Prosím o preventivní kontrolu

Zpráva

neummi · #1 Příspěvek od **neummi** » 18 zář 2022 09:12

Dobrý den,

prosím o preventivní kontrolu přiložených logů

Děkuji a přeji hezký den.

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(DeviceSettingsHeartbeatAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(DeviceSettingsSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(GenericTelemetryAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(LenovoGamingSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(LenovoSecurityAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(LenovoServiceBridgeAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(SmartInteractAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(SmartPrivacyAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\Users\neumm\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\neumm\AppData\Local\Programs\Opera\90.0.4480.84\opera_crashreporter.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe <3>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe
(dolbyaposvc\DAX3API.exe ->) (Dolby Laboratories, Inc. -> ) C:\Program Files\Common Files\Dolby\DAX3\RADARHOST\DSRHost.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5>
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (LENOVO INC) C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.2.54.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Opera Norway AS -> Opera Software) C:\Users\neumm\AppData\Local\Programs\Opera\opera.exe <19>
(services.exe ->) (Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(services.exe ->) (FabulaTech, LLP -> ) C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnlsv.exe
(services.exe ->) (FabulaTech, LLP -> ) C:\Program Files\Common Files\VMware\ScannerRedirection\ftscanmgrhv.exe
(services.exe ->) (FabulaTech, LLP -> VMware) C:\Program Files\Common Files\VMware\SerialPortRedirection\Client\vmwsprrdpwks.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_9196e89091d8bdbb\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_0b214be229a13e84\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_04baa46c48be5bb8\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 7\updater-ws.exe
(services.exe ->) (pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 7\ws.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
(services.exe ->) (VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Horizon View Client\ClientService\horizon_client_service.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22072.207.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1076728 2020-03-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213728 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [926896 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX2] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNMNSST2.exe [279240 2016-12-09] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3199823060-2990485202-3779144827-1001\...\Run: [MicrosoftEdgeAutoLaunch_F03316C7FBBC7850DEA20D614D3AE144] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795360 2022-09-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3199823060-2990485202-3779144827-1001\...\Run: [Opera Browser Assistant] => C:\Users\neumm\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4137936 2022-09-14] (Opera Norway AS -> Opera Software)
HKLM\...\Windows x64\Print Processors\Canon TS3100 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDDR.DLL [482816 2017-03-13] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS3100 series: C:\Windows\system32\CNMLMDR.DLL [1302016 2017-03-13] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\PDF Architect 7 Monitor: C:\Windows\system32\spool\DRIVERS\x64\pdf architect_pdfpmon_v.4.12.26.3.dll [932984 2019-11-22] (PDF Tools AG -> PDF Tools AG (hxxp://www.pdf-tools.com))
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [116736 2019-11-22] (pdfforge GmbH) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\105.0.5195.127\Installer\chrmstp.exe [2022-09-17] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01CAE35B-BA86-41D9-909E-6E37DC72CA35} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {02A9EC6A-AE22-4F95-B819-D3EB24379EEC} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {0D6F7EDA-3F54-4D5B-B0EA-1FA44DF4D412} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {0D86DFF5-00EF-46BA-9BDC-D5DD92102BDD} - System32\Tasks\Opera scheduled Autoupdate 1573726733 => C:\Users\neumm\AppData\Local\Programs\Opera\launcher.exe [2538448 2022-09-05] (Opera Norway AS -> Opera Software)
Task: {0E736F92-5030-46CB-9834-8EA89B59DB72} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [64256 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {0E7D7DCE-77B4-48D1-8F59-77303DB05F33} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (No File)
Task: {155FB0F4-BDE0-44EB-A712-113A1F70717A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\963cea5d-3441-4cad-8f2e-90f05bceb61b => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {15A3714A-35A2-4FAF-AAF0-623F5BAF467D} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {1FB43D9A-91E2-46FE-BB15-25A405605B57} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\41cf3d5b-df7e-41b2-9ab8-d8b1ac0ed9f5 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {2EDFF4A6-EC72-46E0-89E4-2A2A061243C8} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {31AB7EC9-2BDC-4303-99BD-495CE8E0E7D9} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {58A370C1-7A49-4477-BE82-81C7D4CBE485} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-06] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {5D2D094B-B239-4A49-87BB-80B2E3C0AE66} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\417685d5-b734-4b5c-814d-d52922866d13 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {6575ECAA-590C-4591-9CBC-E30CBF4D1628} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {78BE89D2-A3C8-45E6-BFA7-01655752F406} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4943072 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
Task: {79A319A0-AC1C-474F-87F5-5C465A50380F} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c9c3ab76-575f-425a-a1ff-5002771ce520 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {7C0FBFC3-E619-43C7-A67E-4798680C2CF1} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {841EBD19-4EF0-4551-B759-91D7B3AB7F6C} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {869B3335-3505-45F4-B8A3-5063650C1051} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8972DA8F-5A22-4C57-BE8A-27073AD9B8C9} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {8B2C9749-4CD4-445B-8E57-C2F73FC4A2D7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-11-15] (Google Inc -> Google Inc.)
Task: {98209C8C-2ED3-467E-83B8-7D7C4956FE36} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9D7BE875-5449-46FD-9E06-A3BFDDC11588} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2250576 2022-09-18] (Avast Software s.r.o. -> Avast Software)
Task: {9F995F66-F07E-41D9-B115-E38A6C0E5F95} - System32\Tasks\Opera scheduled assistant Autoupdate 1580151375 => C:\Users\neumm\AppData\Local\Programs\Opera\launcher.exe [2538448 2022-09-05] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\neumm\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {A5B34049-E982-4E45-B5E7-16C8D8768804} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [147864 2022-05-12] (Lenovo -> Lenovo Group Ltd.)
Task: {A7C939A0-F897-4D1C-9308-29B7A50B0CD1} - System32\Tasks\Lenovo\FBNetFilter PNP Task => C:\Windows\System32\drivers\FBNetFilterInstall.exe [1149352 2019-03-05] (LENOVO (UNITED STATES) INC. -> Lenovo Group Ltd.)
Task: {AD4706C3-762D-47CB-9EC5-BC73C8C0AB2C} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {B9AB6331-0534-46A8-BB24-5F8A46553B86} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BB0D4EF8-11B9-4FF2-B74F-71A81D07ED19} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BC00148A-6D34-4A83-8715-D09A61DC0EB0} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe lenovo-utility://
Task: {C02A1461-0DB5-480F-8216-D3BD106B6E1D} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {C4C116A6-1C2C-4285-A8BB-5AF6A9F099CA} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8757cc56-b975-4603-a908-4ad3a94a2d63 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {CE97673E-5A8F-460C-B4B1-20F09E21A3C5} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D7B9FECA-3D6E-4B80-A0AB-49626389A80C} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-06] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {DEFFCFEA-59F2-4BE1-B140-0129F3E175BB} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\ScheduleEventAction.exe [27480 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
Task: {FD6CD87E-83AA-4267-9B46-DBFE61537E73} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-11-15] (Google Inc -> Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 127.0.0.1 view-localhost # view localhost server
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{00cdfb14-5a65-4a5e-a41b-47052f87fa5c}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{37cb4187-de50-4834-a967-28787f8b4700}: [DhcpNameServer] 192.168.0.1 192.168.0.1

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\neumm\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-18]

FireFox:
========
FF DefaultProfile: lalef0ac.default
FF ProfilePath: C:\Users\neumm\AppData\Roaming\Mozilla\Firefox\Profiles\lalef0ac.default [2020-02-26]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\neumm\AppData\Roaming\Mozilla\Firefox\Profiles\lalef0ac.default\Extensions\sp@avast.com.xpi [2019-11-15]
FF ProfilePath: C:\Users\neumm\AppData\Roaming\Mozilla\Firefox\Profiles\zc68s4kx.default-release [2022-09-18]
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [File not signed]
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\neumm\AppData\Local\Google\Chrome\User Data\Default [2022-09-18]
CHR Notifications: Default -> hxxps://best.aliexpress.com; hxxps://key-drop.com
CHR StartupUrls: Default -> "hxxps://www.facebook.com/","hxxp://www.seznam.c ... oogle.com/"
CHR Extension: (Tipli do prohlížeče) - C:\Users\neumm\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbnfnbehhjknomdbfhcobpgpphnlnikp [2022-06-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\neumm\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-09-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\neumm\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-12]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

