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [113496 2021-08-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {F91A1D3E-2497-4AC4-AD8C-3F688C921D60} - System32\Tasks\StartRPCService => NET [Argument = START RPCService]

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Intel PTT EK Recertification.job => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 86.49.5.221 86.49.5.222
Tcpip\..\Interfaces\{03ed72bc-7c71-4e7f-9275-79a541e551fb}: [DhcpNameServer] 86.49.5.221 86.49.5.222

Edge:
=======
Edge Profile: C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-26]

FireFox:
========
FF DefaultProfile: 2hjvx19l.default
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\2hjvx19l.default [2021-06-04]
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\wkt3qk0h.default-release [2021-06-04]
FF DownloadDir: E:
FF Session Restore: Mozilla\Firefox\Profiles\wkt3qk0h.default-release -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\wkt3qk0h.default-release -> hxxps://mail.google.com
FF Extension: (No Name) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\wkt3qk0h.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-06-04]
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-03-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-03-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-07-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [No File]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2021-08-31]
CHR Notifications: Default -> hxxps://aternos.org; hxxps://golddigger.frvr.com; hxxps://meet.google.com; hxxps://top.gg; hxxps://web.whatsapp.com; hxxps://www.instagram.com; hxxps://www.youtube.com
CHR NewTab: Default -> Active:"chrome-extension://hdpcadigjkbcpnlcpbcohpafiaefanki/index.html"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-24]
CHR Extension: (Just Black) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2021-03-01]
CHR Extension: (Dokumenty) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-24]
CHR Extension: (Disk Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-24]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-24]
CHR Extension: (uBlock Origin) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-07-29]
CHR Extension: (Smart Auto Reload) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmojnplfenlnmkmgnkmkomnnfnklkkbj [2021-02-27]
CHR Extension: (Tabulky) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-24]
CHR Extension: (HTTPS Everywhere) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2021-07-14]
CHR Extension: (Dokumenty Google offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-29]
CHR Extension: (Avast Online Security) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-08-20]
CHR Extension: (nightTab) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdpcadigjkbcpnlcpbcohpafiaefanki [2021-06-07]
CHR Extension: (CrossPilot) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\migomhggnppjdijnfkiimcpjgnhmnale [2021-06-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-24]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-07-27]
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\System Profile [2021-03-06]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8262736 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [627480 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [374552 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9166736 2021-08-23] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\FileSyncHelper.exe [2382200 2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\OneDriveUpdaterService.exe [2739576 2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\NisSrv.exe [2483624 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MsMpEng.exe [128392 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [269200 2020-09-27] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [35720 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [218976 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [367640 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [250392 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [99352 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [17344 2021-08-20] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [41352 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [184648 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [559816 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [108408 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [82904 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851704 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [471920 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [215392 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [328568 2021-08-20] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [174968 2021-01-07] (Oracle Corporation -> Oracle Corporation)
R3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [48136 2021-02-25] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49544 2021-02-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\Windows\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [420088 2021-02-27] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [72952 2021-02-27] (Microsoft Windows -> Microsoft Corporation)
U1 aswbdisk; no ImagePath
U1 avgbdisk; no ImagePath
S3 WacHidRouter; \SystemRoot\System32\drivers\wachidrouter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-08-26 20:21 - 2021-08-31 16:39 - 000000858 _____ C:\Users\PC\AppData\Local\prl_toolbox_ceplog.xml
2021-08-21 09:42 - 2021-08-21 09:42 - 000000000 ____D C:\Users\PC\OneDrive\Dokumenty\Visual Studio 2019
2021-08-21 09:24 - 2021-08-21 09:24 - 000000000 ____D C:\Users\PC\OneDrive\Dokumenty\Z dokumentů
2021-08-21 09:02 - 2021-08-31 17:15 - 000000000 ____D C:\Users\PC\AppData\Local\Discord
2021-08-20 17:41 - 2021-08-20 17:41 - 000000000 ____D C:\Users\PC\AppData\Local\BlueStacksSetup
2021-08-20 07:03 - 2021-08-20 07:03 - 000000000 ____D C:\Users\PC\AppData\Local\Avast Software
2021-08-20 07:02 - 2021-08-20 07:02 - 000559816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000471920 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000339736 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-08-20 07:02 - 2021-08-20 07:02 - 000328568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000250392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000215392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000184648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000108408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000099352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000082904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000041352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000017344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswElam.sys
2021-08-20 07:02 - 2021-08-20 07:02 - 000003990 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-08-20 07:02 - 2021-08-20 07:02 - 000002160 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2021-08-20 07:02 - 2021-08-20 07:02 - 000000000 ____D C:\Users\PC\AppData\Roaming\Avast Software
2021-08-20 07:02 - 2021-08-20 07:02 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2021-08-20 07:02 - 2021-08-20 07:01 - 000851704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-08-20 07:02 - 2021-08-20 07:01 - 000367640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-08-20 07:02 - 2021-08-20 07:01 - 000218976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-08-20 07:02 - 2021-08-20 07:01 - 000035720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-08-20 07:01 - 2021-08-20 07:01 - 000000000 ____D C:\Program Files\Avast Software
2021-08-20 07:00 - 2021-08-20 07:00 - 004146112 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgremoverx.exe
2021-08-20 06:54 - 2021-08-20 06:54 - 000000000 ___HD C:\$AV_AVG
2021-08-15 18:53 - 2021-08-15 18:53 - 000000000 ___HD C:\$WinREAgent
2021-08-13 17:00 - 2021-08-13 17:00 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-08-13 17:00 - 2021-08-13 17:00 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-08-13 17:00 - 2021-08-13 17:00 - 000011347 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-08-10 19:11 - 2021-08-21 09:12 - 000014895 _____ C:\Users\PC\OneDrive\Dokumenty\Kroky.xlsx
2021-08-09 18:23 - 2021-08-09 18:23 - 000001882 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity Hub.lnk
2021-08-09 18:23 - 2021-08-09 18:23 - 000000000 ____D C:\Program Files\Unity Hub
2021-08-08 18:29 - 2021-08-08 18:29 - 001823280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-08-08 18:29 - 2021-08-08 18:29 - 001393480 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-08-08 18:29 - 2021-08-08 18:29 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2021-08-08 18:28 - 2021-08-08 18:28 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-08-31 18:02 - 2021-02-12 18:46 - 000000000 ____D C:\FRST
2021-08-31 18:02 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-31 17:54 - 2021-03-25 16:55 - 000000000 ____D C:\Users\PC\AppData\Roaming\discord
2021-08-31 17:51 - 2021-01-28 10:59 - 000000000 ____D C:\Users\PC\AppData\Local\CrashDumps
2021-08-31 17:25 - 2021-01-24 20:05 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-31 17:24 - 2021-06-15 15:12 - 000000000 ____D C:\Users\PC\AppData\Roaming\.minecraft
2021-08-31 16:22 - 2021-06-06 14:05 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-08-31 16:21 - 2021-01-24 20:05 - 001693140 _____ C:\Windows\system32\PerfStringBackup.INI
2021-08-31 16:21 - 2020-09-27 09:53 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-08-31 16:21 - 2019-12-07 16:41 - 000716770 _____ C:\Windows\system32\perfh005.dat
2021-08-31 16:21 - 2019-12-07 16:41 - 000144948 _____ C:\Windows\system32\perfc005.dat
2021-08-31 16:21 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-08-31 16:21 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2021-08-31 16:21 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2021-08-31 16:15 - 2021-06-15 15:12 - 000000000 ____D C:\Users\PC\AppData\Roaming\.tlauncher
2021-08-31 16:15 - 2021-01-22 16:57 - 000000000 ___RD C:\Users\PC\OneDrive
2021-08-31 16:14 - 2021-01-24 20:08 - 000000000 ____D C:\ProgramData\NVIDIA
2021-08-31 16:14 - 2020-09-27 09:51 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-08-31 16:14 - 2020-09-27 07:50 - 000008192 ___SH C:\DumpStack.log.tmp
2021-08-31 16:14 - 2020-09-27 07:50 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-08-21 11:24 - 2021-01-25 11:22 - 000000000 ____D C:\Users\PC\AppData\Local\D3DSCache
2021-08-21 09:42 - 2021-01-25 11:06 - 000000000 ____D C:\Users\PC\AppData\Local\.IdentityService
2021-08-21 09:41 - 2021-01-24 20:16 - 000000000 ____D C:\Users\PC\AppData\Roaming\vlc
2021-08-21 09:23 - 2021-01-22 16:56 - 000000000 ____D C:\Users\PC\AppData\Local\Packages
2021-08-21 09:16 - 2021-01-24 20:32 - 000000000 ____D C:\Users\PC\AppData\Roaming\UnityHub
2021-08-21 09:16 - 2021-01-24 20:31 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Unity
2021-08-21 09:09 - 2021-07-28 15:04 - 000003158 _____ C:\Windows\system32\Tasks\Zoner.Updater.S-1-5-21-321179341-2139502707-572524282-1001
2021-08-21 09:09 - 2021-07-18 17:05 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2021-08-21 09:09 - 2021-07-13 06:48 - 000002728 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-08-21 09:09 - 2021-04-21 07:30 - 000003402 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-08-21 09:09 - 2021-04-21 07:30 - 000003178 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-08-21 09:09 - 2021-04-01 09:57 - 000002532 _____ C:\Windows\system32\Tasks\StartRPCService
2021-08-21 09:09 - 2021-01-24 20:13 - 000003220 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2021-08-21 09:09 - 2020-09-27 09:53 - 000003512 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-08-21 09:09 - 2020-09-27 09:53 - 000003288 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-08-21 09:02 - 2021-03-25 16:55 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2021-08-21 09:02 - 2021-03-25 16:55 - 000000000 ____D C:\Users\PC\AppData\Local\SquirrelTemp
2021-08-21 09:02 - 2021-02-05 13:06 - 000000000 ____D C:\Users\PC\AppData\Local\babl-0.1
2021-08-20 19:18 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2021-08-20 17:41 - 2021-01-28 17:11 - 000000000 ____D C:\Users\Public\BlueStacks
2021-08-20 17:41 - 2021-01-28 17:11 - 000000000 ____D C:\Users\PC\AppData\Local\Bluestacks
2021-08-20 17:28 - 2021-01-22 16:57 - 000000000 ____D C:\Users\PC\AppData\Local\PlaceholderTileLogoFolder
2021-08-20 07:55 - 2021-07-18 16:28 - 000000000 ____D C:\ProgramData\AVG
2021-08-20 07:55 - 2021-07-13 06:48 - 000000000 ____D C:\Program Files (x86)\Microsoft OneDrive
2021-08-20 07:55 - 2021-03-06 19:11 - 000000000 ____D C:\ProgramData\Avast Software
2021-08-20 07:54 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-08-20 07:02 - 2019-12-07 11:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-08-19 18:56 - 2021-07-13 06:48 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-08-19 06:54 - 2021-01-24 20:06 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-08-15 18:58 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2021-08-13 17:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2021-08-13 17:05 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2021-08-13 17:03 - 2021-01-24 20:10 - 000000000 ____D C:\Windows\system32\MRT
2021-08-13 17:01 - 2021-01-24 20:10 - 133215968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-08-08 18:32 - 2020-09-27 07:50 - 000451120 _____ C:\Windows\system32\FNTCACHE.DAT
2021-08-08 18:32 - 2019-12-07 11:14 - 000000000 ___SD C:\Windows\system32\UNP
2021-08-08 18:32 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-08-08 18:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-08-08 18:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2021-08-08 18:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2021-08-08 18:32 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2021-08-08 18:32 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing
2021-08-08 18:19 - 2021-02-27 18:23 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools

==================== Files in the root of some directories ========

2021-01-29 09:16 - 2021-01-29 09:16 - 000000016 _____ () C:\Users\PC\AppData\Roaming\obs-virtualcam.txt
2021-07-19 06:57 - 2021-08-31 17:51 - 000231358 _____ () C:\Users\PC\AppData\Local\parallels_toolbox.log
2021-08-26 20:21 - 2021-08-31 16:39 - 000000858 _____ () C:\Users\PC\AppData\Local\prl_toolbox_ceplog.xml
2021-06-05 16:09 - 2021-06-05 16:09 - 000009213 _____ () C:\Users\PC\AppData\Local\recently-used.xbel
2021-02-04 14:06 - 2021-04-18 17:04 - 000007602 _____ () C:\Users\PC\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

adition.txt

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-08-2021
Ran by PC (31-08-2021 18:04:18)
Running from C:\Users\PC\OneDrive\Plocha
Windows 10 Home Version 21H1 19043.1165 (X64) (2021-01-22 14:54:55)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-321179341-2139502707-572524282-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-321179341-2139502707-572524282-503 - Limited - Disabled)
Guest (S-1-5-21-321179341-2139502707-572524282-501 - Limited - Disabled)
PC (S-1-5-21-321179341-2139502707-572524282-1001 - Administrator - Enabled) => C:\Users\PC
WDAGUtilityAccount (S-1-5-21-321179341-2139502707-572524282-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Android Studio (HKLM\...\Android Studio) (Version: 4.2 - Google LLC)
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.6.2474 - Avast Software)
Blackmagic RAW Common Components (HKLM\...\{60461BA6-AFA0-4D54-AFE1-54EC717AA7D9}) (Version: 1.8.2 - Blackmagic Design)
DaVinci Resolve (HKLM\...\{47B30418-F683-4F19-BEF9-BA5E490154BF}) (Version: 16.2.8005 - Blackmagic Design)
Discord (HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\Discord) (Version: 1.0.9002 - Discord Inc.)
Discord Bot Client 3.1.0 (HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\d7d6c003-3311-5417-82ce-9b214b524ab2) (Version: 3.1.0 - Flam3rboy)
GeoGebra Classic (HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\GeoGebra_6) (Version: 6.0.637 - International GeoGebra Institute)
GIMP 2.10.24 (HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\GIMP-2_is1) (Version: 2.10.24 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 92.0.4515.159 - Google LLC)
Inno Setup verze 6.1.2 (HKLM-x32\...\Inno Setup 6_is1) (Version: 6.1.2 - jrsoftware.org)
Intel® Hardware Accelerated Execution Manager (HKLM\...\HAXM) (Version: 7.6.5 - Intel Corporation)
Java 8 Update 281 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180281F0}) (Version: 8.0.2810.9 - Oracle Corporation)
Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation)
Java SE Development Kit 8 Update 281 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180281}) (Version: 8.0.2810.9 - Oracle Corporation)
LenovoUsbDriver 1.0.9 (HKLM-x32\...\LenovoUsbDriver) (Version: 1.0.9 - Lenovo)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 92.0.902.84 - Microsoft Corporation)
Microsoft Office 2016 pro domácnosti - cs-cz (HKLM\...\HomeStudentRetail - cs-cz) (Version: 16.0.14326.20238 - Microsoft Corporation)
Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 21.150.0725.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{852D8FE5-BC66-4061-B1C4-CADF51E5B27D}) (Version: 2.82.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29910 (HKLM-x32\...\{53f1dc9d-ed94-4650-a079-129785ce7905}) (Version: 14.28.29910.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29910 (HKLM-x32\...\{c65252bf-6d9a-40b9-baf9-27e4e23dfa2f}) (Version: 14.28.29910.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.9.3365.38425 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.14 (x86) (HKLM-x32\...\{910975ce-2379-434d-8e20-b36e068df1a9}) (Version: 3.1.14.29915 - Microsoft Corporation)
Node.js (HKLM\...\{140389EF-5573-4B66-9218-B739F767AFBD}) (Version: 14.17.0 - Node.js Foundation)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.9.5 - Notepad++ Team)
NVIDIA Ovladač HD audia 1.3.38.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.35 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 456.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.71 - NVIDIA Corporation)
NVIDIA USBC Driver 1.45.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.45.831.832 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.0.1 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14326.20238 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14326.20238 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14326.20238 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Parallels Toolbox (HKLM\...\{84BABB60-4000-4F9B-9D35-BE27E7FEDE63}) (Version: 5.0.0.3021 - Parallels International GmbH)
Pivot Animator version 4.2.8 (HKLM-x32\...\Pivot Animator_is1) (Version: 4.2.8 - Motus Software Ltd)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Unity 2021.1.10f1 (HKLM-x32\...\Unity 2021.1.10f1) (Version: 2021.1.10f1 - Unity Technologies ApS)
Unity Hub 2.4.5 (HKLM\...\{Unity Technologies - Hub}) (Version: 2.4.5 - Unity Technologies Inc.)
Visual Studio Community 2019 (HKLM-x32\...\9601d9a3) (Version: 16.9.31105.61 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 2.16.0.1 - Voicemod S.L.)
vs_communitymsi (HKLM-x32\...\{03119992-794E-4BD1-8811-050DD87BC41C}) (Version: 16.9.31004 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{72E86320-AFF2-44F8-9C8B-0BD51E5B14DE}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{6E29FB21-642A-4E68-BD8B-745E679EB9F5}) (Version: 16.9.31004 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{D12A3F67-709D-477A-B5D3-D820E4C745E3}) (Version: 16.9.31004 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{B64FFE5E-EDCF-49DE-B528-C5AA0D0C313B}) (Version: 16.9.31004 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{27B16914-BC5D-4018-8074-071262A27F6D}) (Version: 16.2.28917 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{621CB344-D1D9-4F17-A5B5-36BBBC4F6FFA}) (Version: 16.9.31025 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{EFF1C93E-E912-4D00-85DA-5D0545F4F7FD}) (Version: 16.9.31004 - Microsoft Corporation) Hidden
vs_vswebprotocolselectormsi (HKLM-x32\...\{6C9A7596-C8E7-44B0-B5C1-15D5CB97499A}) (Version: 16.9.31004 - Microsoft Corporation) Hidden
vs_vswebprotocolselectormsires (HKLM-x32\...\{F931C15E-0ED3-4B92-942A-01EC2AF74BE6}) (Version: 16.9.31004 - Microsoft Corporation) Hidden
Zoner Photo Studio X CS (HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\ZPS X) (Version: 19.2103.2.324 - ZONER software)
Zoom (HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\ZoomUMX) (Version: 5.5.4 (13142.0301) - Zoom Video Communications, Inc.)