Opera:
=======
OPR Profile: C:\Users\neumm\AppData\Roaming\Opera Software\Opera Stable [2022-09-18]
OPR Notifications: Opera Stable -> hxxps://meet.google.com; hxxps://online.rb.cz; hxxps://www.mmaukce.cz; hxxps://www.rodinnebaleni.cz
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\neumm\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-07-18]
OPR Extension: (Opera Crypto Wallet) - C:\Users\neumm\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-07-18]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\neumm\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-08-19]
StartMenuInternet: (HKU\S-1-5-21-3199823060-2990485202-3779144827-1001) OperaStable - "C:\Users\neumm\AppData\Local\Programs\Opera\Launcher.exe"

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192 2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8523800 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [589536 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [589536 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R2 client_service; C:\Program Files (x86)\VMware\VMware Horizon View Client\ClientService\horizon_client_service.exe [442840 2020-03-30] (VMware, Inc. -> VMware, Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4452456 2019-11-22] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [1926600 2019-09-02] (Dolby Laboratories, Inc. -> )
S4 FBNetFilterInstall; C:\WINDOWS\System32\drivers\FBNetFilterInstall.exe [1149352 2019-03-05] (LENOVO (UNITED STATES) INC. -> Lenovo Group Ltd.)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [359808 2019-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ftnlsv3hv; C:\Program Files\Common Files\VMware\DeviceRedirectionCommon\ftnlsv.exe [280176 2020-02-25] (FabulaTech, LLP -> )
R2 ftscanmgrhv; C:\Program Files\Common Files\VMware\ScannerRedirection\ftscanmgrhv.exe [4369520 2020-02-27] (FabulaTech, LLP -> )
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [445432 2021-04-19] (Canon Inc. -> )
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.14.0\LenovoVantageService.exe [31072 2022-05-24] (Lenovo -> Lenovo Group Ltd.)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [819040 2022-09-02] (McAfee, LLC -> McAfee, LLC)
R3 PDF Architect 7; C:\Program Files\PDF Architect 7\ws.exe [2579752 2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
S3 PDF Architect 7 Creator; C:\Program Files\PDF Architect 7\creator\common\creator-ws.exe [692008 2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 7 Update Service; C:\Program Files\PDF Architect 7\updater-ws.exe [1832232 2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
R2 vmwsprrdpwks; C:\Program Files\Common Files\VMware\SerialPortRedirection\Client\vmwsprrdpwks.exe [459888 2020-02-20] (FabulaTech, LLP -> VMware)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe [3125112 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe [133560 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_04baa46c48be5bb8\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_04baa46c48be5bb8\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [41760 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237632 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [389064 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [257992 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [104904 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [24528 2022-09-18] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [47936 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [274976 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [553880 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [113920 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88984 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [861936 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [671216 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221464 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327408 2022-09-18] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-11-22] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-11-22] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 FBNetFilter; C:\WINDOWS\System32\drivers\FBNetFlt.sys [64832 2021-08-26] (LENOVO (UNITED STATES) INC. -> Lenovo Group Ltd.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167544 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49576 2022-09-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [453904 2022-09-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [94480 2022-09-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-18 10:00 - 2022-09-18 10:00 - 000031714 _____ C:\Users\neumm\Desktop\FRST.txt
2022-09-18 10:00 - 2022-09-18 10:00 - 000000000 ____D C:\FRST
2022-09-18 09:59 - 2022-09-18 09:59 - 002371072 _____ (Farbar) C:\Users\neumm\Desktop\FRST64.exe
2022-09-18 09:53 - 2022-09-18 09:53 - 000002175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2022-09-18 09:53 - 2022-09-18 09:53 - 000002163 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2022-09-18 09:53 - 2022-09-18 09:53 - 000000000 ____D C:\WINDOWS\system32\gf2engine
2022-09-18 09:53 - 2022-09-18 09:53 - 000000000 ____D C:\Users\neumm\AppData\Local\Avast Software
2022-09-18 09:53 - 2022-09-18 09:51 - 000270560 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-09-18 09:52 - 2022-09-18 09:51 - 000221464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-09-18 09:50 - 2022-09-18 09:50 - 000268488 _____ (AVAST Software) C:\Users\neumm\Desktop\avast_free_antivirus_setup_online.exe
2022-09-18 09:42 - 2022-09-18 09:42 - 000000365 _____ C:\Users\neumm\Desktop\kod_odemknuti.txt
2022-09-14 05:03 - 2022-09-14 05:03 - 000413696 _____ C:\WINDOWS\system32\AzureCheck.dll
2022-09-14 05:03 - 2022-09-14 05:03 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-09-14 05:03 - 2022-09-14 05:03 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2022-09-14 05:03 - 2022-09-14 05:03 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-09-14 05:03 - 2022-09-14 05:03 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-09-14 04:59 - 2022-09-14 04:59 - 000000000 ___HD C:\$WinREAgent
2022-09-07 20:31 - 2022-09-15 00:25 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-09-05 14:29 - 2022-09-05 14:29 - 000000000 ____D C:\Users\neumm\Desktop\Fotky_svatba
2022-09-05 14:28 - 2022-09-05 14:28 - 348478262 _____ C:\Users\neumm\Desktop\Fotky_svatba.zip
2022-09-01 20:33 - 2022-09-01 20:33 - 000274609 _____ C:\Users\neumm\Documents\IMG_20220901_0001.pdf
2022-08-26 17:54 - 2022-08-26 17:54 - 000570003 _____ C:\Users\neumm\Documents\IMG_20220826_0001.pdf
2022-08-25 16:33 - 2022-08-25 16:34 - 001121072 _____ C:\Users\neumm\Documents\IMG_20220825_0001.pdf
2022-08-25 09:05 - 2022-08-25 13:55 - 3201102868 _____ C:\Users\neumm\Desktop\Matrix 4.mkv
2022-08-22 16:35 - 2022-08-22 16:35 - 000000000 ___HD C:\ProgramData\CanonIJMIG
2022-08-22 16:34 - 2022-08-22 16:35 - 000000000 ___HD C:\ProgramData\CanonIJScan
2022-08-22 16:29 - 2022-08-22 16:29 - 000000234 _____ C:\Users\Public\Desktop\Příručka online Canon TS3100 series.url
2022-08-22 16:29 - 2022-08-22 16:29 - 000000000 ___HD C:\ProgramData\CanonIJQuickMenu
2022-08-22 16:24 - 2022-08-22 16:24 - 000002109 _____ C:\Users\Public\Desktop\Canon Quick Menu.lnk
2022-08-22 16:24 - 2022-08-22 16:24 - 000000000 ____D C:\ProgramData\CanonIJWSpt
2022-08-22 16:23 - 2022-08-22 16:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon TS3100 series Elektronická příručka
2022-08-22 16:20 - 2022-08-22 16:39 - 000000000 ____D C:\Users\neumm\AppData\Roaming\Canon
2022-08-22 16:14 - 2022-08-22 16:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2022-08-22 16:14 - 2022-08-22 16:23 - 000000000 ____D C:\Program Files\Canon
2022-08-22 16:14 - 2017-02-27 09:14 - 000347136 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNC_DRL.dll
2022-08-22 16:14 - 2016-10-31 17:44 - 000089600 _____ C:\WINDOWS\SysWOW64\CNC1827D.TBL
2022-08-22 16:14 - 2008-08-25 18:02 - 000015872 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNHMCA.dll
2022-08-22 16:13 - 2022-08-22 16:13 - 000000000 ___HD C:\ProgramData\CanonBJ
2022-08-22 16:13 - 2022-08-22 16:13 - 000000000 ___HD C:\Program Files\CanonBJ
2022-08-22 16:13 - 2017-03-13 05:00 - 001302016 _____ (CANON INC.) C:\WINDOWS\system32\CNMLMDR.DLL
2022-08-22 16:08 - 2022-09-01 20:35 - 000000000 ____D C:\ProgramData\CanonIJPLM
2022-08-22 16:08 - 2022-08-22 16:24 - 000000000 ____D C:\Program Files (x86)\Canon
2022-08-22 16:08 - 2022-08-22 16:08 - 000000000 ____D C:\ProgramData\Canon

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-18 09:59 - 2021-04-07 15:50 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-09-18 09:59 - 2019-12-07 16:41 - 000719322 _____ C:\WINDOWS\system32\perfh005.dat
2022-09-18 09:59 - 2019-12-07 16:41 - 000145448 _____ C:\WINDOWS\system32\perfc005.dat
2022-09-18 09:59 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-09-18 09:55 - 2019-09-02 22:44 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-18 09:54 - 2019-11-15 02:56 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-18 09:53 - 2021-04-07 15:48 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-09-18 09:53 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-09-18 09:53 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-18 09:53 - 2019-11-15 02:53 - 000000000 ____D C:\ProgramData\AVAST Software
2022-09-18 09:52 - 2021-04-07 15:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-18 09:52 - 2021-04-07 15:42 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-18 09:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-09-18 09:52 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2022-09-18 09:52 - 2019-09-02 22:45 - 000000134 _____ C:\WINDOWS\system32\regtest.txt
2022-09-18 09:51 - 2020-10-26 10:10 - 000274976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-09-18 09:51 - 2020-04-21 12:53 - 000553880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-09-18 09:51 - 2019-12-03 23:11 - 000000000 ____D C:\Users\neumm\AppData\LocalLow\Mozilla
2022-09-18 09:51 - 2019-11-15 02:54 - 000861936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-09-18 09:51 - 2019-11-15 02:54 - 000671216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-09-18 09:51 - 2019-11-15 02:54 - 000389064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-09-18 09:51 - 2019-11-15 02:54 - 000327408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-09-18 09:51 - 2019-11-15 02:54 - 000257992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-09-18 09:51 - 2019-11-15 02:54 - 000237632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-09-18 09:51 - 2019-11-15 02:54 - 000113920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-09-18 09:51 - 2019-11-15 02:54 - 000104904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-09-18 09:51 - 2019-11-15 02:54 - 000088984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-09-18 09:51 - 2019-11-15 02:54 - 000047936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-09-18 09:51 - 2019-11-15 02:54 - 000041760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2022-09-18 09:51 - 2019-11-15 02:54 - 000024528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2022-09-18 09:49 - 2022-02-10 23:02 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-09-18 09:23 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-17 08:20 - 2021-04-07 15:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-17 08:19 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-17 07:20 - 2020-06-05 22:13 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-17 07:20 - 2020-06-05 22:13 - 000002285 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-09-17 07:20 - 2019-11-15 02:56 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-17 07:20 - 2019-11-15 02:56 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-09-16 19:39 - 2019-11-15 02:55 - 000000000 ____D C:\Users\neumm\AppData\Local\CEF
2022-09-16 12:49 - 2019-11-22 11:07 - 000000000 ____D C:\Users\neumm\AppData\Roaming\VMware
2022-09-16 11:11 - 2019-11-22 12:17 - 000000000 ____D C:\Users\neumm\AppData\Roaming\vlc
2022-09-16 10:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-09-15 13:54 - 2021-12-12 21:22 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3199823060-2990485202-3779144827-1001
2022-09-15 13:54 - 2021-04-07 15:48 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3199823060-2990485202-3779144827-1001
2022-09-15 13:54 - 2021-04-07 15:44 - 000002392 _____ C:\Users\neumm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-09-15 12:55 - 2021-04-07 15:48 - 000004466 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1580151375
2022-09-15 00:25 - 2021-04-07 15:43 - 000446080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-09-15 00:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-09-15 00:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-09-15 00:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-09-15 00:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-09-15 00:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-09-15 00:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-09-15 00:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-09-15 00:25 - 2019-12-03 23:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-09-15 00:24 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-09-15 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-09-15 00:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-09-14 05:05 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-09-14 05:03 - 2021-04-07 15:47 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-09-14 04:56 - 2019-11-14 12:18 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-09-14 04:53 - 2019-11-14 12:18 - 141646296 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-09-10 09:32 - 2021-11-19 12:03 - 000000000 ____D C:\Users\neumm\Desktop\byt
2022-09-08 08:25 - 2020-12-30 13:39 - 000005549 _____ C:\Users\neumm\Desktop\hamů.txt
2022-09-07 20:34 - 2021-10-12 11:18 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-09-07 20:34 - 2019-12-03 23:11 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-09-07 20:33 - 2021-04-07 15:48 - 000004212 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1573726733
2022-09-07 20:33 - 2019-11-14 12:18 - 000001420 _____ C:\Users\neumm\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2022-09-07 09:23 - 2018-09-19 20:10 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-09-06 16:11 - 2019-11-15 02:48 - 000000000 ____D C:\Users\neumm\AppData\Local\Packages
2022-09-02 06:06 - 2020-09-16 11:03 - 000000365 _____ C:\Users\neumm\Desktop\police_zubar.txt
2022-09-02 06:06 - 2020-04-26 19:24 - 000000118 _____ C:\Users\neumm\Desktop\aktivity_2022.txt
2022-09-02 06:03 - 2019-12-31 08:32 - 000000000 ____D C:\Users\neumm\Desktop\Dupík
2022-08-31 04:58 - 2021-04-07 15:48 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-08-31 04:58 - 2021-04-07 15:48 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-08-23 10:31 - 2022-04-26 21:03 - 000000476 _____ C:\Users\neumm\Desktop\TODO_Přelouč_květen.txt
2022-08-23 05:16 - 2021-04-07 15:48 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-23 05:16 - 2021-04-07 15:48 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-22 16:45 - 2020-10-02 11:05 - 000000000 ____D C:\Users\neumm\Desktop\smlouvy
2022-08-22 16:14 - 2019-12-07 11:14 - 000000000 __RSD C:\WINDOWS\Media

==================== Files in the root of some directories ========

2020-09-21 11:20 - 2020-09-21 11:20 - 000000884 _____ () C:\Users\neumm\AppData\Local\recently-used.xbel