Packages:
=========
7-Zip File Manager (Unofficial) -> C:\Program Files\WindowsApps\HaukeGtze.7-ZipFileManagerUnofficial_1.1900.3.0_x64__6bk20wvc8rfx2 [2021-01-28] (Hauke Hasselberg)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-02-03] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-21] (Microsoft Corporation)
Files -> C:\Program Files\WindowsApps\49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t [2021-07-14] (Yair A)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-03-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-03-01] (Microsoft Corporation) [MS Ad]
Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.51.42312.0_x64__8wekyb3d8bbwe [2021-08-31] (Microsoft Corporation) [Startup Task]
ModernFlyouts (Preview) -> C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg [2021-07-14] (Sam G) [Startup Task]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0 [2021-08-31] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{28A80003-18FD-411D-B0A3-3C81F618E22B}\InprocServer32 -> C:\Users\PC\AppData\Local\Kingsoft\WPS Office\11.2.0.10152\office6\kwpsmenushellext64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-08-20] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-08-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2021-03-22] (Notepad++ -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-08-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Parallels Toolbox] -> {8EF5B345-1F03-49AF-BFF4-22E408646848} => C:\Program Files\Parallels\Parallels Toolbox\ShellExtension.dll [2021-07-23] (Parallels International GmbH -> )
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-08-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [Parallels Toolbox] -> {8EF5B345-1F03-49AF-BFF4-22E408646848} => C:\Program Files\Parallels\Parallels Toolbox\ShellExtension.dll [2021-07-23] (Parallels International GmbH -> )
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.150.0725.0001\amd64\FileSyncShell64.dll [2021-08-19] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2020-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-08-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1_S-1-5-21-321179341-2139502707-572524282-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\PC\AppData\Local\Kingsoft\WPS Office\11.2.0.10152\office6\kwpsmenushellext64.dll -> No File
ContextMenuHandlers4_S-1-5-21-321179341-2139502707-572524282-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\PC\AppData\Local\Kingsoft\WPS Office\11.2.0.10152\office6\kwpsmenushellext64.dll -> No File