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-08-2022
Ran by Rascar (18-09-2022 10:02:12)
Running from C:\Users\neumm\Desktop
Microsoft Windows 10 Home Version 21H2 19044.2006 (X64) (2021-04-07 13:48:33)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3199823060-2990485202-3779144827-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3199823060-2990485202-3779144827-503 - Limited - Disabled)
Guest (S-1-5-21-3199823060-2990485202-3779144827-501 - Limited - Disabled)
Rascar (S-1-5-21-3199823060-2990485202-3779144827-1001 - Administrator - Enabled) => C:\Users\neumm
WDAGUtilityAccount (S-1-5-21-3199823060-2990485202-3779144827-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.344 - Adobe)
Adobe Reader XI - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 22.8.6030 - Avast Software)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.74.1085 - AB Team, d.o.o.)
Canon IJ Network Scanner Selector EX2 (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX2) (Version: 2.0.5.3 - Canon Inc.)
Canon IJ Printer Assistant Tool (HKLM-x32\...\Canon IJ Printer Assistant Tool) (Version: 1.00.1.51 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.4.0.16 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.4.0 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.4 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
Canon TS3100 series Elektronická příručka (HKLM-x32\...\Canon TS3100 series Elektronická příručka) (Version: 1.4.0 - Canon Inc.)
Canon TS3100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_TS3100_series) (Version: 1.01 - Canon Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.11.0.1001 - Disc Soft Ltd)
Epic Games Launcher (HKLM-x32\...\{DCE27B29-200D-491A-BBC5-98ECEFEC0843}) (Version: 1.1.257.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FyTek's PDF File Creator 2.4 (HKLM-x32\...\FyTek's PDF File Creator Demo_is1) (Version: 2.4 - )
GIMP 2.8.0 (HKLM\...\GIMP-2_is1) (Version: 2.8.0 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 105.0.5195.127 - Google LLC)
Intel(R) Chipset Device Software (HKLM\...\{19D17223-0F9C-4155-8057-AA6F49A26E69}) (Version: 10.1.17861.8101 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{fcfc894b-0d54-4d39-826f-dcb39ce5dde7}) (Version: 10.1.17861.8101 - Intel(R) Corporation)
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-3199823060-2990485202-3779144827-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Legion Arena (HKLM-x32\...\Legion Arena_is1) (Version: 1.3.1.1 - Lenovo Group Ltd.)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.13.14.0 - Lenovo Group Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 105.0.1343.42 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 105.0.1343.33 - Microsoft Corporation)
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3199823060-2990485202-3779144827-1001\...\OneDriveSetup.exe) (Version: 22.176.0821.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.24.28127 (HKLM\...\{8678BA04-D161-45BE-ACA4-CC5D13073F35}) (Version: 14.24.28127 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.24.28127 (HKLM\...\{7DC387B8-E6A2-480C-8EF9-A6E51AE81C19}) (Version: 14.24.28127 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.24.28127 (HKLM-x32\...\{EAC73207-74BD-4B13-AACF-8C0E751FA4E8}) (Version: 14.24.28127 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.24.28127 (HKLM-x32\...\{2E72FA1F-BADB-4337-B8AE-F7C17EC57D1D}) (Version: 14.24.28127 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 104.0.2 (x64 cs)) (Version: 104.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 71.0 - Mozilla)
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 457.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 457.49 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Opera Stable 90.0.4480.84 (HKU\S-1-5-21-3199823060-2990485202-3779144827-1001\...\Opera 90.0.4480.84) (Version: 90.0.4480.84 - Opera Software)
PDF Architect 7 (HKLM-x32\...\PDF Architect 7) (Version: 7.1.13.1755 - pdfforge GmbH)
PDF Architect 7 Create Module (HKLM\...\{B600CC13-8F68-4D44-8867-93490894FAE5}) (Version: 7.1.14.4969 - pdfforge GmbH) Hidden
PDF Architect 7 Edit Module (HKLM\...\{BA2C2671-B379-4101-A21C-4C549671FC8D}) (Version: 7.1.14.4969 - pdfforge GmbH) Hidden
PDF Architect 7 View Module (HKLM\...\{E947A304-6110-4CFE-98AD-E6909072E87D}) (Version: 7.1.14.4969 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.5.1 - pdfforge GmbH)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 5.0.1.312 - Jan Fiala)
Registrace tiskárny (HKLM-x32\...\Canon EISRegistration) (Version: 1.9.0 - Canon Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22 - Ghisler Software GmbH)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
VMware Horizon Client (HKLM\...\{73499771-35D2-4F4E-AC1B-8417816D6F6A}) (Version: 5.4.2.11170 - VMware, Inc.) Hidden
VMware Horizon Client (HKLM-x32\...\{4cd5b1d3-b7c2-4949-9131-8f4b14b1cead}) (Version: 5.4.2.11170 - VMware, Inc.)
VMware Horizon HTML5 Multimedia Redirection Client (HKLM\...\{E6EA3E80-74E7-431A-80C3-9CB0E4CECBDD}) (Version: 7.12.0 - VMware, Inc.) Hidden
VMware Horizon Media Engine 11.0.0.613 (64-bit) (HKLM\...\{3747D742-8099-43C1-AEB5-EBC516D062A6}) (Version: 11.0.0.613 - VMware, Inc.) Hidden
VMware Horizon Media Redirection for Microsoft Teams (HKLM\...\{B253D5D4-842E-4875-8B29-1C74BEE7DD98}) (Version: 7.12.0 - VMware, Inc.) Hidden
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.756 - McAfee, LLC)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Zoom Plugin for Vmware Horizon Client (HKLM-x32\...\{0E6187FA-7B95-4CC7-A890-BE9A84A528A5}) (Version: 5.5.20606 - Zoom Video Communications, Inc.)

Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.21.71.0_x64__kgqvnymyfvs32 [2022-07-23] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.88.4.0_x64__kgqvnymyfvs32 [2022-09-14] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.2360.3.0_x64__kgqvnymyfvs32 [2022-09-16] (king.com)
Dolby Atmos for Gaming -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAtmosforGaming_3.20500.501.0_x64__rz1tebttyb220 [2020-06-15] (Dolby Laboratories)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2021-09-14] (INTEL CORP)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.2.54.0_x64__5grkq8ppsgwt4 [2022-06-26] (LENOVO INC) [Startup Task]
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2208.7.0_x64__k1h2ywk1493x8 [2022-08-23] (LENOVO INC.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-11-15] (LinkedIn)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.15601.20088.0_x86__8wekyb3d8bbwe [2022-09-09] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-04-07] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-04-07] (Microsoft Corporation) [MS Ad]
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.15601.20088.0_x86__8wekyb3d8bbwe [2022-09-09] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.15601.20088.0_x86__8wekyb3d8bbwe [2022-09-09] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.15601.20088.0_x86__8wekyb3d8bbwe [2022-09-09] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.15601.20088.0_x86__8wekyb3d8bbwe [2022-09-09] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.15601.20088.0_x86__8wekyb3d8bbwe [2022-09-09] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.14.9020.0_x64__8wekyb3d8bbwe [2022-09-09] (Microsoft Studios) [MS Ad]
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.15601.20088.0_x86__8wekyb3d8bbwe [2022-09-09] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-01-18] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.10.216.0_x64__dt26b99r8h8gj [2020-06-15] (Realtek Semiconductor Corp)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-05-06] (Microsoft Corporation)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0 [2022-09-09] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3199823060-2990485202-3779144827-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Programy\PSPad editor\pspshellx64.dll () [File not signed]
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-18] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PDFArchitect7_ManagerExt] -> {21989F59-B260-4302-90C3-E51740E03639} => C:\Program Files\PDF Architect 7\context-menu.dll [2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2018-11-13] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-11-22] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-11-22] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlt.inf_amd64_04baa46c48be5bb8\nvshext.dll [2021-06-07] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-18] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-3199823060-2990485202-3779144827-1001: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Programy\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2019-11-22 12:26 - 2014-11-02 19:45 - 000029184 _____ () [File not signed] C:\Programy\PSPad editor\pspshellx64.dll
2022-08-22 16:14 - 2016-12-09 11:09 - 000008192 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNS2_CSY.DLL
2022-08-22 16:14 - 2016-12-09 11:09 - 000104960 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNS2_IMG.dll
2017-03-02 15:19 - 2017-03-02 15:19 - 000310272 ____N (easyhook.codeplex.com) [File not signed] C:\Program Files\Common Files\Dolby\DAX3\RADARHOST\EasyHook64.dll
2019-11-22 12:10 - 2019-11-22 12:10 - 000116736 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll
2018-12-10 11:29 - 2018-12-10 11:29 - 000438272 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Program Files\PDF Architect 7\libcurl.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-3199823060-2990485202-3779144827-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-3199823060-2990485202-3779144827-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-3199823060-2990485202-3779144827-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
BHO: PDF Architect 7 Helper -> {2B035CAB-1F3D-4DE6-A32D-39B9E5F456D0} -> C:\Program Files\PDF Architect 7\creator\plugins\IEAddin\creator-ie-helper.dll [2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2022-07-20] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: PDF Architect 7 Helper -> {2B035CAB-1F3D-4DE6-A32D-39B9E5F456D0} -> C:\Program Files (x86)\PDF Architect 7\creator\plugins\IEAddin\creator-ie-helper.dll [2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2022-07-20] (McAfee, LLC -> McAfee, LLC)
Toolbar: HKLM - PDF Architect 7 Toolbar - {61E612A7-2382-4570-8D3F-42BC136DDAD7} - C:\Program Files\PDF Architect 7\creator\plugins\IEAddin\creator-ie-plugin.dll [2019-10-07] (pdfforge GmbH -> pdfforge GmbH)
Toolbar: HKLM-x32 - PDF Architect 7 Toolbar - {61E612A7-2382-4570-8D3F-42BC136DDAD7} - C:\Program Files (x86)\PDF Architect 7\creator\plugins\IEAddin\creator-ie-plugin.dll [2019-10-07] (pdfforge GmbH -> pdfforge GmbH)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 09:31 - 2019-11-22 11:07 - 000000876 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 view-localhost # view localhost server