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-07-14 07:47 - 2021-07-14 07:47 - 000488448 _____ () [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\DirectWriteForwarder.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000124928 _____ () [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\dxgi.dll
2021-01-26 08:07 - 2021-01-26 08:07 - 001265664 _____ () [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\e_sqlite3.DLL
2021-07-14 07:47 - 2021-07-14 07:47 - 001945088 _____ () [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\wpfgfx_cor3.dll
2021-06-15 15:14 - 2021-07-08 17:47 - 000355840 _____ () [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\versions\1.17\natives\glfw.dll
2021-06-15 15:14 - 2021-07-08 17:47 - 000254464 _____ () [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\versions\1.17\natives\jemalloc.dll
2021-06-15 15:14 - 2021-07-08 17:47 - 000449536 _____ () [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\versions\1.17\natives\lwjgl.dll
2021-06-15 15:14 - 2021-07-08 17:47 - 000341504 _____ () [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\versions\1.17\natives\lwjgl_opengl.dll
2021-06-15 15:14 - 2021-07-08 17:47 - 000500224 _____ () [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\versions\1.17\natives\lwjgl_stb.dll
2021-06-15 15:14 - 2021-07-08 17:47 - 001096192 _____ () [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\versions\1.17\natives\OpenAL.dll
2021-06-15 15:14 - 2021-07-08 17:47 - 000085504 _____ () [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\versions\1.17\natives\SAPIWrapper_x64.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000030208 _____ (ADeltaX) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\NPSMLib.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000014848 _____ (hardcodet.net) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\H.NotifyIcon.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000037376 _____ (hardcodet.net) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\Hardcodet.Wpf.TaskbarNotification.dll
2021-08-31 17:24 - 2021-08-31 17:24 - 000254464 ____N (Java(TM) Native Access (JNA)) [File not signed] C:\Users\PC\AppData\Local\Temp\jna-2547\jna1790678100483270618.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000167424 _____ (Mark Heath) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\NAudio.Wasapi.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 001277952 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\clrjit.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 004901888 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\coreclr.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000098304 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\cs\PresentationCore.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000545280 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\hostfxr.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000559104 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\hostpolicy.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000014336 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\Microsoft.Win32.Primitives.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000046080 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\Microsoft.Win32.Registry.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000044544 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\Microsoft.Win32.SystemEvents.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000048128 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\mscorlib.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000090624 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\netstandard.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 008577536 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\PresentationCore.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000441856 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\PresentationFramework.Aero2.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 015841792 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\PresentationFramework.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000013312 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\PresentationFramework-SystemXml.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000005120 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Buffers.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000235008 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Collections.Concurrent.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000261632 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Collections.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000090624 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Collections.NonGeneric.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000083968 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Collections.Specialized.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000008192 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.ComponentModel.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000027648 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.ComponentModel.EventBasedAsync.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000054784 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.ComponentModel.Primitives.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000724480 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.ComponentModel.TypeConverter.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000964608 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Configuration.ConfigurationManager.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 002912256 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Data.Common.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000005632 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Diagnostics.Debug.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000185344 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Diagnostics.DiagnosticSource.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000022016 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Diagnostics.FileVersionInfo.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000276992 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Diagnostics.Process.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000118784 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Diagnostics.TraceSource.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000006144 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Diagnostics.Tracing.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000435712 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Drawing.Common.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000118272 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Drawing.Primitives.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000219136 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.IO.FileSystem.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000266752 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.IO.Packaging.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000126464 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.IO.Pipes.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000517120 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Linq.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 003847680 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Linq.Expressions.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000286720 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Management.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000164864 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Memory.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 001673216 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Net.Http.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000089600 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Net.NameResolution.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000138240 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Net.NetworkInformation.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000200192 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Net.Primitives.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000218624 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Net.Quic.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000334336 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Net.Requests.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000646656 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Net.Security.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000026112 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Net.ServicePoint.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000504320 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Net.Sockets.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000155648 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Net.WebClient.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000050176 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Net.WebHeaderCollection.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000005632 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Numerics.Vectors.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000080896 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.ObjectModel.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 009705984 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Private.CoreLib.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000242688 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Private.Uri.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 008425984 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Private.Xml.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000005632 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Reflection.Emit.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000005632 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Reflection.Emit.ILGeneration.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000005632 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Reflection.Emit.Lightweight.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000005632 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Reflection.Primitives.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000005632 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Resources.ResourceManager.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000012288 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Runtime.CompilerServices.Unsafe.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000009728 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Runtime.CompilerServices.VisualC.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000029696 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Runtime.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000007680 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Runtime.Extensions.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000038912 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Runtime.InteropServices.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000019456 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Runtime.InteropServices.RuntimeInformation.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000198144 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Runtime.Numerics.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000309248 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Runtime.Serialization.Formatters.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000017920 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Runtime.Serialization.Primitives.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000096768 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Security.AccessControl.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000082432 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Security.Claims.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000749568 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Security.Cryptography.Algorithms.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000174592 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Security.Cryptography.Csp.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000083456 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Security.Cryptography.Encoding.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000112128 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Security.Cryptography.Primitives.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000465920 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Security.Cryptography.X509Certificates.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000005632 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Security.Principal.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000074752 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Security.Principal.Windows.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000005632 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Text.Encoding.Extensions.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000527360 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Text.RegularExpressions.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000068608 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Threading.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000005632 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Threading.Overlapped.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000006656 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Threading.Tasks.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000005632 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Threading.Thread.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000005632 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Threading.ThreadPool.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000005120 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Threading.Timer.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 001431552 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Windows.Controls.Ribbon.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000065024 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Windows.Extensions.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 013032960 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Windows.Forms.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000008704 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Windows.Presentation.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 001403392 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Xaml.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000011776 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\System.Xml.ReaderWriter.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000039424 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\UIAutomationProvider.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000269824 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\UIAutomationTypes.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 002179072 _____ (Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\WindowsBase.dll
2021-06-15 15:12 - 2021-06-15 15:12 - 000136704 _____ (Microsoft) [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\java.dll
2021-06-15 15:12 - 2021-06-15 15:12 - 000024064 _____ (Microsoft) [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\jimage.dll
2021-06-15 15:12 - 2021-06-15 15:12 - 000077312 _____ (Microsoft) [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\jli.dll
2021-06-15 15:12 - 2021-06-15 15:12 - 000018432 _____ (Microsoft) [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\management.dll
2021-06-15 15:12 - 2021-06-15 15:12 - 000025600 _____ (Microsoft) [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\management_ext.dll
2021-06-15 15:12 - 2021-06-15 15:12 - 000085504 _____ (Microsoft) [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\net.dll
2021-06-15 15:12 - 2021-06-15 15:12 - 000058368 _____ (Microsoft) [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\nio.dll
2021-06-15 15:13 - 2021-06-15 15:13 - 012455936 _____ (Microsoft) [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\server\jvm.dll
2021-06-15 15:13 - 2021-06-15 15:13 - 000036864 _____ (Microsoft) [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\sunmscapi.dll
2021-06-15 15:13 - 2021-06-15 15:13 - 000076288 _____ (Microsoft) [File not signed] C:\Users\PC\AppData\Roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\zip.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000011264 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\af\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000015360 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\ar\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000011264 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\da-DK\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000011264 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\de\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000014336 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\el\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000010752 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\en-GB\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000012288 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\es\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000012800 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\fa\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000011776 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\fr\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000012288 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\he\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000015360 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\hi\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000013824 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\hu\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000013312 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\id\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000011264 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\is\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000011776 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\it\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000014336 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\ja\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000013824 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\ko\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000128512 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\ModernFlyouts.Core.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000762880 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\ModernFlyouts.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000011264 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\ms\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000011264 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\nb\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000011264 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\nl\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000011264 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\pl\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000011776 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\pt\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000012800 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\ru\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000011264 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\sv\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000013824 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\tr\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000013312 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\uk\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000012288 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\vi\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000011264 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\zh-Hans\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000011264 _____ (ModernFlyouts Community) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\zh-Hant\ModernFlyouts.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000007168 _____ (ModernWpf) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\cs-CZ\ModernWpf.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000913920 _____ (ModernWpf) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\ModernWpf.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000007168 _____ (ModernWpf.Controls) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\cs-CZ\ModernWpf.Controls.resources.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000702464 _____ (ModernWpf.Controls) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\ModernWpf.Controls.dll
2021-01-26 08:07 - 2021-01-26 08:07 - 000006144 _____ (SourceGear) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\SQLitePCLRaw.batteries_v2.dll
2021-01-26 08:07 - 2021-01-26 08:07 - 000046080 _____ (SourceGear) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\SQLitePCLRaw.core.dll
2021-07-14 07:47 - 2021-07-14 07:47 - 000005632 _____ (SourceGear) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\SQLitePCLRaw.nativelibrary.dll
2021-01-26 08:07 - 2021-01-26 08:07 - 000056832 _____ (SourceGear) [File not signed] C:\Program Files\WindowsApps\32669SamG.ModernFlyouts_0.9.3.0_x64__pcy8vm99wrpcg\SQLitePCLRaw.provider.dynamic_cdecl.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AeroadminService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-07-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_281\bin\ssv.dll [2021-03-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_281\bin\jp2ssv.dll [2021-03-30] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-31] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

2021-07-29 09:12 - 2021-07-30 12:18 - 000000517 _____ C:\Windows\system32\drivers\etc\hosts.ics
172.30.128.1 DESKTOP-VNNSM0S.mshome.net # 2026 7 3 29 10 18 17 156
172.30.143.167 localhost.localdomain.mshome.net # 2021 8 5 6 10 18 17 156

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\nodejs\;C:\Program Files (x86)\dotnet\
HKU\S-1-5-21-321179341-2139502707-572524282-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 86.49.5.221 - 86.49.5.222
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "tvncontrol"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\StartupApproved\StartupFolder: => "Rainmeter.lnk"
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\StartupApproved\StartupFolder: => "Poslat do aplikace OneNote.lnk"
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\StartupApproved\Run: => "Discord"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{6F83D56F-E9D0-4F6A-8F1C-183856A0645C}] => (Allow) C:\Users\PC\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{264308A3-862C-4EAB-B219-5C7410C99038}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{D9619BF0-4C69-49E9-A8EE-41EBA17C1702}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{74DB4444-F4B1-45EF-AA91-CCF1D58AFA57}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{B2A1A579-252D-41D5-9A93-35AD2308B1D3}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{DCF4FA70-80B1-417C-8A51-858DA3EBB029}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{3DFE2E81-843E-400C-A50B-27FCEF03680C}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [TCP Query User{13DCFA05-C019-47B3-A8D4-E549308002BE}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{EF6C534C-354C-412B-AB61-A3A6F0141773}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{577950EC-5496-4217-8679-53A2C35D908B}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{DF75C06A-3198-4AD2-887C-B9CE3E09569D}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{D6B2DDEC-CDAA-47E3-A4B1-76F4F796F4CE}] => (Allow) C:\Program Files\Unity\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [{9164A233-E972-4DD5-87A4-2E58C35BE0A3}] => (Block) C:\Program Files\Unity\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [TCP Query User{7DEC9534-C4D1-470E-9CF5-0F0D4D68469A}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [UDP Query User{41745206-C875-4416-B4DA-3A8C7BCB604D}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [{C85F81B4-2565-4A3F-BE28-4DEE96F352A4}] => (Allow) C:\Users\PC\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{445351C3-0A2A-4C76-A17D-9659AEA2EA53}] => (Allow) C:\Users\PC\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{36AE47C2-C22D-4E64-B95D-19845BDC0920}] => (Allow) C:\Users\PC\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{8FC34403-1DCB-499F-9E0A-E7084CF7B790}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{B68263FE-7381-4579-B49F-8BB97ABC711D}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{765B7B26-97FD-4516-A8DA-CB1AF11A5BA8}] => (Allow) C:\Users\PC\Desktop\AeroAdmin.exe => No File
FirewallRules: [{9E82011C-D1AA-43B5-A894-9A38ED0E472F}] => (Allow) C:\Users\PC\Desktop\AeroAdmin.exe => No File
FirewallRules: [{6CA7CE5C-5DB9-4CD6-B33E-F7178BE482E7}] => (Allow) C:\Users\PC\Desktop\!!AeroAdmin!!.exe => No File
FirewallRules: [{496858A4-6D74-471E-92D9-8CD5229985E1}] => (Allow) C:\Users\PC\Desktop\!!AeroAdmin!!.exe => No File
FirewallRules: [{2F8EB786-CBAE-49A6-B348-6ED94E25FCD7}] => (Allow) C:\Users\PC\Downloads\AeroAdmin.exe => No File
FirewallRules: [{BACAFF96-2490-4ABF-9283-DFD98C4BC925}] => (Allow) C:\Users\PC\Downloads\AeroAdmin.exe => No File
FirewallRules: [{D442B857-5B56-4A9A-AF1D-E2034BF8494A}] => (Allow) C:\Program Files (x86)\RemotePC\RemotePCService.exe => No File
FirewallRules: [{11B31BE0-5D78-4E30-9D35-BC1CDD872929}] => (Allow) C:\Program Files (x86)\RemotePC\RemotePCService.exe => No File
FirewallRules: [{C921AF2C-1734-4EAB-81B4-4276723A87DC}] => (Allow) C:\Program Files (x86)\RemotePC\RemotePCDesktop.exe => No File
FirewallRules: [{4ACC5CDF-08A5-4387-91BF-7402E972C2D8}] => (Allow) C:\Program Files (x86)\RemotePC\RemotePCDesktop.exe => No File
FirewallRules: [{B40AE3A6-4BEC-4AD5-8053-CE02F1FA5C8F}] => (Allow) C:\Program Files (x86)\RemotePC\RPCCoreViewer.exe => No File
FirewallRules: [{21EEE5F4-2190-4BC1-9941-E1EA36567F60}] => (Allow) C:\Program Files (x86)\RemotePC\RPCCoreViewer.exe => No File
FirewallRules: [{CEE2C54E-1EE0-4768-80FD-90158EA62EC2}] => (Allow) C:\Program Files\uvnc bvba\UltraVNC\winvnc.exe (uvnc bvba -> UltraVNC)
FirewallRules: [{D5AA90FC-563A-45E1-BDDD-615EB0751F19}] => (Allow) C:\Program Files\uvnc bvba\UltraVNC\winvnc.exe (uvnc bvba -> UltraVNC)
FirewallRules: [TCP Query User{D8A1F137-0BE0-4AEB-A836-D4C168F4433E}C:\program files\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_281\bin\javaw.exe
FirewallRules: [UDP Query User{E5069B7D-2ACA-49E1-B9BE-41CD7C65BD4E}C:\program files\java\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_281\bin\javaw.exe
FirewallRules: [{D42FCE2F-7C76-4A1D-9807-16BBAC743B4E}] => (Allow) C:\Program Files\Unity\Editor\2020.3.3f1\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [{2D1992FC-2EF1-4633-8E63-B657E8383687}] => (Block) C:\Program Files\Unity\Editor\2020.3.3f1\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [TCP Query User{FB7696CA-0355-4F93-8627-7C676E971429}C:\program files\unity\editor\2020.3.3f1\editor\unity.exe] => (Allow) C:\program files\unity\editor\2020.3.3f1\editor\unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [UDP Query User{A3607866-AA9F-4711-A456-CD7F735D3EEB}C:\program files\unity\editor\2020.3.3f1\editor\unity.exe] => (Allow) C:\program files\unity\editor\2020.3.3f1\editor\unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [TCP Query User{850527CA-7E10-4A60-A157-DA31238F470A}C:\program files\unity\editor\2020.3.3f1\editor\data\tools\nodejs\node.exe] => (Block) C:\program files\unity\editor\2020.3.3f1\editor\data\tools\nodejs\node.exe (Node.js Foundation -> Node.js) [File not signed]
FirewallRules: [UDP Query User{40DF6F46-1BDD-4E1A-9A4A-59B934723E7E}C:\program files\unity\editor\2020.3.3f1\editor\data\tools\nodejs\node.exe] => (Block) C:\program files\unity\editor\2020.3.3f1\editor\data\tools\nodejs\node.exe (Node.js Foundation -> Node.js) [File not signed]
FirewallRules: [TCP Query User{4E21C326-677C-40BB-9E08-A3110A945CB6}D:\unity old 5.6.1.f1\unity\editor\unity.exe] => (Allow) D:\unity old 5.6.1.f1\unity\editor\unity.exe => No File
FirewallRules: [UDP Query User{8C69CA07-5A27-42D6-B112-9BDB64E8B8BC}D:\unity old 5.6.1.f1\unity\editor\unity.exe] => (Allow) D:\unity old 5.6.1.f1\unity\editor\unity.exe => No File
FirewallRules: [TCP Query User{76726584-9B12-4E8E-AD98-6C81D78002E6}C:\users\pc\appdata\local\programs\discord-bot-client\discord bot client.exe] => (Block) C:\users\pc\appdata\local\programs\discord-bot-client\discord bot client.exe (Flam3rboy) [File not signed]
FirewallRules: [UDP Query User{2E4F8C5D-1055-4BDD-8112-AF92C3BDD202}C:\users\pc\appdata\local\programs\discord-bot-client\discord bot client.exe] => (Block) C:\users\pc\appdata\local\programs\discord-bot-client\discord bot client.exe (Flam3rboy) [File not signed]
FirewallRules: [{56754C9C-C70C-4F04-A918-0D6CE0EE86B3}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [{B0BA8790-C5C3-4F31-BDB8-E89BBDC41BE0}] => (Allow) C:\Program Files\Unity\Editor\2021.1.10f1\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [{A7EDE7AF-3BF6-4F29-BD1E-8F3865775A5A}] => (Block) C:\Program Files\Unity\Editor\2021.1.10f1\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [TCP Query User{435F5444-55F8-4CB3-B07F-85489BD23F04}C:\program files\unity\editor\2021.1.10f1\editor\unity.exe] => (Allow) C:\program files\unity\editor\2021.1.10f1\editor\unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [UDP Query User{727089F1-649E-44C0-9D64-F7F9EED22CFF}C:\program files\unity\editor\2021.1.10f1\editor\unity.exe] => (Allow) C:\program files\unity\editor\2021.1.10f1\editor\unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [TCP Query User{79F31AA6-2889-4FC2-B830-EB18E6E94E5B}C:\program files\android\android studio\bin\studio64.exe] => (Allow) C:\program files\android\android studio\bin\studio64.exe (Google LLC -> JetBrains s.r.o.)
FirewallRules: [UDP Query User{0B55E600-A68E-4600-A3E5-4A3A1E33F700}C:\program files\android\android studio\bin\studio64.exe] => (Allow) C:\program files\android\android studio\bin\studio64.exe (Google LLC -> JetBrains s.r.o.)
FirewallRules: [TCP Query User{76676795-4E04-4EF8-ADDB-810D975F27E8}C:\users\pc\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\pc\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [UDP Query User{EF82E632-020D-487C-9941-5015B6136C0E}C:\users\pc\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\pc\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [TCP Query User{0D56CB83-3F87-4989-804B-8A463CD45ECD}C:\users\pc\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe] => (Allow) C:\users\pc\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe
FirewallRules: [UDP Query User{6333E45B-100E-42D3-ACA0-9046002A1BAD}C:\users\pc\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe] => (Allow) C:\users\pc\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe
FirewallRules: [TCP Query User{598957E1-198B-47B9-A87F-9946B0F81C08}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [UDP Query User{BFF11645-C50B-4AE6-8197-9A8F7EDB0601}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [TCP Query User{7A6434FF-8223-4AE8-80A8-24FE893A6056}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{BEDB4263-094A-4E4E-A6D9-333652C726F6}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{5EBC4863-A02F-49C1-943C-9462A315BF31}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [UDP Query User{5A6F61DE-73E7-4312-9C25-264BCE0F4F2B}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [TCP Query User{989F3D25-11B2-4DC6-B964-CAEA3AC32CC4}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{9C5098D8-A8FB-475B-90EB-9BA9E6E151FF}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{BBD71180-02F2-44B7-9967-E537718BE381}C:\users\pc\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\pc\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [UDP Query User{CC63B721-88A6-45E2-A15D-F83235976C6B}C:\users\pc\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\pc\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [TCP Query User{A69C3C3D-9328-46E9-8EB4-C642EF84BB38}C:\users\pc\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe] => (Allow) C:\users\pc\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe
FirewallRules: [UDP Query User{6AFAA63F-CAFD-4C14-A093-4A1886E9CCA1}C:\users\pc\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe] => (Allow) C:\users\pc\appdata\roaming\.minecraft\runtime\java-runtime-alpha\windows\java-runtime-alpha\bin\javaw.exe
FirewallRules: [TCP Query User{F28B959A-D148-4722-9922-8FAC40A1D5ED}C:\users\pc\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\pc\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{7B4FC7CB-F38D-4257-B249-90C16D3F0182}C:\users\pc\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\pc\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe
FirewallRules: [{3E99D528-9BAE-4B4D-9266-4E81700BD49E}] => (Allow) E:\UnityHub\Unity Hub\Unity Hub.exe => No File
FirewallRules: [{D2C20156-0D51-4C1E-B724-A023B6D5179C}] => (Allow) C:\Program Files\Unity Hub\Unity Hub.exe (Unity Technologies SF -> Unity Technologies Inc.)
FirewallRules: [{A9CC4DEA-BEE6-4A6D-B864-AE05518E3761}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6219F95C-1DF1-4201-85D5-398818E12E73}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D3A4D5EB-3B40-4CBD-92CF-D31879F0178F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{72D7EB51-E139-48AE-BE5A-9DA8C35CF194}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B7F35975-7E4B-4768-AC31-D070F2CBB0CE}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{2BB20E89-9E7D-4B69-84F0-AF328400B35E}C:\program files\unity hub\unity hub.exe] => (Allow) C:\program files\unity hub\unity hub.exe (Unity Technologies SF -> Unity Technologies Inc.)
FirewallRules: [UDP Query User{30052A39-4A53-4E5C-BC50-CE2BAAB9741E}C:\program files\unity hub\unity hub.exe] => (Allow) C:\program files\unity hub\unity hub.exe (Unity Technologies SF -> Unity Technologies Inc.)
FirewallRules: [{27288A8C-D2E0-46B5-A635-7743E09ED4C9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B7ECD4B2-868D-4A30-9C63-294A524C741D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CC3400DB-B030-4393-823A-F29997725BAB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{146C89C2-E56B-486A-82C1-E1C6E5AAB71C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1B3EB1BE-5E03-4ABF-A2F4-306E64CDD2C1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FCF1CEED-FD26-4655-812F-5B47CE68B356}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BAE0BA2E-EF28-4DA4-9302-5A04934FC3B7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{24857D0D-7E36-4664-BA39-975666EB9B75}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.166.580.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)