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3199823060-2990485202-3779144827-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{48BF9FD1-B3C0-4C58-939E-AC139FB18ABB}] => (Allow) C:\Programy\Steam\steamapps\common\AoE2DE\BattleServer\BattleServer.exe () [File not signed]
FirewallRules: [{EE24C266-5408-4C9E-B8D8-28A17ABE4023}] => (Allow) C:\Programy\Steam\steamapps\common\AoE2DE\BattleServer\BattleServer.exe () [File not signed]
FirewallRules: [{F17A9D47-5778-4B8D-89A6-E305568FEFE4}] => (Allow) C:\Programy\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Wicked Witch Software Pty Ltd -> Microsoft Corporation)
FirewallRules: [{FE78405E-B35A-4EEE-BCD5-F57BA20D6F39}] => (Allow) C:\Programy\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Wicked Witch Software Pty Ltd -> Microsoft Corporation)
FirewallRules: [UDP Query User{0D313B12-003C-4646-B353-20C3DD6B3D17}C:\users\neumm\appdata\local\programs\opera\74.0.3911.203\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\74.0.3911.203\opera.exe => No File
FirewallRules: [TCP Query User{FBD07316-A2A0-4363-8615-C0AFFB423145}C:\users\neumm\appdata\local\programs\opera\74.0.3911.203\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\74.0.3911.203\opera.exe => No File
FirewallRules: [UDP Query User{05E8CDE7-9EDE-4BFD-B3E5-660043F54E5E}C:\users\neumm\appdata\local\programs\opera\74.0.3911.107\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\74.0.3911.107\opera.exe => No File
FirewallRules: [TCP Query User{1622883D-BAF2-4525-AC67-60256C353F1E}C:\users\neumm\appdata\local\programs\opera\74.0.3911.107\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\74.0.3911.107\opera.exe => No File
FirewallRules: [UDP Query User{F1657804-D7A7-41B3-9834-AF2F84A3CD8D}C:\users\neumm\appdata\local\programs\opera\73.0.3856.344\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\73.0.3856.344\opera.exe => No File
FirewallRules: [TCP Query User{CF30384C-21D9-4993-ADA9-7B1884E5FA39}C:\users\neumm\appdata\local\programs\opera\73.0.3856.344\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\73.0.3856.344\opera.exe => No File
FirewallRules: [UDP Query User{B95F80A6-9E09-4B4A-9326-49F30DD38DC4}C:\users\neumm\appdata\local\programs\opera\73.0.3856.329\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\73.0.3856.329\opera.exe => No File
FirewallRules: [TCP Query User{56DA7121-E8F3-47E6-8DE2-29052FF7E699}C:\users\neumm\appdata\local\programs\opera\73.0.3856.329\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\73.0.3856.329\opera.exe => No File
FirewallRules: [UDP Query User{84464CED-43A3-4608-8A8D-74062029FB57}C:\users\neumm\appdata\local\programs\opera\72.0.3815.400\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\72.0.3815.400\opera.exe => No File
FirewallRules: [TCP Query User{687D34AE-89F5-4920-BB0B-18EF8D70DC70}C:\users\neumm\appdata\local\programs\opera\72.0.3815.400\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\72.0.3815.400\opera.exe => No File
FirewallRules: [{640CFDDD-D67D-4868-A84D-0BC75503826F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{360CF57C-C88E-4382-A09F-51B57D0AEE9D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DCBBCE92-5ECC-47E7-AEA5-EF996FCE6B1A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4B06AB9F-C122-4DC9-86E4-A323F8E1BCEB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{2502A1E7-F8F5-40AB-9BFF-ACCB33A243CF}C:\users\neumm\appdata\local\programs\opera\72.0.3815.186\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\72.0.3815.186\opera.exe => No File
FirewallRules: [TCP Query User{D004556F-39DD-4443-8632-65B57B705EA3}C:\users\neumm\appdata\local\programs\opera\72.0.3815.186\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\72.0.3815.186\opera.exe => No File
FirewallRules: [UDP Query User{37FD1C36-27B1-4BA3-910F-D93CF0FA8826}C:\users\neumm\appdata\local\programs\opera\71.0.3770.284\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\71.0.3770.284\opera.exe => No File
FirewallRules: [TCP Query User{09B81E89-B08B-46D4-855E-9B1C5D65D040}C:\users\neumm\appdata\local\programs\opera\71.0.3770.284\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\71.0.3770.284\opera.exe => No File
FirewallRules: [UDP Query User{AD728CAD-B606-4196-8BD1-2D028401AE91}C:\users\neumm\appdata\local\programs\opera\71.0.3770.228\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\71.0.3770.228\opera.exe => No File
FirewallRules: [TCP Query User{CECDE71E-9B2F-4AB9-AAAB-57F01CE00F3D}C:\users\neumm\appdata\local\programs\opera\71.0.3770.228\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\71.0.3770.228\opera.exe => No File
FirewallRules: [UDP Query User{FAC40648-EC18-4273-89AB-36CF11A4CEBF}C:\users\neumm\appdata\local\programs\opera\70.0.3728.189\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\70.0.3728.189\opera.exe => No File
FirewallRules: [TCP Query User{8A54F4BD-109E-4451-A914-7D9137FD2CF1}C:\users\neumm\appdata\local\programs\opera\70.0.3728.189\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\70.0.3728.189\opera.exe => No File
FirewallRules: [UDP Query User{2BAE7006-B17B-4DD5-806E-A7B14FEC8BFF}C:\users\neumm\appdata\local\programs\opera\70.0.3728.178\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\70.0.3728.178\opera.exe => No File
FirewallRules: [TCP Query User{84804FB3-0D56-4A3E-A5C8-859DEBFCFDEA}C:\users\neumm\appdata\local\programs\opera\70.0.3728.178\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\70.0.3728.178\opera.exe => No File
FirewallRules: [UDP Query User{54E0F067-229D-49F8-9A5D-CD75227437DF}C:\users\neumm\appdata\local\programs\opera\70.0.3728.154\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\70.0.3728.154\opera.exe => No File
FirewallRules: [TCP Query User{F72EC086-3DCC-4999-9C53-0C71483705CA}C:\users\neumm\appdata\local\programs\opera\70.0.3728.154\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\70.0.3728.154\opera.exe => No File
FirewallRules: [UDP Query User{45A94C1F-FCC2-442A-91C9-6481D1AA3133}C:\users\neumm\appdata\local\programs\opera\70.0.3728.106\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\70.0.3728.106\opera.exe => No File
FirewallRules: [TCP Query User{D47BAB96-E0C8-43BC-AA8A-A67681B34CCF}C:\users\neumm\appdata\local\programs\opera\70.0.3728.106\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\70.0.3728.106\opera.exe => No File
FirewallRules: [UDP Query User{E836945A-6D92-490B-A1DD-C34E284E40A4}C:\users\neumm\appdata\local\programs\opera\69.0.3686.95\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\69.0.3686.95\opera.exe => No File
FirewallRules: [TCP Query User{0DDA7EA4-AAD6-4182-92F8-05A8465BD56A}C:\users\neumm\appdata\local\programs\opera\69.0.3686.95\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\69.0.3686.95\opera.exe => No File
FirewallRules: [{D8294E30-AAB4-4B6A-8E0B-A7FE6C88775D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16040.10730.20103.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe => No File
FirewallRules: [{72611103-B706-4291-BB9D-B4410747BB19}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{76EC1261-25AA-4136-A8CC-8FDBAC4159C0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C22C443D-7FF1-41E1-84E5-6081681D14B2}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => No File
FirewallRules: [{579BF837-AAE7-4D4D-9B14-A0ECF48E343F}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => No File
FirewallRules: [{434ECA9B-00DB-4C43-A554-67F54B22A686}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\x64\vmware-remotemks.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{9E63EEDD-52F9-4ECB-900F-F438AAD46B7F}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\x64\vmware-remotemks.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{27EFB314-2763-436A-9023-4ADB684917FB}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{EDE1D86F-508C-49B4-873A-8DD49A1074B4}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [TCP Query User{A2A085A6-281E-49E2-92DD-8781C02C8198}C:\users\neumm\appdata\local\programs\opera\65.0.3467.48\opera.exe] => (Allow) C:\users\neumm\appdata\local\programs\opera\65.0.3467.48\opera.exe => No File
FirewallRules: [UDP Query User{0403744E-CDA8-413B-A7D2-03217E59F28F}C:\users\neumm\appdata\local\programs\opera\65.0.3467.48\opera.exe] => (Allow) C:\users\neumm\appdata\local\programs\opera\65.0.3467.48\opera.exe => No File
FirewallRules: [{A469CE04-154D-41AF-9D56-0E2B0C8B367F}] => (Allow) C:\Programy\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C0811EF0-6497-460C-8915-1682CA29E6A8}] => (Allow) C:\Programy\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{3602B2C6-7A14-4728-BE09-2A9775B497AF}] => (Allow) C:\Programy\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{2692AF56-711B-49B2-BE84-608B3EC212E8}] => (Allow) C:\Programy\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [TCP Query User{C8647E32-D0E9-4E9B-9AB4-940EDEF45461}C:\games\riot games\league of legends\game\league of legends.exe] => (Allow) C:\games\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{4C66CC8E-37DE-49A7-BBF2-3D3C65ADB7EA}C:\games\riot games\league of legends\game\league of legends.exe] => (Allow) C:\games\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{9CC40295-BAB9-4679-8103-ED38F3D361D9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EE9083EE-123E-418C-A002-14F776267EB1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{5C4F52B9-E956-42F0-802D-646D9FD497DF}] => (Allow) C:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{8B4A44DD-5B0F-43C3-9CEF-FDF63400BA67}] => (Allow) C:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{A34F8826-7CF4-4747-BC83-72D2EEDA0DD0}C:\users\neumm\appdata\local\programs\opera\65.0.3467.62\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\65.0.3467.62\opera.exe => No File
FirewallRules: [UDP Query User{7F6E56F3-0A81-45DB-95B0-83DEE8C3EBE5}C:\users\neumm\appdata\local\programs\opera\65.0.3467.62\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\65.0.3467.62\opera.exe => No File
FirewallRules: [TCP Query User{A4EFE6F3-7F57-416F-8343-DBE9F84FDB84}C:\users\neumm\appdata\local\programs\opera\65.0.3467.78\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\65.0.3467.78\opera.exe => No File
FirewallRules: [UDP Query User{D3F50CC7-E3B9-4E8C-8C94-524ABE4D499A}C:\users\neumm\appdata\local\programs\opera\65.0.3467.78\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\65.0.3467.78\opera.exe => No File
FirewallRules: [TCP Query User{D102D5FC-64CF-4E90-9E0F-AF9668DDBF31}C:\users\neumm\appdata\local\programs\opera\66.0.3515.44\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\66.0.3515.44\opera.exe => No File
FirewallRules: [UDP Query User{8C5F9749-E163-4CB4-A7D8-5063C5590091}C:\users\neumm\appdata\local\programs\opera\66.0.3515.44\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\66.0.3515.44\opera.exe => No File
FirewallRules: [TCP Query User{521E7960-370A-4403-951C-28D5214A038E}C:\users\neumm\appdata\local\programs\opera\66.0.3515.72\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\66.0.3515.72\opera.exe => No File
FirewallRules: [UDP Query User{E31A63BC-6746-4108-A5E3-100A98835B63}C:\users\neumm\appdata\local\programs\opera\66.0.3515.72\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\66.0.3515.72\opera.exe => No File
FirewallRules: [TCP Query User{E019F9EE-308F-4F2A-A8EB-99467E1C985E}C:\users\neumm\appdata\local\programs\opera\66.0.3515.103\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\66.0.3515.103\opera.exe => No File
FirewallRules: [UDP Query User{8BB9CC50-48CB-4ED6-B506-799DEC535CA0}C:\users\neumm\appdata\local\programs\opera\66.0.3515.103\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\66.0.3515.103\opera.exe => No File
FirewallRules: [TCP Query User{0FFE5F82-F3F6-4B36-BEBB-D9ED47F913D1}C:\users\neumm\appdata\local\programs\opera\66.0.3515.115\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\66.0.3515.115\opera.exe => No File
FirewallRules: [UDP Query User{BE6259FE-E73F-41E3-8FB9-FD85EBE66B04}C:\users\neumm\appdata\local\programs\opera\66.0.3515.115\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\66.0.3515.115\opera.exe => No File
FirewallRules: [TCP Query User{93E54F33-6CA8-4F89-8EE3-9377E4E45D64}C:\users\neumm\appdata\local\programs\opera\67.0.3575.53\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\67.0.3575.53\opera.exe => No File
FirewallRules: [UDP Query User{7254FB8A-5982-4293-BFB6-2E8679E31D77}C:\users\neumm\appdata\local\programs\opera\67.0.3575.53\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\67.0.3575.53\opera.exe => No File
FirewallRules: [TCP Query User{4391BE7B-B42B-42C6-8E8C-92B9133F93F5}C:\users\neumm\appdata\local\programs\opera\67.0.3575.79\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\67.0.3575.79\opera.exe => No File
FirewallRules: [UDP Query User{658D1E58-BF06-4ED6-A4EF-141CAB884894}C:\users\neumm\appdata\local\programs\opera\67.0.3575.79\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\67.0.3575.79\opera.exe => No File
FirewallRules: [TCP Query User{07BFDC7F-9DD1-4532-B360-F37823011DF1}C:\users\neumm\appdata\local\programs\opera\67.0.3575.97\opera.exe] => (Allow) C:\users\neumm\appdata\local\programs\opera\67.0.3575.97\opera.exe => No File
FirewallRules: [UDP Query User{903BB02A-7EFF-4C92-86FC-BE5F7AF5C752}C:\users\neumm\appdata\local\programs\opera\67.0.3575.97\opera.exe] => (Allow) C:\users\neumm\appdata\local\programs\opera\67.0.3575.97\opera.exe => No File
FirewallRules: [TCP Query User{8F925D3F-9640-4D14-B3A0-499F7B2D7139}C:\users\neumm\appdata\local\programs\opera\67.0.3575.115\opera.exe] => (Allow) C:\users\neumm\appdata\local\programs\opera\67.0.3575.115\opera.exe => No File
FirewallRules: [UDP Query User{BBD45013-D778-4E9E-9451-6B220AC12C12}C:\users\neumm\appdata\local\programs\opera\67.0.3575.115\opera.exe] => (Allow) C:\users\neumm\appdata\local\programs\opera\67.0.3575.115\opera.exe => No File
FirewallRules: [TCP Query User{FAEEA89E-F750-44AE-8A34-8AF171ECAB0C}C:\users\neumm\appdata\local\programs\opera\67.0.3575.137\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\67.0.3575.137\opera.exe => No File
FirewallRules: [UDP Query User{C97A4EA6-7B40-4C78-BA72-81BBF1486FBA}C:\users\neumm\appdata\local\programs\opera\67.0.3575.137\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\67.0.3575.137\opera.exe => No File
FirewallRules: [{646B8E2A-B4D7-43FC-948D-05E5B7ADC79A}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\x64\vmware-remotemks.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{5E64738B-8752-4CC1-BDDB-5F76A570006C}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\x64\vmware-remotemks.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{4F786727-9C6C-424B-86DA-9717740461AC}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\x64\vmware-remotemks.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{BC77EFFB-DD37-42E9-8432-8C4B7F432C4F}] => (Allow) C:\Program Files (x86)\VMware\VMware Horizon View Client\x64\vmware-remotemks.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [TCP Query User{8011D3B9-B848-473F-A7AF-AC1249310BFB}C:\users\neumm\appdata\local\programs\opera\68.0.3618.63\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\68.0.3618.63\opera.exe => No File
FirewallRules: [UDP Query User{42B65FCE-2153-48AD-A440-01A4B34EE3CA}C:\users\neumm\appdata\local\programs\opera\68.0.3618.63\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\68.0.3618.63\opera.exe => No File
FirewallRules: [TCP Query User{1030E643-A3E1-4854-B97C-2A8E9407310B}C:\users\neumm\appdata\local\programs\opera\68.0.3618.125\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\68.0.3618.125\opera.exe => No File
FirewallRules: [UDP Query User{DBB364A0-2063-413F-B7B3-5D7231FF4585}C:\users\neumm\appdata\local\programs\opera\68.0.3618.125\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\68.0.3618.125\opera.exe => No File
FirewallRules: [TCP Query User{61C18A7E-47A6-4834-B12B-99C0D7B79D8C}C:\users\neumm\appdata\local\programs\opera\68.0.3618.125\opera.exe] => (Allow) C:\users\neumm\appdata\local\programs\opera\68.0.3618.125\opera.exe => No File
FirewallRules: [UDP Query User{4049D0FE-A366-41F0-92BD-122423B81543}C:\users\neumm\appdata\local\programs\opera\68.0.3618.125\opera.exe] => (Allow) C:\users\neumm\appdata\local\programs\opera\68.0.3618.125\opera.exe => No File
FirewallRules: [TCP Query User{AE1DAAB5-90FC-4AD8-A13B-3F3DA00B368F}C:\users\neumm\appdata\local\programs\opera\68.0.3618.165\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\68.0.3618.165\opera.exe => No File
FirewallRules: [UDP Query User{C774CBDC-4724-4789-8B11-20B97FFE0088}C:\users\neumm\appdata\local\programs\opera\68.0.3618.165\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\68.0.3618.165\opera.exe => No File
FirewallRules: [TCP Query User{243C5602-0FDA-4A92-88C0-10B803D038F2}C:\users\neumm\appdata\local\programs\opera\68.0.3618.173\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\68.0.3618.173\opera.exe => No File
FirewallRules: [UDP Query User{9B0EF15F-1251-49AB-986F-A560F982DEB5}C:\users\neumm\appdata\local\programs\opera\68.0.3618.173\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\68.0.3618.173\opera.exe => No File
FirewallRules: [TCP Query User{C61260E8-B765-4DAD-8F2E-D3A7E5FC4870}C:\users\neumm\appdata\local\programs\opera\75.0.3969.149\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\75.0.3969.149\opera.exe => No File
FirewallRules: [UDP Query User{BAF7C99D-1FA5-40ED-925F-42C528BB6C85}C:\users\neumm\appdata\local\programs\opera\75.0.3969.149\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\75.0.3969.149\opera.exe => No File