==================== Restore Points =========================

15-08-2021 09:57:39 Instalační služba modulů systému Windows
15-08-2021 09:59:59 Instalační služba modulů systému Windows
15-08-2021 18:53:27 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (08/31/2021 05:51:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FilesFullTrust.exe, verze: 1.0.0.0, časové razítko: 0xf087b0a4
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1151, časové razítko: 0x891df6d3
Kód výjimky: 0xe0434352
Posun chyby: 0x0000000000034ed9
ID chybujícího procesu: 0x1590
Čas spuštění chybující aplikace: 0x01d79e800edfc740
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t\Files.Launcher\FilesFullTrust.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 9785e56a-588f-4e3b-a952-72ea26ec0054
Úplný název chybujícího balíčku: 49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t
ID aplikace související s chybujícím balíčkem: App

Error: (08/31/2021 05:51:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Files.exe, verze: 1.0.0.0, časové razítko: 0x60595374
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1151, časové razítko: 0x891df6d3
Kód výjimky: 0x80131622
Posun chyby: 0x000000000010bd3e
ID chybujícího procesu: 0x1964
Čas spuštění chybující aplikace: 0x01d79e800e8d3a85
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t\Files.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 9576fdfc-84c7-49a6-850d-8310b51d4024
Úplný název chybujícího balíčku: 49306atecsolution.FilesUWP_1.5.0.0_x64__et10x9a9vyk8t
ID aplikace související s chybujícím balíčkem: App

Error: (08/31/2021 05:51:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: FilesFullTrust.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.IOException
na System.IO.Pipes.PipeStream.WinIOError(Int32)
na System.IO.Pipes.PipeStream.BeginWriteCore(Byte[], Int32, Int32, System.AsyncCallback, System.Object)
na System.IO.Stream+<>c.<BeginEndWriteAsync>b__53_0(System.IO.Stream, ReadWriteParameters, System.AsyncCallback, System.Object)
na System.Threading.Tasks.TaskFactory`1[[System.Threading.Tasks.VoidTaskResult, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].FromAsyncTrim[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.IO.Stream+ReadWriteParameters, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.__Canon, ReadWriteParameters, System.Func`5<System.__Canon,ReadWriteParameters,System.AsyncCallback,System.Object,System.IAsyncResult>, System.Func`3<System.__Canon,System.IAsyncResult,System.Threading.Tasks.VoidTaskResult>)
na System.IO.Stream.BeginEndWriteAsync(Byte[], Int32, Int32)
na System.IO.Stream.WriteAsync(Byte[], Int32, Int32, System.Threading.CancellationToken)
na System.IO.Stream.WriteAsync(Byte[], Int32, Int32)
na FilesFullTrust.Win32API+<SendMessageAsync>d__12.MoveNext()
na System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw()
na System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(System.Threading.Tasks.Task)
na FilesFullTrust.Program+<ParseArgumentsAsync>d__15.MoveNext()
na System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw()
na System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(System.Threading.Tasks.Task)
na FilesFullTrust.Program+<Connection_RequestReceived>d__13.MoveNext()
na System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw()
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
na System.Threading.ThreadPoolWorkQueue.Dispatch()

Error: (08/31/2021 04:26:54 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na jedno tera (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (08/20/2021 07:00:27 AM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

Error: (08/17/2021 06:14:49 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na jedno tera (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (08/15/2021 10:02:48 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-VNNSM0S)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (08/15/2021 10:02:00 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Program Files\AVG\Antivirus\avgToolsSvc.exe, identifikátor PID: 3944, identifikátor PID ProfSvc: 2380.


System errors:
=============
Error: (08/31/2021 04:14:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba IntelHaxm neuspěla při spuštění v důsledku následující chyby:
Zařízení připojené k systému nefunguje.

Error: (08/31/2021 04:14:40 PM) (Source: IntelHaxm) (EventID: 3) (User: )
Description: HAXM Failed to init VMX

Error: (08/31/2021 04:14:40 PM) (Source: IntelHaxm) (EventID: 6) (User: )
Description: HAXM can't work on system without VT support

Error: (08/31/2021 04:14:38 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (20:21:41, ‎26.‎08.‎2021) bylo neočekávané.

Error: (08/31/2021 04:14:30 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684Při zpracování obnovovacích dat došlo k závažné chybě.

Error: (08/26/2021 08:08:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba IntelHaxm neuspěla při spuštění v důsledku následující chyby:
Zařízení připojené k systému nefunguje.