FirewallRules: [TCP Query User{88FBC80A-A497-4D87-8805-A37D1977F7AE}C:\users\neumm\appdata\local\programs\opera\75.0.3969.171\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\75.0.3969.171\opera.exe => No File
FirewallRules: [UDP Query User{A6FCB39C-81E9-478B-9074-FC9B979B9613}C:\users\neumm\appdata\local\programs\opera\75.0.3969.171\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\75.0.3969.171\opera.exe => No File
FirewallRules: [TCP Query User{1992CF81-9E5A-4590-9A62-5A455815C4B1}C:\users\neumm\appdata\local\programs\opera\75.0.3969.243\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\75.0.3969.243\opera.exe => No File
FirewallRules: [UDP Query User{7D31036C-5345-4249-A539-2B44D43A0EFB}C:\users\neumm\appdata\local\programs\opera\75.0.3969.243\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\75.0.3969.243\opera.exe => No File
FirewallRules: [TCP Query User{279236E0-30E5-4136-BB39-64BB03C1DA4D}C:\users\neumm\appdata\local\programs\opera\76.0.4017.107\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\76.0.4017.107\opera.exe => No File
FirewallRules: [UDP Query User{A1C0F102-A64A-41A4-B22F-E94F11FDD14B}C:\users\neumm\appdata\local\programs\opera\76.0.4017.107\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\76.0.4017.107\opera.exe => No File
FirewallRules: [TCP Query User{CFEF707D-2F83-4128-96AD-82B45B58B690}C:\users\neumm\appdata\local\programs\opera\76.0.4017.123\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\76.0.4017.123\opera.exe => No File
FirewallRules: [UDP Query User{6336F724-5C42-4A39-8304-50559C83716D}C:\users\neumm\appdata\local\programs\opera\76.0.4017.123\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\76.0.4017.123\opera.exe => No File
FirewallRules: [TCP Query User{A00B46CE-D9D4-429D-9484-37B17595B7C7}C:\users\neumm\desktop\bulanci.exe] => (Block) C:\users\neumm\desktop\bulanci.exe => No File
FirewallRules: [UDP Query User{07124247-9331-4C6A-9941-AEA17B5E9702}C:\users\neumm\desktop\bulanci.exe] => (Block) C:\users\neumm\desktop\bulanci.exe => No File
FirewallRules: [TCP Query User{DAD7D473-BAB4-45ED-99E2-3C2821849500}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{C22C9F0E-826B-4FB5-80DB-A89126268176}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{8A521B37-CC40-469F-AEAB-6BF518549121}C:\users\neumm\appdata\local\programs\opera\76.0.4017.177\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\76.0.4017.177\opera.exe => No File
FirewallRules: [UDP Query User{F7666527-3CC4-4165-B606-5B44CAA6E131}C:\users\neumm\appdata\local\programs\opera\76.0.4017.177\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\76.0.4017.177\opera.exe => No File
FirewallRules: [TCP Query User{54D0BFF1-6CA5-4E4F-9046-BD29202204A6}C:\users\neumm\appdata\local\programs\opera\77.0.4054.90\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\77.0.4054.90\opera.exe => No File
FirewallRules: [UDP Query User{0200DE27-969C-48E4-8AB6-7BF0540AE3EB}C:\users\neumm\appdata\local\programs\opera\77.0.4054.90\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\77.0.4054.90\opera.exe => No File
FirewallRules: [TCP Query User{EFBD3E4D-28FE-401F-9101-AEC96A0748CE}C:\users\neumm\appdata\local\programs\opera\77.0.4054.203\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\77.0.4054.203\opera.exe => No File
FirewallRules: [UDP Query User{9D539B72-6134-44DC-843D-F071C5B5B318}C:\users\neumm\appdata\local\programs\opera\77.0.4054.203\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\77.0.4054.203\opera.exe => No File
FirewallRules: [TCP Query User{83480072-2C17-44EA-9E11-73864C5AB4DA}C:\users\neumm\appdata\local\programs\opera\77.0.4054.277\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\77.0.4054.277\opera.exe => No File
FirewallRules: [UDP Query User{CB2B7279-4C00-434D-83A5-D4437E9DCFD3}C:\users\neumm\appdata\local\programs\opera\77.0.4054.277\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\77.0.4054.277\opera.exe => No File
FirewallRules: [TCP Query User{2819589E-2387-4B70-ABD3-71FBCA552462}C:\users\neumm\appdata\local\programs\opera\78.0.4093.147\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\78.0.4093.147\opera.exe => No File
FirewallRules: [UDP Query User{6E2C20E6-4CAC-448B-B3FE-684FA7EE04F2}C:\users\neumm\appdata\local\programs\opera\78.0.4093.147\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\78.0.4093.147\opera.exe => No File
FirewallRules: [TCP Query User{50E0FFD3-4205-411F-AE85-C46A24D24861}C:\users\neumm\appdata\local\programs\opera\78.0.4093.184\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\78.0.4093.184\opera.exe => No File
FirewallRules: [UDP Query User{B78E0B78-7469-42B1-A60B-1B11776C5118}C:\users\neumm\appdata\local\programs\opera\78.0.4093.184\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\78.0.4093.184\opera.exe => No File
FirewallRules: [TCP Query User{8576FB9F-9791-4DFD-879B-8F2A6ECE6B60}C:\users\neumm\appdata\local\programs\opera\78.0.4093.231\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\78.0.4093.231\opera.exe => No File
FirewallRules: [UDP Query User{7CD627FD-28F9-4B9A-B335-CCEA4FF1D0F4}C:\users\neumm\appdata\local\programs\opera\78.0.4093.231\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\78.0.4093.231\opera.exe => No File
FirewallRules: [TCP Query User{FDF684C3-5C2A-4263-B14C-5B611A18F695}C:\users\neumm\appdata\local\programs\opera\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{66DC98E0-F52B-4103-8BFF-B3C14EB260B1}C:\users\neumm\appdata\local\programs\opera\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{B2E72237-416B-4B4D-B10C-DC2D79239ACB}C:\users\neumm\appdata\local\programs\opera\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{A4B6E5C3-BA47-42AB-ACBC-F983F124FC7D}C:\users\neumm\appdata\local\programs\opera\opera.exe] => (Block) C:\users\neumm\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{8565DBDA-3333-463E-9FF9-1AF955A5EDB0}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{14F140D6-6829-4606-B493-FB7CC1AE6407}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{ABC1CB9A-C477-4650-B6CC-EA6F6F14ED2C}C:\games\epic\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Block) C:\games\epic\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{EF553A4F-3582-4FA2-81A4-574E56A38272}C:\games\epic\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Block) C:\games\epic\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{F4730800-14A9-4914-BF65-12A37C414FB8}C:\games\epic\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Block) C:\games\epic\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{32E5299C-2F37-497B-98B4-A842892CD588}C:\games\epic\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Block) C:\games\epic\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{D8F84553-DBB2-4F45-BF02-7DB8767BDC89}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.15601.20088.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{374E70D0-0F75-4082-ADE3-ABE19A465A0D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B4A28146-CCE7-4618-BEB3-B296CA2E4488}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8D0D837E-0A10-4E45-87BA-D20D39B1D6BC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{19FD1466-55ED-40B2-B03F-07964DDB96E5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3C73E8C4-FF62-4D32-9F4E-8BD8151DF5A9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2F6EA600-86C2-4250-85BE-E03B3E7D2DBC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F1AC5CD2-425D-4FE3-A269-35A28BA54690}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4BB3A63E-ACD4-4194-9320-D93B0FBFAE5D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{96BC0B83-0DF6-4F1C-B24C-780A6AAB1248}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F4314E6C-432C-4E53-9693-2E171389E7BA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5AABC676-FA15-48F6-B7C6-8F108992CC2A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2EAF7B01-5E69-4850-999A-034EB2AB08B4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.193.898.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{69225D3F-16F3-40BD-BDF9-113FE318A981}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\105.0.1343.33\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{125A342C-910D-4103-BCA0-0EE14EAC40E0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{75A43C19-2AB8-4447-98F7-74C1E51A2B13}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{7BE91532-245D-4F03-9FFB-F5B3A8C4D31A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D4063111-FF17-4C23-BDCA-E600051385B6}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D4F6C625-A580-4D3F-837F-ED7DEA65A0A1}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)