Error: (08/26/2021 08:08:43 PM) (Source: IntelHaxm) (EventID: 3) (User: )
Description: HAXM Failed to init VMX

Error: (08/26/2021 08:08:43 PM) (Source: IntelHaxm) (EventID: 6) (User: )
Description: HAXM can't work on system without VT support


Windows Defender:
================
Date: 2021-03-06 12:21:53
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {3A02C82A-6D87-441D-A13D-C57C2DC8695A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-03-06 11:59:59
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8D7D81F3-13F3-46B3-938F-AB2F77E6942E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-03-06 11:38:02
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7947F264-A51F-4908-8F63-C594E68E75CF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-03-06 11:19:14
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {046DD420-B7F4-4D9B-9FF2-CA70EADED971}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-03-06 10:45:37
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {44A73408-89D0-4D27-820B-EB855B4FDCB0}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-07-18 16:34:21
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.331.2515.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17900.7
Kód chyby: 0x80240017
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2021-07-18 16:33:06
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.331.2515.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17900.7
Kód chyby: 0x8024001e
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

CodeIntegrity:
===============
Date: 2021-08-31 16:18:30
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-08-31 16:15:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-08-31 16:15:11
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 2002 06/18/2020
Motherboard: ASUSTeK COMPUTER INC. ROG STRIX B360-G GAMING
Processor: Intel(R) Core(TM) i5-9400F CPU @ 2.90GHz
Percentage of memory in use: 47%
Total physical RAM: 16301.14 MB
Available physical RAM: 8602.24 MB
Total Virtual: 21677.14 MB
Available Virtual: 4066.57 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.28 GB) (Free:57.03 GB) NTFS
Drive d: (jedno tera) (Fixed) (Total:931.51 GB) (Free:809.33 GB) NTFS
Drive e: (64GB :)) (Removable) (Total:58.59 GB) (Free:50.63 GB) NTFS

\\?\Volume{4db49cc0-02dc-4aa3-b614-f2947070d456}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS
\\?\Volume{99ea9264-2460-4ac8-8899-e953b4c89a6c}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: F5D14A7A)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (Size: 58.6 GB) (Disk ID: 73736572)
Partition 1: (Not Active) - (Size=866 GB) - (Type=72)
Partition 2: (Not Active) - (Size=931.6 GB) - (Type=6C)
Partition 00: (Not Active) - (Size=0) - (Type=00) ATTENTION ===> 0 byte partition bootkit.
Partition 3: (Not Active) - (Size=224 KB) - (Type=00)

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: kontrola logu

#5 Příspěvek od Rudy »

Teď je to OK. Dejte nyní log z ADW (viz výše).
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

czech 08
Návštěvník
Návštěvník
Příspěvky: 38
Registrován: 12 úno 2021 16:28

Re: kontrola logu

#6 Příspěvek od czech 08 »

ADW cleaner log

# -------------------------------
# Malwarebytes AdwCleaner 8.0.9.1
# -------------------------------
# Build: 01-20-2021
# Database: 2021-01-11.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 08-31-2021
# Duration: 00:00:18
# OS: Windows 10 Home
# Scanned: 31956
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner[S00].txt - [1406 octets] - [12/02/2021 18:05:37]
AdwCleaner[C00].txt - [1596 octets] - [12/02/2021 18:09:10]
AdwCleaner[S01].txt - [1707 octets] - [06/03/2021 11:22:55]
AdwCleaner[S02].txt - [1768 octets] - [06/03/2021 12:00:37]
AdwCleaner[C02].txt - [1920 octets] - [06/03/2021 12:00:48]
AdwCleaner[S03].txt - [1711 octets] - [06/03/2021 14:54:21]
AdwCleaner[S04].txt - [1772 octets] - [06/06/2021 16:44:52]
AdwCleaner[S05].txt - [1833 octets] - [14/06/2021 13:54:11]
AdwCleaner[S06].txt - [1894 octets] - [11/07/2021 19:32:06]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S07].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: kontrola logu

#7 Příspěvek od Rudy »

Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\MountPoints2: {0276854f-87b3-11eb-ab36-244bfe775eb1} - "F:\Lenovo_Suite.exe"
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\MountPoints2: {ea3aec86-83ed-11eb-ab32-244bfe775eb1} - "E:\LenovoUsbDriver.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {585AB7F3-2F7D-4485-92FE-513A0C73F3A2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-24] (Google LLC -> Google LLC)
Task: {5887142D-8C62-4FF2-97A8-BECDE52F9DDA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-24] (Google LLC -> Google LLC)
Task: {F48D2DB3-D10D-40BF-B360-8321F70115DD} - System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIS => C:\Windows\SysWOW64\XPSViewer\TasksG\G-1-10-52\TG_1.3.54.41.exe <==== ATTENTION
U1 aswbdisk; no ImagePath
U1 avgbdisk; no ImagePath
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{28A80003-18FD-411D-B0A3-3C81F618E22B}\InprocServer32 -> C:\Users\PC\AppData\Local\Kingsoft\WPS Office\11.2.0.10152\office6\kwpsmenushellext64.dll => No File
ContextMenuHandlers1_S-1-5-21-321179341-2139502707-572524282-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\PC\AppData\Local\Kingsoft\WPS Office\11.2.0.10152\office6\kwpsmenushellext64.dll -> No File
ContextMenuHandlers4_S-1-5-21-321179341-2139502707-572524282-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\PC\AppData\Local\Kingsoft\WPS Office\11.2.0.10152\office6\kwpsmenushellext64.dll -> No File
FirewallRules: [{765B7B26-97FD-4516-A8DA-CB1AF11A5BA8}] => (Allow) C:\Users\PC\Desktop\AeroAdmin.exe => No File
FirewallRules: [{9E82011C-D1AA-43B5-A894-9A38ED0E472F}] => (Allow) C:\Users\PC\Desktop\AeroAdmin.exe => No File
FirewallRules: [{6CA7CE5C-5DB9-4CD6-B33E-F7178BE482E7}] => (Allow) C:\Users\PC\Desktop\!!AeroAdmin!!.exe => No File
FirewallRules: [{496858A4-6D74-471E-92D9-8CD5229985E1}] => (Allow) C:\Users\PC\Desktop\!!AeroAdmin!!.exe => No File
FirewallRules: [{2F8EB786-CBAE-49A6-B348-6ED94E25FCD7}] => (Allow) C:\Users\PC\Downloads\AeroAdmin.exe => No File
FirewallRules: [{BACAFF96-2490-4ABF-9283-DFD98C4BC925}] => (Allow) C:\Users\PC\Downloads\AeroAdmin.exe => No File
FirewallRules: [{D442B857-5B56-4A9A-AF1D-E2034BF8494A}] => (Allow) C:\Program Files (x86)\RemotePC\RemotePCService.exe => No File
FirewallRules: [{11B31BE0-5D78-4E30-9D35-BC1CDD872929}] => (Allow) C:\Program Files (x86)\RemotePC\RemotePCService.exe => No File
FirewallRules: [{C921AF2C-1734-4EAB-81B4-4276723A87DC}] => (Allow) C:\Program Files (x86)\RemotePC\RemotePCDesktop.exe => No File
FirewallRules: [{4ACC5CDF-08A5-4387-91BF-7402E972C2D8}] => (Allow) C:\Program Files (x86)\RemotePC\RemotePCDesktop.exe => No File
FirewallRules: [{B40AE3A6-4BEC-4AD5-8053-CE02F1FA5C8F}] => (Allow) C:\Program Files (x86)\RemotePC\RPCCoreViewer.exe => No File
FirewallRules: [{21EEE5F4-2190-4BC1-9941-E1EA36567F60}] => (Allow) C:\Program Files (x86)\RemotePC\RPCCoreViewer.exe => No File
FirewallRules: [TCP Query User{4E21C326-677C-40BB-9E08-A3110A945CB6}D:\unity old 5.6.1.f1\unity\editor\unity.exe] => (Allow) D:\unity old 5.6.1.f1\unity\editor\unity.exe => No File
FirewallRules: [UDP Query User{8C69CA07-5A27-42D6-B112-9BDB64E8B8BC}D:\unity old 5.6.1.f1\unity\editor\unity.exe] => (Allow) D:\unity old 5.6.1.f1\unity\editor\unity.exe => No File
FirewallRules: [{56754C9C-C70C-4F04-A918-0D6CE0EE86B3}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [{3E99D528-9BAE-4B4D-9266-4E81700BD49E}] => (Allow) E:\UnityHub\Unity Hub\Unity Hub.exe => No File