==================== Restore Points =========================

28-08-2022 22:58:51 Naplánovaný kontrolní bod
09-09-2022 06:49:41 Naplánovaný kontrolní bod
14-09-2022 04:58:20 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (09/15/2022 12:25:16 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (09/15/2022 12:25:16 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (09/15/2022 12:25:16 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (09/13/2022 04:35:15 AM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY)
Description: Event-ID 17

Error: (09/09/2022 04:58:33 AM) (Source: DPTF) (EventID: 17) (User: NT AUTHORITY)
Description: Event-ID 17

Error: (09/05/2022 11:08:00 PM) (Source: System Restore) (EventID: 8211) (User: )
Description: Naplánovaný bod obnovení nebylo možné vytvořit. Další informace: (0x81000101).

Error: (09/05/2022 11:08:00 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\system32\srtasks.exe ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x81000101).

Error: (08/15/2022 11:27:47 AM) (Source: Microsoft Office 16) (EventID: 2011) (User: )
Description: Event-ID 2011

System errors:
=============
Error: (09/16/2022 02:30:56 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (09/15/2022 12:25:35 AM) (Source: Application Popup) (EventID: 875) (User: )
Description: aswArPot.sys

Error: (09/12/2022 04:30:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (09/12/2022 04:30:43 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).

Error: (09/09/2022 06:18:06 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (09/06/2022 04:10:49 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (09/06/2022 02:33:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (09/06/2022 02:33:33 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).

Windows Defender:
================
Date: 2022-09-16 14:29:45
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {32DAEB98-DF4E-4D9D-96CB-28022564C9BD}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-09-15 11:55:39
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {2C8C3AA0-9EDF-4BA9-833A-B279AACFC4D8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-09-14 14:19:27
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {F65D4329-E04E-4870-98DE-7B7FDE7E776E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-09-13 13:37:55
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {0AE250CA-A673-4863-BD77-799FE4D11296}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-09-12 11:35:54
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {1DAD7D96-E60B-4FDA-A45D-0937A0593763}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

CodeIntegrity:
===============
Date: 2022-09-18 09:54:59
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2022-09-18 09:54:04
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2022-09-18 09:53:33
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\Temp\asw966fa6875e384238.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: LENOVO BHCN44WW 01/20/2022
Motherboard: LENOVO LNVNB161216
Processor: Intel(R) Core(TM) i5-9300H CPU @ 2.40GHz
Percentage of memory in use: 62%
Total physical RAM: 8103.11 MB
Available physical RAM: 3043.88 MB
Total Virtual: 22439.11 MB
Available Virtual: 15167.97 MB

==================== Drives ================================

Drive c: (Windows-SSD) (Fixed) (Total:475.69 GB) (Free:61.96 GB) (Model: Micron MTFDHBA512TCK) NTFS

\\?\Volume{c51b1259-8418-4e27-96bf-56c7c247e024}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.48 GB) NTFS
\\?\Volume{bfcf863f-2dfe-4aaf-9f72-e49bb16f25d7}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 955C73CF)

Partition: GPT.

==================== End of Addition.txt =======================

neummi · #2 Příspěvek od **neummi** » 20 zář 2022 17:29

Pravděpodobně moje vlákno lehce zapadlo

prosím o preventivní kontrolu logu

Děkuji

#3 Příspěvek od **JaRon** » 20 zář 2022 17:48

Ahoj
vycisti PC s CCleanerom vcetne registrov
Restart
prescanuj s Adwcleanerom

neummi · #4 Příspěvek od **neummi** » 21 zář 2022 19:51

Zdravím,

vypadá to, že je vše v pořádku

Díky

# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-08-22.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 09-21-2022
# Duration: 00:00:01
# OS: Windows 10 (Build 19044.2006)
# Cleaned: 2
# Failed: 0

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Conduit
Deleted HKLM\Software\Wow6432Node\Conduit

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1959 octets] - [21/09/2022 10:47:44]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

#5 Příspěvek od **JaRon** » 21 zář 2022 21:22

Rado sa stalo

VIRY.CZ

Prosím o preventivní kontrolu

Prosím o preventivní kontrolu

Re: Prosím o preventivní kontrolu

Re: Prosím o preventivní kontrolu

Re: Prosím o preventivní kontrolu

Re: Prosím o preventivní kontrolu