EmptyTemp:
End
Uložte do C:\Users\PC\OneDrive\Plocha jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

czech 08
Návštěvník
Návštěvník
Příspěvky: 38
Registrován: 12 úno 2021 16:28

Re: kontrola logu

#8 Příspěvek od czech 08 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 28-08-2021
Ran by PC (01-09-2021 10:59:23) Run:4
Running from C:\Users\PC\OneDrive\Plocha
Loaded Profiles: PC
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\MountPoints2: {0276854f-87b3-11eb-ab36-244bfe775eb1} - "F:\Lenovo_Suite.exe"
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\MountPoints2: {ea3aec86-83ed-11eb-ab32-244bfe775eb1} - "E:\LenovoUsbDriver.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {585AB7F3-2F7D-4485-92FE-513A0C73F3A2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-24] (Google LLC -> Google LLC)
Task: {5887142D-8C62-4FF2-97A8-BECDE52F9DDA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-24] (Google LLC -> Google LLC)
Task: {F48D2DB3-D10D-40BF-B360-8321F70115DD} - System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIS => C:\Windows\SysWOW64\XPSViewer\TasksG\G-1-10-52\TG_1.3.54.41.exe <==== ATTENTION
U1 aswbdisk; no ImagePath
U1 avgbdisk; no ImagePath
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{28A80003-18FD-411D-B0A3-3C81F618E22B}\InprocServer32 -> C:\Users\PC\AppData\Local\Kingsoft\WPS Office\11.2.0.10152\office6\kwpsmenushellext64.dll => No File
ContextMenuHandlers1_S-1-5-21-321179341-2139502707-572524282-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\PC\AppData\Local\Kingsoft\WPS Office\11.2.0.10152\office6\kwpsmenushellext64.dll -> No File
ContextMenuHandlers4_S-1-5-21-321179341-2139502707-572524282-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\PC\AppData\Local\Kingsoft\WPS Office\11.2.0.10152\office6\kwpsmenushellext64.dll -> No File
FirewallRules: [{765B7B26-97FD-4516-A8DA-CB1AF11A5BA8}] => (Allow) C:\Users\PC\Desktop\AeroAdmin.exe => No File
FirewallRules: [{9E82011C-D1AA-43B5-A894-9A38ED0E472F}] => (Allow) C:\Users\PC\Desktop\AeroAdmin.exe => No File
FirewallRules: [{6CA7CE5C-5DB9-4CD6-B33E-F7178BE482E7}] => (Allow) C:\Users\PC\Desktop\!!AeroAdmin!!.exe => No File
FirewallRules: [{496858A4-6D74-471E-92D9-8CD5229985E1}] => (Allow) C:\Users\PC\Desktop\!!AeroAdmin!!.exe => No File
FirewallRules: [{2F8EB786-CBAE-49A6-B348-6ED94E25FCD7}] => (Allow) C:\Users\PC\Downloads\AeroAdmin.exe => No File
FirewallRules: [{BACAFF96-2490-4ABF-9283-DFD98C4BC925}] => (Allow) C:\Users\PC\Downloads\AeroAdmin.exe => No File
FirewallRules: [{D442B857-5B56-4A9A-AF1D-E2034BF8494A}] => (Allow) C:\Program Files (x86)\RemotePC\RemotePCService.exe => No File
FirewallRules: [{11B31BE0-5D78-4E30-9D35-BC1CDD872929}] => (Allow) C:\Program Files (x86)\RemotePC\RemotePCService.exe => No File
FirewallRules: [{C921AF2C-1734-4EAB-81B4-4276723A87DC}] => (Allow) C:\Program Files (x86)\RemotePC\RemotePCDesktop.exe => No File
FirewallRules: [{4ACC5CDF-08A5-4387-91BF-7402E972C2D8}] => (Allow) C:\Program Files (x86)\RemotePC\RemotePCDesktop.exe => No File
FirewallRules: [{B40AE3A6-4BEC-4AD5-8053-CE02F1FA5C8F}] => (Allow) C:\Program Files (x86)\RemotePC\RPCCoreViewer.exe => No File
FirewallRules: [{21EEE5F4-2190-4BC1-9941-E1EA36567F60}] => (Allow) C:\Program Files (x86)\RemotePC\RPCCoreViewer.exe => No File
FirewallRules: [TCP Query User{4E21C326-677C-40BB-9E08-A3110A945CB6}D:\unity old 5.6.1.f1\unity\editor\unity.exe] => (Allow) D:\unity old 5.6.1.f1\unity\editor\unity.exe => No File
FirewallRules: [UDP Query User{8C69CA07-5A27-42D6-B112-9BDB64E8B8BC}D:\unity old 5.6.1.f1\unity\editor\unity.exe] => (Allow) D:\unity old 5.6.1.f1\unity\editor\unity.exe => No File
FirewallRules: [{56754C9C-C70C-4F04-A918-0D6CE0EE86B3}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [{3E99D528-9BAE-4B4D-9266-4E81700BD49E}] => (Allow) E:\UnityHub\Unity Hub\Unity Hub.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKU\S-1-5-21-321179341-2139502707-572524282-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0276854f-87b3-11eb-ab36-244bfe775eb1} => removed successfully
HKU\S-1-5-21-321179341-2139502707-572524282-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ea3aec86-83ed-11eb-ab32-244bfe775eb1} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{585AB7F3-2F7D-4485-92FE-513A0C73F3A2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{585AB7F3-2F7D-4485-92FE-513A0C73F3A2}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5887142D-8C62-4FF2-97A8-BECDE52F9DDA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5887142D-8C62-4FF2-97A8-BECDE52F9DDA}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F48D2DB3-D10D-40BF-B360-8321F70115DD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F48D2DB3-D10D-40BF-B360-8321F70115DD}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIS => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Google\GoogleUpdateTaskMachineIS" => removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
HKLM\System\CurrentControlSet\Services\avgbdisk => removed successfully
avgbdisk => service removed successfully
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{28A80003-18FD-411D-B0A3-3C81F618E22B} => removed successfully
HKU\S-1-5-21-321179341-2139502707-572524282-1001\Software\Classes\*\ShellEx\ContextMenuHandlers\ kwpsshellext => not found
HKU\S-1-5-21-321179341-2139502707-572524282-1001\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ kwpsshellext => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{765B7B26-97FD-4516-A8DA-CB1AF11A5BA8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9E82011C-D1AA-43B5-A894-9A38ED0E472F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6CA7CE5C-5DB9-4CD6-B33E-F7178BE482E7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{496858A4-6D74-471E-92D9-8CD5229985E1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2F8EB786-CBAE-49A6-B348-6ED94E25FCD7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BACAFF96-2490-4ABF-9283-DFD98C4BC925}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D442B857-5B56-4A9A-AF1D-E2034BF8494A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{11B31BE0-5D78-4E30-9D35-BC1CDD872929}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C921AF2C-1734-4EAB-81B4-4276723A87DC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4ACC5CDF-08A5-4387-91BF-7402E972C2D8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B40AE3A6-4BEC-4AD5-8053-CE02F1FA5C8F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{21EEE5F4-2190-4BC1-9941-E1EA36567F60}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4E21C326-677C-40BB-9E08-A3110A945CB6}D:\unity old 5.6.1.f1\unity\editor\unity.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8C69CA07-5A27-42D6-B112-9BDB64E8B8BC}D:\unity old 5.6.1.f1\unity\editor\unity.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{56754C9C-C70C-4F04-A918-0D6CE0EE86B3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3E99D528-9BAE-4B4D-9266-4E81700BD49E}" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 207072338 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 4173222 B
Edge => 0 B
Chrome => 619122202 B
Firefox => 31933310 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 5337 B
LocalService => 368727 B
NetworkService => 401209 B
PC => 19412024 B

RecycleBin => 0 B
EmptyTemp: => 851.6 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 01-09-2021 11:01:35)


Result of scheduled keys to remove after reboot:

HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected

==== End of Fixlog 11:01:35 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: kontrola logu

#9 Příspěvek od Rudy »

Smazáno, log je již OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

czech 08
Návštěvník
Návštěvník
Příspěvky: 38
Registrován: 12 úno 2021 16:28

Re: kontrola logu

#10 Příspěvek od czech 08 »

Díky moc.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: kontrola logu

#11 Příspěvek od Rudy »

Rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno