Prosím o kontrolu logu.

Zpráva

Romann · #1 Příspěvek od **Romann** » 21 úno 2024 18:11

Dobrý den, antivir hlásí opkovaně nějaké svinstvo tak prosím o kontrolu logu.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19.02.2024 02
Ran by PC (administrator) on DESKTOP-76F2G8Q (Dell Inc. OptiPlex 9020) (21-02-2024 16:01:03)
Running from C:\Users\PC\Desktop\FRST64.exe
Loaded Profiles: PC
Platform: Microsoft Windows 10 Pro Version 22H2 19045.4046 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe ->) (Apowersoft Ltd -> ) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\rtmpsrv.exe
(C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe ->) (Apowersoft Ltd -> The CefSharp Authors) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Apowersoft.Browser.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(explorer.exe ->) (Apowersoft Ltd -> Apowersoft) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (UAB "Kibernetinio saugumo sistemos" -> KSS) C:\Program Files\SpyWarrior\Scanner.exe
(explorer.exe ->) (ZONER software, a.s. -> ZONER software) C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <39>
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe
(services.exe ->) (UAB "Kibernetinio saugumo sistemos" -> KSS) C:\Program Files\SpyWarrior\Stapes.exe
(sihost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11010.23003.0_x64__8wekyb3d8bbwe\PhotosService\PhotosService.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11010.23003.0_x64__8wekyb3d8bbwe\PhotosApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\PC\AppData\Local\Microsoft\OneDrive\24.020.0128.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2312.7.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8538872 2016-01-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1415928 2016-01-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1147481544-4143809418-591719556-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1147481544-4143809418-591719556-1001\...\Run: [MicrosoftEdgeAutoLaunch_B47356396DDD0FAAE76D0ED141F5CEA2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3788240 2024-02-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1147481544-4143809418-591719556-1001\...\Run: [VideoDownloadCapture] => C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe [6153880 2017-11-27] (Apowersoft Ltd -> Apowersoft)
HKU\S-1-5-21-1147481544-4143809418-591719556-1001\...\Run: [SpyWarrior] => c:\program files\SpyWarrior\Scanner.exe [1937712 2024-02-19] (UAB "Kibernetinio saugumo sistemos" -> KSS)
HKU\S-1-5-21-1147481544-4143809418-591719556-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE [437248 2014-09-12] (ZONER software, a.s. -> ZONER software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\121.0.6167.185\Installer\chrmstp.exe [2024-02-17] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {FCDC1463-28D8-4C48-A303-B2568CBCB0DC} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5577144 2024-02-18] (Microsoft Windows -> Microsoft Corporation)
Task: {D93583B8-FE9D-4093-A718-205C9F9D2C35} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\PC\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007456 2024-02-19] (ESET, spol. s r.o. -> ESET)
Task: {08E76A50-9C36-4113-8D35-AE33B47E1113} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\PC\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [18007456 2024-02-19] (ESET, spol. s r.o. -> ESET)
Task: {F1D72B73-B58C-4F42-9259-17BB03E280C3} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem123.0.6288.0{DA918000-C8BD-44F9-86CA-E3F03DE2BF64} => C:\Program Files (x86)\Google\GoogleUpdater\123.0.6288.0\updater.exe [4682528 2024-02-08] (Google LLC -> Google LLC) <==== ATTENTION
Task: {E34BB446-7323-4117-8AE0-DAE58A12A12A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2024-01-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0F67A94F-0E9F-46B5-8B57-4F34DDB2D466} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2024-01-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {24A4E2F3-4277-4709-A729-ACF81CB70C9D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2024-01-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A3553010-E489-45EF-A6A4-6A3B17CB4F1A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23110.3-0\MpCmdRun.exe [1608808 2024-01-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6AACB8DB-1801-4569-A70A-3557BE587E33} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-02-20] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {CE1237A5-435F-448A-91EE-0D3185C759DA} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1147481544-4143809418-591719556-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671136 2024-02-20] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {1C6C0F4A-B174-41C4-B8AD-29C3C8F2E50E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34720 2024-02-20] (Mozilla Corporation -> Mozilla Foundation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 46.33.112.42 8.8.8.8
Tcpip\..\Interfaces\{5357735c-cc49-4836-8af9-555e87d06103}: [DhcpNameServer] 46.33.112.42 8.8.8.8

Edge:
=======
Edge Profile: C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default [2024-02-21]
Edge Extension: (Dokumenty Google offline) - C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-02-12]
Edge Extension: (Edge relevant text changes) - C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-12]

FireFox:
========
FF DefaultProfile: i0qylqmf.default
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\i0qylqmf.default [2024-02-17]
FF user.js: detected! => C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\i0qylqmf.default\user.js [2021-03-29]
FF Homepage: Mozilla\Firefox\Profiles\i0qylqmf.default -> hxxp://seznam.cz
FF Session Restore: Mozilla\Firefox\Profiles\i0qylqmf.default -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\i0qylqmf.default -> hxxps://www.eva.cz; hxxps://www.slevomat.cz; hxxps://www.superzoo.cz; hxxps://www.drevostavitel.cz; hxxps://postovnezdarma.cz; hxxps://eu1.badoo.com; hxxps://www.lightinthebox.com; hxxps://cz.pinterest.com; hxxps://aukro.cz; hxxps://cz.depositphotos.com; hxxps://www.joom.com; hxxps://www.pinterest.it; hxxps://fr1.badoo.com
FF Extension: (AdBlocker Ultimate) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\i0qylqmf.default\Extensions\adblockultimate@adblockultimate.net.xpi [2024-02-12]
FF Extension: (Decentraleyes) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\i0qylqmf.default\Extensions\jid1-BoFifL9Vbdl2zQ@jetpack.xpi [2023-08-30]
FF Extension: (youtube-flash-html) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\i0qylqmf.default\Extensions\jid1-o2qEVrZ4t5FJWu@jetpack.xpi [2021-01-15]
FF Extension: (uBlock Origin) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\i0qylqmf.default\Extensions\uBlock0@raymondhill.net.xpi [2024-01-09]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\i0qylqmf.default\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2023-12-19]
FF Extension: (Sunset Over Water by MaDonna) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\i0qylqmf.default\Extensions\{633f0fba-b472-4ac5-9584-e780977806b6}.xpi [2021-06-12]
FF Extension: (Fairytale Of Nature) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\i0qylqmf.default\Extensions\{6804879d-8801-473a-b13d-605b902a5e4f}.xpi [2021-09-04]
FF Extension: (Open in VLC™ media player) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\i0qylqmf.default\Extensions\{6b954d17-d17c-4a19-8fe6-ee8052a562d6}.xpi [2024-01-02]
FF Extension: (fall-leave) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\i0qylqmf.default\Extensions\{854745a9-c2d5-4796-af84-547f0838e6cf}.xpi [2020-11-16]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\i0qylqmf.default\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2023-08-14]
FF Extension: (music colors09) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\i0qylqmf.default\Extensions\{cbbb3c66-9c48-4b21-a158-ce9d7615a448}.xpi [2020-11-16]
FF Extension: (Summers Ending Colors by MaDonna) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\i0qylqmf.default\Extensions\{e611d130-a378-4590-8886-ad31a0a2cf00}.xpi [2022-09-01]
FF Extension: (AcDc highway to hell) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\i0qylqmf.default\Extensions\{ed88d08b-3907-491a-8c30-9bd508c9ae3b}.xpi [2020-11-16]
FF ProfilePath: C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release [2024-02-21]
FF user.js: detected! => C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\user.js [2021-03-29]
FF Notifications: Mozilla\Firefox\Profiles\w9z4mdvg.default-release -> hxxps://www.lupa.cz
FF Extension: (AdBlocker Ultimate) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\adblockultimate@adblockultimate.net.xpi [2024-02-19]
FF Extension: (Decentraleyes) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\jid1-BoFifL9Vbdl2zQ@jetpack.xpi [2023-08-30]
FF Extension: (youtube-flash-html) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\jid1-o2qEVrZ4t5FJWu@jetpack.xpi [2021-01-15]
FF Extension: (uBlock Origin) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\uBlock0@raymondhill.net.xpi [2024-02-12]
FF Extension: (forest green) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\{0aaf045f-7fd6-41e9-a5e1-92b662e884a4}.xpi [2024-02-18]
FF Extension: (Malwarebytes Browser Guard) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\{242af0bb-db11-4734-b7a0-61cb8a9b20fb}.xpi [2023-12-19]
FF Extension: (Sunset Over Water by MaDonna) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\{633f0fba-b472-4ac5-9584-e780977806b6}.xpi [2021-06-12]
FF Extension: (Fairytale Of Nature) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\{6804879d-8801-473a-b13d-605b902a5e4f}.xpi [2021-09-04]
FF Extension: (Open in VLC™ media player) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\{6b954d17-d17c-4a19-8fe6-ee8052a562d6}.xpi [2024-01-02]
FF Extension: (fall-leave) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\{854745a9-c2d5-4796-af84-547f0838e6cf}.xpi [2020-11-16]
FF Extension: (URIETIHSowIBAT-01) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\{88ed2edf-2215-408a-885e-3e4d9b2124d1}.xpi [2024-02-18]
FF Extension: (Rainbow Pastel) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\{a54613a6-c6b7-4515-81e6-a5c89d7ccfc0}.xpi [2024-02-18]
FF Extension: (Easy Youtube Video Downloader Express) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2024-02-12]
FF Extension: (Sunset Beach) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\{c9c6b256-525e-4bd1-aebd-149de6e0d713}.xpi [2024-02-12]
FF Extension: (music colors09) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\{cbbb3c66-9c48-4b21-a158-ce9d7615a448}.xpi [2020-11-16]
FF Extension: (Summers Ending Colors by MaDonna) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\{e611d130-a378-4590-8886-ad31a0a2cf00}.xpi [2022-09-01]
FF Extension: (AcDc highway to hell) - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\w9z4mdvg.default-release\Extensions\{ed88d08b-3907-491a-8c30-9bd508c9ae3b}.xpi [2020-11-16]
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2024-02-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-01-12]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 GoogleUpdaterInternalService123.0.6288.0; C:\Program Files (x86)\Google\GoogleUpdater\123.0.6288.0\updater.exe [4682528 2024-02-08] (Google LLC -> Google LLC) <==== ATTENTION
S2 GoogleUpdaterService123.0.6288.0; C:\Program Files (x86)\Google\GoogleUpdater\123.0.6288.0\updater.exe [4682528 2024-02-08] (Google LLC -> Google LLC) <==== ATTENTION
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534472 2024-01-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Stapes; c:\program files\SpyWarrior\Stapes.exe [4544304 2024-02-19] (UAB "Kibernetinio saugumo sistemos" -> KSS)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23110.3-0\NisSrv.exe [3174840 2024-01-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.23110.3-0\MsMpEng.exe [133592 2024-01-12] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2017-08-03] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55856 2024-01-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [594304 2024-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105856 2024-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 WiperSoftGuard; C:\Windows\System32\DRIVERS\WSguard.sys [41960 2024-02-19] (UAB "Kibernetinio saugumo sistemos" -> Wiper Software)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-02-21 16:01 - 2024-02-21 16:01 - 000020064 _____ C:\Users\PC\Desktop\FRST.txt
2024-02-21 15:59 - 2024-02-21 16:01 - 000000000 ____D C:\FRST
2024-02-21 14:04 - 2024-02-21 14:04 - 000000875 _____ C:\Users\PC\Desktop\Nová složka (2) xxx – zástupce.lnk
2024-02-21 13:59 - 2024-02-21 13:59 - 008797968 _____ (Malwarebytes) C:\Users\PC\Downloads\adwcleaner(1).exe
2024-02-21 13:56 - 2024-02-21 13:56 - 008791352 _____ (Malwarebytes) C:\Users\PC\Downloads\AdwCleaner.exe
2024-02-21 13:55 - 2024-02-21 13:55 - 002386944 _____ (Farbar) C:\Users\PC\Desktop\FRST64.exe
2024-02-21 13:40 - 2024-02-21 13:40 - 086245376 _____ C:\Windows\system32\config\SOFTWARE
2024-02-21 13:40 - 2024-02-21 13:40 - 000000000 ___HD C:\OneDriveTemp
2024-02-21 12:48 - 2024-02-21 12:48 - 000000944 _____ C:\Users\PC\Desktop\NOVÝ ROK 2018 – zástupce.lnk
2024-02-20 20:51 - 2024-02-20 20:51 - 000000000 ____D C:\Windows\system32\Tasks\GoogleSystem
2024-02-20 15:53 - 2024-02-21 13:40 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-02-20 01:02 - 2024-02-20 01:02 - 000000831 _____ C:\Users\PC\Desktop\FOTO NÁVODY xxx – zástupce.lnk
2024-02-20 00:42 - 2024-02-20 01:05 - 4025823072 _____ (Topaz Labs LLC) C:\Users\PC\Downloads\TopazSharpenAI-Full-Installer.exe
2024-02-20 00:42 - 2024-02-20 00:49 - 743141376 _____ C:\Users\PC\Downloads\TopazGigapixelAI-7.0.2.msi
2024-02-19 23:58 - 2024-02-19 23:58 - 000003846 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onLogOn
2024-02-19 23:58 - 2024-02-19 23:58 - 000003404 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onTime
2024-02-19 23:42 - 2024-02-19 23:42 - 000001279 _____ C:\Users\PC\Desktop\ESET Online Scanner.lnk
2024-02-19 23:41 - 2024-02-19 23:42 - 000001385 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2024-02-19 23:41 - 2024-02-19 23:41 - 000000000 ____D C:\Users\PC\AppData\Local\ESET
2024-02-19 23:38 - 2024-02-19 23:38 - 000339743 _____ C:\Users\PC\Downloads\Video---Jak-na-to---WinAVI-Video-Converter(1).pdf
2024-02-19 23:36 - 2024-02-19 23:36 - 000339743 _____ C:\Users\PC\Downloads\Video---Jak-na-to---WinAVI-Video-Converter.pdf
2024-02-19 23:15 - 2024-02-19 23:16 - 009009286 _____ C:\Users\PC\Downloads\WinAVI Video Converter 7.7 (convert most video .rar
2024-02-19 23:06 - 2024-02-19 23:06 - 000000000 ____D C:\Users\PC\AppData\Roaming\WinAVI
2024-02-19 23:06 - 2024-02-19 23:06 - 000000000 ____D C:\Users\PC\AppData\Local\WinAVI
2024-02-19 23:06 - 2024-02-19 23:06 - 000000000 ____D C:\Program Files (x86)\WinAVI
2024-02-19 22:55 - 2024-02-19 22:55 - 000000000 _____ C:\Windows\system32\Extension Cookies
2024-02-19 22:55 - 2024-02-19 22:55 - 000000000 _____ C:\Windows\system32\cookies.sqlite
2024-02-19 22:47 - 2024-02-19 22:47 - 000000814 _____ C:\Users\PC\Desktop\SpyWarrior.lnk
2024-02-19 22:47 - 2024-02-19 22:47 - 000000000 ____D C:\Users\PC\AppData\Roaming\SpyWarrior
2024-02-19 22:47 - 2024-02-19 22:47 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\SpyWarrior
2024-02-19 22:46 - 2024-02-21 13:40 - 000000000 ____D C:\Program Files\SpyWarrior
2024-02-19 22:46 - 2024-02-19 22:46 - 000041960 _____ (Wiper Software) C:\Windows\system32\Drivers\WSguard.sys
2024-02-19 22:45 - 2024-02-19 22:45 - 002273096 _____ (KSS) C:\Users\PC\Downloads\installer.exe
2024-02-19 22:12 - 2024-02-21 13:39 - 000000000 ____D C:\Windows\Microsoft Antimalware
2024-02-19 21:55 - 2024-02-19 21:58 - 000000000 ____D C:\Users\PC\AppData\Local\CrashDumps
2024-02-19 21:42 - 2024-02-19 21:42 - 000001099 _____ C:\Users\PC\Desktop\DVD seznam.lnk
2024-02-19 21:37 - 2024-02-19 21:37 - 000001113 _____ C:\Users\PC\Desktop\Uhlí 22-23.lnk
2024-02-19 21:32 - 2024-02-19 21:32 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Excel
2024-02-19 21:26 - 2024-02-19 21:26 - 000001099 _____ C:\Users\PC\Desktop\Plyn 21-22 – zástupce.lnk
2024-02-19 21:26 - 2024-02-19 21:26 - 000001084 _____ C:\Users\PC\Desktop\CD seznam.lnk
2024-02-19 20:15 - 2024-02-19 20:23 - 533395576 _____ (DVDFab Software Inc) C:\Users\PC\Downloads\photo_enhancer_ai_x64_1003_4916105e.exe
2024-02-19 20:13 - 2024-02-19 20:14 - 013034408 _____ (Winamp SA) C:\Users\PC\Downloads\winamp_latest_full(2).exe
2024-02-19 20:12 - 2024-02-19 21:38 - 1527906201 _____ C:\Users\PC\Downloads\DVDFab Photo Enhancer AI v.1.0.2.3 (CZ).7z
2024-02-19 20:10 - 2024-02-19 20:10 - 000000000 ____D C:\Users\PC\Desktop\DVDFab Photo Enhancer AI v.1.0.2.3 (CZ)
2024-02-19 20:08 - 2024-02-19 20:08 - 000000000 ____D C:\Users\PC\Downloads\DVDFab Photo Enhancer AI v.1.0.2.3 (CZ)
2024-02-19 18:48 - 2024-02-19 20:22 - 000000000 ____D C:\Users\PC\AppData\Local\Topaz Labs LLC
2024-02-19 18:48 - 2024-02-19 18:48 - 000000000 ____D C:\Users\PC\AppData\Local\cache
2024-02-19 18:15 - 2024-02-19 18:15 - 000002169 _____ C:\Users\Public\Desktop\Topaz Photo AI.lnk
2024-02-19 18:15 - 2024-02-19 18:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Topaz Photo AI
2024-02-19 18:11 - 2024-02-19 18:11 - 000002225 _____ C:\Users\Public\Desktop\Topaz DeNoise AI.lnk
2024-02-19 18:11 - 2024-02-19 18:11 - 000000000 ____D C:\Users\PC\AppData\Roaming\Topaz Labs LLC
2024-02-19 18:11 - 2024-02-19 18:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Topaz DeNoise AI
2024-02-19 18:10 - 2024-02-19 18:14 - 000000000 ____D C:\ProgramData\Topaz Labs LLC
2024-02-19 18:10 - 2024-02-19 18:14 - 000000000 ____D C:\Program Files\Topaz Labs LLC
2024-02-19 17:08 - 2024-02-19 17:31 - 000000484 _____ C:\Users\PC\Downloads\Topaz Photo AI.zip
2024-02-19 17:03 - 2024-02-21 15:59 - 3949404624 _____ (Topaz Labs LLC) C:\Users\PC\Downloads\TopazDeNoiseAI-Full-Installer(1).exe
2024-02-19 16:59 - 2024-02-19 17:49 - 3949404624 _____ (Topaz Labs LLC) C:\Users\PC\Downloads\TopazDeNoiseAI-Full-Installer.exe
2024-02-19 16:58 - 2024-02-19 17:15 - 743284736 _____ C:\Users\PC\Downloads\TopazPhotoAI-2.3.2.msi
2024-02-19 16:33 - 2024-02-19 16:34 - 043844906 _____ C:\Users\PC\Downloads\otestuj si ostření své zrcadlovky.mp4
2024-02-19 14:56 - 2024-02-19 14:56 - 013034408 _____ (Winamp SA) C:\Users\PC\Downloads\winamp_latest_full(1).exe
2024-02-18 23:35 - 2024-02-18 23:35 - 000000000 ____D C:\Users\PC\Desktop\Topaz Photo AI 2.4.0 (x64) [FileCR]
2024-02-18 23:35 - 2024-02-18 23:25 - 738827767 _____ C:\Users\PC\Desktop\Topaz Photo AI 2.4.0 (x64) [FileCR].zip
2024-02-18 23:13 - 2024-02-18 23:13 - 000000000 ____D C:\Users\PC\AppData\Local\OneDrive
2024-02-18 23:12 - 2024-02-18 23:12 - 000000000 ____D C:\AdwCleaner
2024-02-18 22:45 - 2024-02-18 22:45 - 000000000 ____D C:\Program Files (x86)\GUM1100.tmp
2024-02-18 21:50 - 2024-02-19 23:47 - 000000000 ____D C:\Users\PC\Desktop\Topaz Photo AI 1.3 (x64)
2024-02-18 19:44 - 2024-02-18 19:45 - 013034408 _____ (Winamp SA) C:\Users\PC\Downloads\winamp_latest_full.exe
2024-02-18 19:43 - 2024-02-18 19:43 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\UProof
2024-02-18 19:43 - 2024-02-18 19:43 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Proof
2024-02-18 19:41 - 2024-02-21 11:25 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Šablony
2024-02-18 19:41 - 2024-02-19 21:32 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Office
2024-02-18 19:41 - 2024-02-18 19:41 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Word
2024-02-18 19:41 - 2024-02-18 19:41 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Doplňky
2024-02-18 19:41 - 2024-02-18 19:41 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Document Building Blocks
2024-02-18 19:31 - 2024-02-18 22:46 - 000000000 ____D C:\ProgramData\Google
2024-02-18 19:31 - 2024-02-18 19:31 - 000000000 ____D C:\Program Files (x86)\GUM4C26.tmp
2024-02-18 19:18 - 2024-02-18 19:18 - 000000000 ____D C:\Users\PC\AppData\Local\DxO
2024-02-18 19:17 - 2024-02-18 19:17 - 000002531 _____ C:\Users\Public\Desktop\Snapseed.lnk
2024-02-18 19:17 - 2024-02-18 19:17 - 000000000 ____D C:\Users\PC\AppData\Local\Nik Software
2024-02-18 19:17 - 2024-02-18 19:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Snapseed
2024-02-18 19:17 - 2024-02-18 19:17 - 000000000 ____D C:\Program Files (x86)\Nik Software
2024-02-18 19:12 - 2024-02-18 19:12 - 000002022 _____ C:\Users\PC\Desktop\Video Download Capture 6 – zástupce.lnk
2024-02-18 19:09 - 2024-02-18 19:09 - 000001427 _____ C:\Users\Public\Desktop\Apowersoft Video Stahovač.lnk
2024-02-18 19:09 - 2024-02-18 19:09 - 000000000 ____D C:\Users\PC\Documents\Apowersoft
2024-02-18 19:09 - 2024-02-18 19:09 - 000000000 ____D C:\Users\PC\AppData\Roaming\Apowersoft
2024-02-18 19:09 - 2024-02-18 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft
2024-02-18 19:09 - 2024-02-18 19:09 - 000000000 ____D C:\Program Files (x86)\Apowersoft
2024-02-18 19:09 - 2017-08-03 09:15 - 000370424 _____ (Riverbed Technology, Inc.) C:\Windows\system32\wpcap.dll
2024-02-18 19:09 - 2017-08-03 09:15 - 000282360 _____ (Riverbed Technology, Inc.) C:\Windows\SysWOW64\wpcap.dll
2024-02-18 19:09 - 2017-08-03 09:15 - 000107768 _____ (Riverbed Technology, Inc.) C:\Windows\system32\Packet.dll
2024-02-18 19:09 - 2017-08-03 09:15 - 000098040 _____ (Riverbed Technology, Inc.) C:\Windows\SysWOW64\Packet.dll
2024-02-18 19:09 - 2017-08-03 09:15 - 000053299 _____ C:\Windows\SysWOW64\pthreadVC.dll
2024-02-18 19:09 - 2017-08-03 09:15 - 000036600 _____ (Riverbed Technology, Inc.) C:\Windows\system32\Drivers\npf.sys
2024-02-18 19:03 - 2024-02-18 19:03 - 000000000 ____D C:\Users\PC\Desktop\Nik Collection 2020 od DxO v3.3.0 - x64
2024-02-18 18:51 - 2024-02-18 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2024-02-18 18:51 - 2024-02-18 18:51 - 000000000 ____D C:\Program Files (x86)\MSBuild
2024-02-18 18:51 - 2024-02-18 18:51 - 000000000 ____D C:\Program Files (x86)\Microsoft Works
2024-02-18 18:51 - 2024-02-18 18:51 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2024-02-18 18:50 - 2024-02-18 18:50 - 000000000 ____D C:\Windows\PCHEALTH
2024-02-18 18:49 - 2024-02-18 18:49 - 000000000 ____D C:\Program Files\Microsoft Office
2024-02-18 18:48 - 2024-02-18 18:51 - 000000000 ____D C:\Windows\SHELLNEW
2024-02-18 18:48 - 2024-02-18 18:51 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-02-18 18:48 - 2024-02-18 18:48 - 000000000 __RHD C:\MSOCache
2024-02-18 18:48 - 2024-02-18 18:48 - 000000000 ____D C:\Users\PC\AppData\Local\Microsoft Help
2024-02-18 15:40 - 2024-02-18 15:41 - 000000020 _____ C:\Users\PC\Desktop\klíč Ashampoo.txt
2024-02-18 15:40 - 2024-02-18 15:40 - 000001386 _____ C:\Users\Public\Desktop\Ashampoo Burning Studio FREE.lnk
2024-02-18 15:40 - 2024-02-18 15:40 - 000000000 ____D C:\Users\PC\AppData\Roaming\Ashampoo
2024-02-18 15:40 - 2024-02-18 15:40 - 000000000 ____D C:\Users\PC\AppData\Local\ashampoo
2024-02-18 15:40 - 2024-02-18 15:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2024-02-18 15:40 - 2024-02-18 15:40 - 000000000 ____D C:\ProgramData\Ashampoo
2024-02-18 15:40 - 2024-02-18 15:40 - 000000000 ____D C:\Program Files (x86)\Ashampoo
2024-02-18 15:20 - 2024-02-18 15:22 - 000000000 ____D C:\Users\PC\AppData\Roaming\Winamp
2024-02-18 15:20 - 2024-02-18 15:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
2024-02-18 15:20 - 2024-02-18 15:20 - 000000000 ____D C:\Program Files (x86)\Winamp
2024-02-18 14:59 - 2024-02-18 14:59 - 000000000 ____D C:\Users\PC\Desktop\Riffstation Guitar Software v1.4.0.0 Full + crack a path -funkčný
2024-02-18 14:58 - 2024-02-18 14:58 - 000000000 ___RD C:\Users\PC\Desktop\HRY
2024-02-18 14:51 - 2024-02-18 14:51 - 000000776 _____ C:\Users\PC\Desktop\INSTALAČKY – zástupce.lnk
2024-02-18 09:15 - 2024-02-18 09:15 - 000000000 ____D C:\Users\PC\AppData\Local\Backup
2024-02-18 09:11 - 2024-02-18 09:11 - 000000000 ___HD C:\$WinREAgent
2024-02-18 02:04 - 2024-02-18 02:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Gaming Network
2024-02-18 02:04 - 2024-02-18 02:04 - 000000000 ____D C:\Program Files (x86)\CGN
2024-02-18 01:54 - 2024-02-18 01:54 - 000000000 ____D C:\Windows\system32\Tasks\Agent Activation Runtime
2024-02-18 01:28 - 2024-02-18 01:28 - 000000765 _____ C:\Users\PC\Desktop\Stažené soubory – zástupce (2).lnk
2024-02-17 20:31 - 2024-02-17 20:34 - 000000000 ____D C:\Users\PC\Desktop\Firefox - 2024-02-17
2024-02-17 20:28 - 2024-02-17 20:28 - 000000000 ____D C:\Users\PC\Desktop\release
2024-02-17 20:24 - 2024-02-17 20:25 - 000000000 ____D C:\Users\PC\Desktop\Firefox - 2024-02-17 default
2024-02-17 20:17 - 2024-02-17 20:28 - 000000000 ____D C:\Users\PC\Desktop\default
2024-02-17 19:22 - 2024-02-17 19:59 - 000000000 ____D C:\Users\PC\Desktop\BACK 2
2024-02-17 18:17 - 2024-02-17 18:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozBackup
2024-02-17 18:17 - 2024-02-17 18:17 - 000000000 ____D C:\Program Files (x86)\MozBackup
2024-02-17 16:54 - 2024-02-17 16:58 - 000000000 ____D C:\Users\PC\Desktop\StudioCZ
2024-02-17 16:54 - 2024-02-17 16:54 - 000000765 _____ C:\Users\PC\Desktop\Stažené soubory – zástupce.lnk
2024-02-15 22:52 - 2024-02-20 00:52 - 000000000 ____D C:\Users\PC\Desktop\Laid-Back---Keep-Smiling
2024-02-14 01:32 - 2014-09-19 13:46 - 000000029 _____ C:\Users\PC\Desktop\Key Zoner.TXT
2024-02-14 01:31 - 2024-02-14 01:31 - 000001943 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Zoner Photo Studio 17.lnk
2024-02-14 01:31 - 2024-02-14 01:31 - 000001937 _____ C:\Users\Public\Desktop\Zoner Photo Studio 17.lnk
2024-02-14 01:31 - 2024-02-14 01:31 - 000000000 ____D C:\Users\PC\AppData\Roaming\Zoner
2024-02-14 01:31 - 2024-02-14 01:31 - 000000000 ____D C:\Users\PC\AppData\Local\Zoner
2024-02-14 01:31 - 2024-02-14 01:31 - 000000000 ____D C:\ProgramData\Zoner
2024-02-14 01:31 - 2024-02-14 01:31 - 000000000 ____D C:\Program Files\Zoner
2024-02-14 01:28 - 2024-02-14 01:28 - 000001465 _____ C:\Users\PC\Desktop\WinRAR.lnk
2024-02-14 01:24 - 2024-02-14 01:24 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-02-14 01:24 - 2024-02-14 01:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-02-14 01:18 - 2024-02-17 20:40 - 000000000 ____D C:\Program Files (x86)\WinRAR
2024-02-14 01:17 - 2024-02-14 01:17 - 000000000 ____D C:\Program Files\WinRAR
2024-02-14 01:13 - 2024-02-14 01:13 - 000001093 _____ C:\Users\PC\Desktop\TagScanner.lnk
2024-02-14 01:13 - 2024-02-14 01:13 - 000000000 ____D C:\Users\PC\AppData\Roaming\TagScanner
2024-02-14 01:13 - 2024-02-14 01:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TagScanner
2024-02-14 01:13 - 2024-02-14 01:13 - 000000000 ____D C:\Program Files (x86)\TagScanner
2024-02-14 00:58 - 2024-02-14 00:58 - 000001969 _____ C:\Users\PC\Desktop\IrfanView Thumbnails.lnk
2024-02-14 00:58 - 2024-02-14 00:58 - 000001077 _____ C:\Users\PC\Desktop\IrfanView.lnk
2024-02-14 00:58 - 2024-02-14 00:58 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2024-02-14 00:57 - 2024-02-14 00:57 - 000000000 ____D C:\Program Files (x86)\IrfanView
2024-02-14 00:29 - 2024-02-14 00:29 - 000001514 _____ C:\Users\PC\Desktop\MP3Gain.lnk
2024-02-14 00:18 - 2024-02-14 00:18 - 002496946 _____ C:\Users\PC\Downloads\winrar-370-full-cz plná verze s crackem(1).zip
2024-02-14 00:17 - 2024-02-14 00:17 - 000049647 _____ C:\Users\PC\Downloads\photofiltre7-2-1-free-cestina.zip
2024-02-14 00:11 - 2024-02-14 00:11 - 002496946 _____ C:\Users\PC\Downloads\winrar-370-full-cz plná verze s crackem.zip
2024-02-14 00:06 - 2024-02-21 11:18 - 000000000 ____D C:\Users\PC\Desktop\INSTALAĆKY 2
2024-02-13 12:45 - 2024-02-13 12:45 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Adobe
2024-02-12 11:27 - 2024-02-12 11:27 - 019198301 _____ C:\Users\PC\Downloads\Riffstation Guitar Software v1.4.0.0 Full + crack a path -funkčný.zip
2024-02-12 10:58 - 2024-02-21 13:48 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-02-12 10:58 - 2024-02-21 13:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-02-12 10:58 - 2024-02-21 08:30 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2024-02-12 10:58 - 2024-02-21 08:29 - 000001015 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-02-12 10:58 - 2024-02-12 10:58 - 000002058 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox — anonymní prohlížení.lnk
2024-02-12 10:58 - 2024-02-12 10:58 - 000001003 _____ C:\Users\Public\Desktop\Firefox.lnk
2024-02-12 10:58 - 2024-02-12 10:58 - 000000000 ____D C:\Users\PC\AppData\Roaming\Mozilla
2024-02-12 10:58 - 2024-02-12 10:58 - 000000000 ____D C:\Users\PC\AppData\Local\Mozilla
2024-02-12 10:49 - 2024-02-14 00:57 - 000000000 ____D C:\Users\PC\AppData\Roaming\IrfanView
2024-02-12 10:49 - 2024-02-14 00:56 - 000000000 ____D C:\Program Files\IrfanView
2024-02-12 10:45 - 2024-02-12 10:45 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-02-12 10:45 - 2024-02-12 10:45 - 000000000 ____D C:\Program Files\Nikon
2024-02-12 10:45 - 2024-02-12 10:45 - 000000000 ____D C:\Program Files\Common Files\Nikon
2024-02-12 10:45 - 2024-02-12 10:45 - 000000000 ____D C:\Program Files (x86)\Nikon
2024-02-12 10:43 - 2024-02-13 12:48 - 000000000 ____D C:\Program Files (x86)\MP3Gain
2024-02-12 10:43 - 2024-02-12 10:43 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MP3Gain
2024-02-12 09:37 - 2024-02-21 15:45 - 000000000 ____D C:\Users\PC\AppData\Roaming\vlc
2024-02-12 09:27 - 2024-02-17 17:05 - 000000000 ____D C:\PhotoFiltre11
2024-02-12 09:27 - 2024-02-12 09:27 - 000000725 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 11.lnk
2024-02-12 09:27 - 2024-02-12 09:27 - 000000713 _____ C:\Users\Public\Desktop\PhotoFiltre 11.lnk
2024-02-12 09:25 - 2024-02-12 09:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2024-02-12 09:25 - 2024-02-12 09:25 - 000000000 ____D C:\Program Files\VideoLAN
2024-02-12 09:21 - 2024-02-12 09:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2024-02-12 09:21 - 2024-02-12 09:21 - 000000000 ____D C:\Program Files\VS Revo Group
2024-02-12 09:19 - 2024-02-12 09:19 - 000000022 _____ C:\Users\PC\Desktop\zipnew.dat
2024-02-12 09:19 - 2024-02-12 09:19 - 000000020 _____ C:\Users\PC\Desktop\rarnew.dat
2024-02-12 09:18 - 2024-02-12 09:18 - 000000000 ____D C:\Users\PC\AppData\Roaming\WinRAR
2024-02-11 22:20 - 2024-02-21 11:25 - 000000000 ____D C:\Users\PC\Desktop\PROGRAMY
2024-02-11 22:19 - 2024-02-12 10:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free RAW Viewer
2024-02-11 22:19 - 2024-02-12 10:51 - 000000000 ____D C:\Program Files (x86)\Free RAW Viewer
2024-02-11 21:56 - 2024-02-11 21:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2024-02-11 21:56 - 2024-02-11 21:56 - 000000000 ____D C:\Program Files\Recuva
2024-02-11 21:48 - 2021-05-15 23:06 - 019198301 _____ C:\Users\PC\Desktop\Riffstation Guitar Software v1.4.0.0 Full + crack a path -funkčný.zip
2024-02-11 21:47 - 2021-08-06 22:33 - 000018682 _____ C:\Users\PC\Desktop\barevné tonování.atn
2024-02-11 20:43 - 2024-02-11 20:43 - 000000507 _____ C:\Users\PC\Desktop\DATA (E) – zástupce.lnk
2024-02-11 20:38 - 2024-02-11 20:38 - 000001714 _____ C:\Users\PC\Desktop\Photoshop.lnk
2024-02-11 20:38 - 2024-02-11 20:38 - 000000000 ____D C:\Users\PC\AppData\Local\UXP
2024-02-11 20:38 - 2024-02-11 20:38 - 000000000 ____D C:\Users\PC\AppData\Local\CEF
2024-02-11 20:35 - 2024-02-11 20:38 - 000000000 ____D C:\Users\PC\Documents\Adobe
2024-02-11 20:35 - 2024-02-11 20:35 - 000001074 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk
2024-02-11 20:32 - 2024-02-11 20:32 - 000003650 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask
2024-02-11 20:31 - 2024-02-11 20:35 - 000000000 ____D C:\Program Files\Common Files\Adobe
2024-02-11 20:31 - 2024-02-11 20:31 - 000000000 ____D C:\Program Files\Adobe
2024-02-11 20:31 - 2024-02-11 20:31 - 000000000 ____D C:\Program Files (x86)\Adobe
2024-02-11 20:30 - 2024-02-19 20:22 - 000000000 ____D C:\Users\PC\AppData\Local\D3DSCache
2024-02-11 20:30 - 2024-02-19 18:11 - 000000000 ____D C:\ProgramData\Package Cache
2024-02-11 20:30 - 2024-02-11 20:39 - 000000000 ____D C:\Users\PC\AppData\Local\Adobe
2024-02-11 20:30 - 2024-02-11 20:32 - 000000000 ____D C:\ProgramData\Adobe
2024-02-08 23:51 - 2024-02-11 18:22 - 000000436 _____ C:\Users\PC\Desktop\Tento počítač – zástupce.lnk
2024-02-08 23:23 - 2024-02-08 23:23 - 000000507 _____ C:\Users\PC\Desktop\DATA (D) – zástupce.lnk
2024-02-06 11:51 - 2024-02-06 11:51 - 000000029 _____ C:\Users\PC\Desktop\WINKEY.txt
2024-02-06 11:44 - 2024-02-06 11:44 - 000019697 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-02-06 11:44 - 2024-02-06 11:44 - 000019697 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-02-06 11:39 - 2024-02-06 11:39 - 000001851 _____ C:\Users\PC\Desktop\CrystalDiskMark 8.lnk
2024-02-06 11:39 - 2024-02-06 11:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskMark8
2024-02-06 11:39 - 2024-02-06 11:39 - 000000000 ____D C:\Program Files\CrystalDiskMark8

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-02-21 15:59 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-02-21 13:44 - 2024-01-12 13:40 - 001605602 _____ C:\Windows\system32\PerfStringBackup.INI
2024-02-21 13:44 - 2019-12-07 15:43 - 000682184 _____ C:\Windows\system32\perfh005.dat
2024-02-21 13:44 - 2019-12-07 15:43 - 000137000 _____ C:\Windows\system32\perfc005.dat
2024-02-21 13:44 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2024-02-21 13:40 - 2024-01-12 13:47 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2024-02-21 13:40 - 2024-01-12 13:47 - 000000000 __SHD C:\Users\PC\IntelGraphicsProfiles
2024-02-21 13:40 - 2019-12-07 08:01 - 000000000 ___RD C:\Users\PC\OneDrive
2024-02-21 13:40 - 2019-12-07 07:57 - 000008192 ___SH C:\DumpStack.log.tmp
2024-02-21 13:40 - 2019-12-07 07:57 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-02-21 13:34 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2024-02-21 13:31 - 2019-12-07 07:57 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-02-21 08:26 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-02-21 08:26 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2024-02-20 22:02 - 2022-09-08 04:11 - 000000000 ____D C:\Windows\SystemTemp
2024-02-20 20:51 - 2024-01-12 13:40 - 000000000 ____D C:\Program Files (x86)\Google
2024-02-19 15:28 - 2019-12-07 07:59 - 000000000 ____D C:\ProgramData\Packages
2024-02-18 22:46 - 2024-01-12 13:40 - 000000000 ____D C:\Users\PC\AppData\Local\Google
2024-02-18 22:45 - 2024-01-12 13:41 - 000000000 ____D C:\Program Files\Google
2024-02-18 19:32 - 2019-12-07 07:59 - 000000000 ____D C:\Users\PC\AppData\Roaming\Adobe
2024-02-18 18:54 - 2019-12-07 07:57 - 000444672 _____ C:\Windows\system32\FNTCACHE.DAT
2024-02-18 18:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2024-02-18 18:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2024-02-18 18:50 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-02-18 18:48 - 2019-12-07 10:14 - 000000167 _____ C:\Windows\win.ini
2024-02-18 18:30 - 2024-01-12 13:36 - 000000000 ____D C:\Users\PC\AppData\Local\PlaceholderTileLogoFolder
2024-02-18 18:30 - 2019-12-07 07:59 - 000000000 ____D C:\Users\PC\AppData\Local\Packages
2024-02-18 09:40 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2024-02-18 09:39 - 2019-12-07 08:00 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-02-18 09:25 - 2024-01-12 13:49 - 000000000 ____D C:\Windows\system32\MRT
2024-02-18 09:23 - 2024-01-12 13:49 - 191155960 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-02-18 09:07 - 2019-12-07 07:59 - 000000000 ____D C:\Users\PC\AppData\Local\ConnectedDevicesPlatform
2024-02-18 00:44 - 2019-12-07 07:59 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-02-17 22:42 - 2019-12-07 07:57 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-02-17 21:42 - 2024-01-12 13:41 - 000002257 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-02-17 21:42 - 2024-01-12 13:41 - 000002216 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-02-17 20:51 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2024-02-17 20:46 - 2024-01-12 13:36 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1147481544-4143809418-591719556-1001
2024-02-17 20:46 - 2019-12-07 08:01 - 000003372 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1147481544-4143809418-591719556-1001
2024-02-17 20:46 - 2019-12-07 07:59 - 000002378 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-02-14 00:54 - 2019-12-07 07:59 - 000000000 ____D C:\Users\PC\AppData\Local\VirtualStore
2024-02-12 10:45 - 2019-12-07 07:59 - 000000000 ____D C:\Users\PC
2024-02-11 22:13 - 2023-12-27 03:39 - 000000000 ____D C:\Users\PC\Desktop\Led Zeppelin - Led Zeppelin IV (1971)
2024-02-11 22:13 - 2023-12-02 20:01 - 000000000 ____D C:\Users\PC\Desktop\Rainbow - (2016) - Memories in Rock - Live In Germany (CD1)
2024-02-11 22:01 - 2020-10-07 01:39 - 000000000 ____D C:\Users\PC\Desktop\Motorband (1994) Rock 'n' Roll (CD mp3 320 kHz 48) CZ Heavy Metal
2024-02-11 22:00 - 2020-10-07 01:41 - 000000000 ____D C:\Users\PC\Desktop\Cascada - Everytime We Touch (2006)
2024-02-11 22:00 - 2020-10-07 01:40 - 000000000 ____D C:\Users\PC\Desktop\MOTORBAND - V (CZ 2017)[MP3.CBR.320]
2024-02-11 22:00 - 2020-10-07 01:40 - 000000000 ____D C:\Users\PC\Desktop\Blackmore's Night - Ghost Of A Rose
2024-02-11 21:47 - 2020-07-18 23:12 - 000000000 ____D C:\Users\PC\Desktop\Kroměříž, Chropyně 2020
2024-02-06 11:53 - 2019-12-07 15:47 - 000000000 ___SD C:\Windows\system32\AppV
2024-02-06 11:53 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-02-06 11:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-02-06 11:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-02-06 11:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-02-06 11:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2024-02-06 11:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-02-06 11:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2024-02-06 11:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2024-02-06 11:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-02-06 11:53 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
2024-02-06 11:45 - 2024-01-12 13:48 - 000000000 ____D C:\Users\PC\AppData\Roaming\Microsoft\Spelling
2024-02-06 11:36 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\appcompat
2024-02-06 11:36 - 2019-12-07 07:57 - 000003640 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-02-06 11:36 - 2019-12-07 07:57 - 000003516 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

#2 Příspěvek od **Rudy** » 21 úno 2024 20:55

Zdravím!
Spuásťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Romann · #3 Příspěvek od **Romann** » 21 úno 2024 22:07

Obávám se, že to nenašlo nic.

# -------------------------------
# Malwarebytes AdwCleaner 8.4.1.0
# -------------------------------
# Build: 01-29-2024
# Database: 2024-01-29.3 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-21-2024
# Duration: 00:00:00
# OS: Windows 10 (Build 19045.4046)
# Cleaned: 0
# Failed: 0

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1420 octets] - [18/02/2024 23:12:57]
AdwCleaner[S01].txt - [1481 octets] - [19/02/2024 22:31:33]
AdwCleaner[S02].txt - [1542 octets] - [19/02/2024 22:31:49]
AdwCleaner[S03].txt - [1603 octets] - [21/02/2024 14:41:32]
AdwCleaner[S04].txt - [1664 octets] - [21/02/2024 14:42:26]
AdwCleaner[S05].txt - [1725 octets] - [21/02/2024 22:02:30]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C05].txt ##########

#4 Příspěvek od **Rudy** » 22 úno 2024 09:45

Ano, toto je OK. Přidejte ještě log Addition (je na ploše v souboru addition.txt) a budeme čistit ručně.

Romann · #5 Příspěvek od **Romann** » 23 úno 2024 08:23

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19.02.2024 02
Ran by PC (21-02-2024 16:03:42)
Running from C:\Users\PC\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.4046 (X64) (2019-12-07 06:58:48)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1147481544-4143809418-591719556-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1147481544-4143809418-591719556-503 - Limited - Disabled)
Guest (S-1-5-21-1147481544-4143809418-591719556-501 - Limited - Disabled)
PC (S-1-5-21-1147481544-4143809418-591719556-1001 - Administrator - Enabled) => C:\Users\PC
WDAGUtilityAccount (S-1-5-21-1147481544-4143809418-591719556-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_1) (Version: 21.0.1 - Adobe Systems Incorporated)
Apowersoft Video Stahovač V6.3.2 (HKLM-x32\...\{b3336f66-e079-4ff6-abdb-51e2fab781d5}_is1) (Version: 6.3.2 - APOWERSOFT LIMITED)
Ashampoo Burning Studio FREE v.1.14.5 (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG)
CrystalDiskInfo 7.5.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.5.1 - Crystal Dew World)
CrystalDiskMark 8.0.4c (HKLM\...\CrystalDiskMark8_is1) (Version: 8.0.4c - Crystal Dew World)
Free RAW Viewer 1.00 (HKLM-x32\...\Free RAW Viewer_is1) (Version: - DIFIAPRO)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 121.0.6167.185 - Google LLC)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.35 - Irfan Skiljan)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.6448.1 - Waves Audio Ltd.) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 121.0.2277.128 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 121.0.2277.128 - Microsoft Corporation)
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1147481544-4143809418-591719556-1001\...\OneDriveSetup.exe) (Version: 24.020.0128.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.29.30153 (HKLM-x32\...\{e3aefa8b-a2ea-42b8-a384-95f2ff6df681}) (Version: 14.29.30153.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29325 (HKLM\...\{26AF0C35-55EC-4025-8D83-349E8FB1419F}) (Version: 14.28.29325 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29325 (HKLM\...\{7D0362D5-C699-4403-BC09-0C1DAD1D93AB}) (Version: 14.28.29325 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.29.30153 (HKLM-x32\...\{F263DEED-F2D3-4AB2-9D1C-C47ED5AA8BFC}) (Version: 14.29.30153 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.29.30153 (HKLM-x32\...\{F3E4AF00-C81D-4253-B947-67DD661932EC}) (Version: 14.29.30153 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 123.0 (x64 cs)) (Version: 123.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 119.0 - Mozilla)
NEF Codec (HKLM-x32\...\{D6506521-0959-4FA3-875F-E2E28830B0D2}) (Version: 1.31.0 - Nikon Corporation)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
PhotoFiltre 11.5.1 (HKLM\...\{562D5B35-6D7E-415D-8554-30A2D0146FE6}_is1) (Version: 11.5 - PhotoFiltre)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6086 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Revo Uninstaller 2.4.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.5 - VS Revo Group, Ltd.)
Road Rash - www.classic-gaming.net (HKLM-x32\...\Road Rash_is1) (Version: - Classic Gaming Network)
Snapseed (HKLM-x32\...\{34FAD416-D661-467E-B008-2FC32D6638B9}) (Version: 1.2.0 - Nik Software, Inc.)
SpyWarrior 1.2021361.130745.64 (HKLM\...\SpyWarrior) (Version: 1.2021361.130745.64 - SpyWarrior)
TagScanner 5.1.641 (HKLM-x32\...\TagScanner_is1) (Version: - Sergey Serkov)
Topaz DeNoise AI (HKLM\...\Topaz DeNoise AI 3.7.2) (Version: 3.7.2 - Topaz Labs LLC)
Topaz Photo AI (HKLM\...\{058B044A-5D2E-4436-B244-64DF27D6FFB9}) (Version: 2.3.2 - Topaz Labs LLC)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.92.0 - Winamp SA)
WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version: - )
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.1 - ZONER software)

Packages:
=========

Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.19.1262.0_x64__8wekyb3d8bbwe [2024-02-18] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0 [2024-02-18] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2006-12-11] () [File not signed]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2007-05-22] () [File not signed]
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2006-12-11] () [File not signed]
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2007-05-22] () [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2017-11-16] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2006-12-11] () [File not signed]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2007-05-22] () [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2024-02-21 13:40 - 2024-02-21 13:40 - 000034392 ____T ((: JOBnik!

[Arthur Aminov, ISRAEL]) [File not signed] C:\Users\PC\AppData\Local\Microsoft\bass_fx.dll
2024-02-18 19:09 - 2017-11-13 17:38 - 000799744 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\CefSharp.BrowserSubprocess.Core.dll
2024-02-18 19:09 - 2017-11-13 17:38 - 001176576 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\CefSharp.Core.dll
2024-02-18 19:09 - 2017-11-27 09:35 - 000046592 _____ () [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\httpfilterv2_dll.dll
2024-02-18 19:09 - 2017-11-27 09:35 - 000075264 _____ () [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\ismdownloadv2_dll.dll
2024-02-18 19:09 - 2017-11-13 17:38 - 061096960 _____ () [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\libcef.dll
2024-02-18 19:09 - 2017-11-13 17:38 - 000079360 _____ () [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\libegl.dll
2024-02-18 19:09 - 2017-11-13 17:38 - 002243072 _____ () [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\libglesv2.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 000364544 _____ () [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\log4cplus.dll
2024-02-18 19:09 - 2017-11-27 09:35 - 000020992 _____ () [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\mms_dll.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 001047552 _____ () [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\SDL2.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 000107520 _____ () [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\zlib1.dll
2024-02-14 01:23 - 2006-12-11 02:14 - 000043008 _____ () [File not signed] C:\Program Files (x86)\WinRAR\rarext64.dll
2024-02-14 01:31 - 2014-09-09 13:30 - 000603648 _____ () [File not signed] C:\Program Files\Zoner\Photo Studio 17\Program32\SpiderMonkey.dll
2024-02-21 13:40 - 2024-02-21 13:40 - 000081408 ____T () [File not signed] C:\Users\PC\AppData\Local\Microsoft\bass_vst.dll
2024-02-21 13:40 - 2024-02-21 13:40 - 001758720 ____T () [File not signed] C:\Users\PC\AppData\Local\Microsoft\engine_vx.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 000101888 _____ (Apowersoft) [File not signed] [File is in use] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Apowersoft.Video.FFMPEG.dll
2024-02-18 19:09 - 2017-11-27 09:35 - 000072704 _____ (Apowersoft) [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\hdsdumpv2_dll.dll
2024-02-18 19:09 - 2017-11-27 09:35 - 000087552 _____ (Apowersoft) [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\rtmpdump_dll.dll
2024-02-18 19:09 - 2017-11-13 17:38 - 000284160 _____ (easyhook.codeplex.com) [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\EasyHook32.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 019561984 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\avcodec-56.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 001367552 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\avdevice-56.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 002297344 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\avfilter-5.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 005824512 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\avformat-56.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 000452608 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\avutil-54.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 000121344 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\postproc-53.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 000270336 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\swresample-1.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 000446976 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\swscale-3.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 002156544 _____ (MultiMedia Soft) [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\AdjMmsEng.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 000283648 _____ (The cURL library, hxxp://curl.haxx.se/) [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\libcurl.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 001369088 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\LIBEAY32.dll
2024-02-18 19:09 - 2017-11-27 09:54 - 000364544 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Apowersoft\Video Download Capture 6\SSLEAY32.dll
2024-02-21 13:40 - 2024-02-21 13:40 - 000110719 ____T (Un4seen Developments) [File not signed] C:\Users\PC\AppData\Local\Microsoft\bass.dll
2024-02-21 13:40 - 2024-02-21 13:40 - 000019008 ____T (Un4seen Developments) [File not signed] C:\Users\PC\AppData\Local\Microsoft\basscd.dll
2024-02-21 13:40 - 2024-02-21 13:40 - 000016448 ____T (Un4seen Developments) [File not signed] C:\Users\PC\AppData\Local\Microsoft\bassenc.dll
2024-02-21 13:40 - 2024-02-21 13:40 - 000025152 ____T (Un4seen Developments) [File not signed] C:\Users\PC\AppData\Local\Microsoft\bassflac.dll
2024-02-21 13:40 - 2024-02-21 13:40 - 000036416 ____T (Un4seen Developments) [File not signed] C:\Users\PC\AppData\Local\Microsoft\bassmidi.dll
2024-02-21 13:40 - 2024-02-21 13:40 - 000018496 ____T (Un4seen Developments) [File not signed] C:\Users\PC\AppData\Local\Microsoft\bassmix.dll
2024-02-21 13:40 - 2024-02-21 13:40 - 000011848 ____T (Un4seen Developments) [File not signed] C:\Users\PC\AppData\Local\Microsoft\basswasapi.dll
2024-02-21 13:40 - 2024-02-21 13:40 - 000017733 ____T (Un4seen Developments) [File not signed] C:\Users\PC\AppData\Local\Microsoft\basswma.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1147481544-4143809418-591719556-1001\Control Panel\Desktop\\Wallpaper -> c:\users\pc\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\shakira735.jpg
DNS Servers: 46.33.112.42 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C3594471-5132-42A8-98F6-3BDAF97F33CB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F29EAB97-BF4E-40DF-800D-EA2D492B3249}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E6923918-F7DE-471C-8EF6-5DE9FC42E741}] => (Allow) C:\Program Files\Zoner\Photo Studio 17\Program32\MediaServer.exe (ZONER software, a.s. -> ZONER software)
FirewallRules: [{5FDAA03D-EA2F-442A-9697-8AC96295E7E9}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{5282FD62-2046-4314-81C4-35374FCF006A}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\121.0.2277.128\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8CB4EB90-96E3-47A9-A870-098E76B2A51B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{92A11B2C-B14A-480D-BFF5-19557D82BA00}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B271197D-4239-4AE0-9256-D51790770D36}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4FC0E336-AD09-4534-8FE9-E4052778ED91}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.112.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{81AC84EB-4872-4A50-9BD7-5431394530A1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{01755245-07E9-4B92-B4C0-F2ACD825181F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{360F3794-B581-4E85-A42F-ACDDB61E1CCC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{28487FD7-5E00-4801-B6B0-279A49D06F53}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DC99683D-A221-47BE-8E68-B205F0021C12}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4C7CE59C-19B6-408F-AA22-6B2DD90118B4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{43426F26-3CF5-46E7-B8DF-6EE1431A15D7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E8AFF491-8286-4348-8C5B-A0F79D51E738}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5CE87248-2757-4EC1-BA5F-58008D6DAA45}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F32B94FF-5BE9-4E04-8386-DD65036D340E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.231.1205.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CB00017A-E1F3-48A9-9B1B-2038F25E2D3E}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [{F3B3D4C1-817B-4E9E-90AA-2D3F60FD08A6}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [{0745CCB7-FA15-453D-B3A8-77C2F6BA6865}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{A9C2B891-D7C5-4013-9CE9-30456A939DBC}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{14C56D23-5EEB-4C8C-88F5-566B6DBC2AB1}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\rtmpsrv.exe (Apowersoft Ltd -> )
FirewallRules: [{79CD8C45-4291-4A47-98B4-88E91E897D2F}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\rtmpsrv.exe (Apowersoft Ltd -> )

==================== Restore Points =========================

14-02-2024 00:55:53 Revo Uninstaller's restore point - IrfanView 4.66 (64-bit)
14-02-2024 01:05:51 Revo Uninstaller's restore point - TagScanner (64bit)
14-02-2024 01:22:11 Revo Uninstaller's restore point - WinRAR archiver
18-02-2024 09:25:52 Instalační služba modulů systému Windows
18-02-2024 09:35:27 Instalační služba modulů systému Windows
18-02-2024 19:17:07 Installed Snapseed
18-02-2024 19:39:33 Revo Uninstaller's restore point - Nik Collection
18-02-2024 21:52:08 Installed Topaz Photo AI
18-02-2024 22:11:05 Installed Topaz Photo AI
18-02-2024 22:12:58 Installed Topaz Photo AI
18-02-2024 22:51:33 Installed Topaz Photo AI
19-02-2024 18:14:02 Installed Topaz Photo AI

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (02/20/2024 03:50:37 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2

Error: (02/19/2024 09:58:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DeepNude.exe, verze: 0.0.0.0, časové razítko: 0x5b8e995f
Název chybujícího modulu: Qt5Widgets.dll, verze: 5.12.3.0, časové razítko: 0x5cac5778
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000041039
ID chybujícího procesu: 0xdb8
Čas spuštění chybující aplikace: 0x01da63761a2aaa34
Cesta k chybující aplikaci: C:\Users\PC\Desktop\DeepNude v2.0.0. Premium\deepnude\dn\DeepNude.exe
Cesta k chybujícímu modulu: C:\Users\PC\Desktop\DeepNude v2.0.0. Premium\deepnude\dn\Qt5Widgets.dll
ID zprávy: 87008787-782b-48db-9320-2ed3fbf518df
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/19/2024 09:55:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DeepNude.exe, verze: 0.0.0.0, časové razítko: 0x5b8e995f
Název chybujícího modulu: Qt5Core.dll, verze: 5.12.3.0, časové razítko: 0x5cac5658
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000028838
ID chybujícího procesu: 0x259c
Čas spuštění chybující aplikace: 0x01da6374b5ee28bc
Cesta k chybující aplikaci: C:\Users\PC\Desktop\DeepNude v2.0.0. Premium\deepnude\dn\DeepNude.exe
Cesta k chybujícímu modulu: C:\Users\PC\Desktop\DeepNude v2.0.0. Premium\deepnude\dn\Qt5Core.dll
ID zprávy: 0372a24a-473d-4a44-a9cd-f2ae2d2dd1ff
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/19/2024 02:53:31 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2

Error: (02/18/2024 10:54:40 PM) (Source: MsiInstaller) (EventID: 11335) (User: DESKTOP-76F2G8Q)
Description: Product: Topaz Photo AI -- Error 1335. The cabinet file 'cab1.cab' required for this installation is corrupt and cannot be used. This could indicate a network error, an error reading from the CD-ROM, or a problem with this package.

Error: (02/18/2024 10:14:20 PM) (Source: MsiInstaller) (EventID: 11335) (User: DESKTOP-76F2G8Q)
Description: Product: Topaz Photo AI -- Error 1335. The cabinet file 'cab1.cab' required for this installation is corrupt and cannot be used. This could indicate a network error, an error reading from the CD-ROM, or a problem with this package.

Error: (02/18/2024 10:14:05 PM) (Source: MsiInstaller) (EventID: 11335) (User: DESKTOP-76F2G8Q)
Description: Product: Topaz Photo AI -- Error 1335. The cabinet file 'cab1.cab' required for this installation is corrupt and cannot be used. This could indicate a network error, an error reading from the CD-ROM, or a problem with this package.

Error: (02/18/2024 10:14:03 PM) (Source: MsiInstaller) (EventID: 11335) (User: DESKTOP-76F2G8Q)
Description: Product: Topaz Photo AI -- Error 1335. The cabinet file 'cab1.cab' required for this installation is corrupt and cannot be used. This could indicate a network error, an error reading from the CD-ROM, or a problem with this package.

System errors:
=============
Error: (02/21/2024 01:42:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (02/21/2024 01:42:22 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).

Error: (02/20/2024 11:09:52 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-76F2G8Q)
Description: Server {5F7F3F7B-1177-4D4B-B1DB-BC6F671B8F25} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/20/2024 09:20:19 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (02/19/2024 11:45:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba eapihdrv neuspěla při spuštění v důsledku následující chyby:
Načtení tohoto ovladače je blokováno.

Error: (02/19/2024 11:45:12 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\PC\AppData\Local\Temp\ehdrv.sys

Error: (02/19/2024 11:45:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba eapihdrv neuspěla při spuštění v důsledku následující chyby:
Načtení tohoto ovladače je blokováno.

Error: (02/19/2024 11:45:11 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\PC\AppData\Local\Temp\ehdrv.sys

Windows Defender:
================
Date: 2024-02-21 14:30:07
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {B5F094A3-E95A-440B-BE5E-FDFFE86F3BF3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-02-21 14:01:07
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUA:Win32/Puwaders.C!ml
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_F:\photofiltre11.5.1_en_setup.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-76F2G8Q\PC
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.405.369.0, AS: 1.405.369.0, NIS: 1.405.369.0
Verze modulu: AM: 1.1.24010.10, NIS: 1.1.24010.10

Date: 2024-02-21 13:40:31
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: TrojanDropper:Win32/Dapato!pz
Závažnost: Vážné
Kategorie: Trojský program rozesílající soubory
Cesta: containerfile:_C:\Users\PC\Downloads\Topaz Photo AI.zip; file:_C:\Users\PC\Downloads\Topaz Photo AI.zip->Topaz Photo AI/1.2.6/Setup/Topaz Photo AI 1.2.6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Uživatel
Uživatel:
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.405.369.0, AS: 1.405.369.0, NIS: 1.405.369.0
Verze modulu: AM: 1.1.24010.10, NIS: 1.1.24010.10

Date: 2024-02-21 13:40:31
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: containerfile:_C:\Users\PC\Downloads\Riffstation Guitar Software v1.4.0.0 Full + crack a path -funkčný.zip; containerfile:_C:\Users\PC\Downloads\Topaz Photo AI 2.4.0 (x64) Activation.rar; file:_C:\Users\PC\Downloads\Riffstation Guitar Software v1.4.0.0 Full + crack a path -funkčný.zip->Riffstation Guitar Software v1.4.0.0 Full + crack a path -funkƒn∞/path/Patcher.exe; file:_C:\Users\PC\Downloads\Topaz Photo AI 2.4.0 (x64) Activation.rar->Topaz Photo AI 2.4.0 (x64) Activation\Patch.rar->Patch.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Uživatel
Uživatel:
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.405.369.0, AS: 1.405.369.0, NIS: 1.405.369.0
Verze modulu: AM: 1.1.24010.10, NIS: 1.1.24010.10

Date: 2024-02-21 11:18:29
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUA:Win32/Puwaders.C!ml
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_D:\INSTALAČKY\photofiltre11.5.1_en_setup.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-76F2G8Q\PC
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.405.332.0, AS: 1.405.332.0, NIS: 1.405.332.0
Verze modulu: AM: 1.1.24010.10, NIS: 1.1.24010.10

==================== Memory info ===========================

BIOS: Dell Inc. A03 09/17/2013
Motherboard: Dell Inc. 0PC5F7
Processor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Percentage of memory in use: 41%
Total physical RAM: 16292.02 MB
Available physical RAM: 9509.02 MB
Total Virtual: 18724.02 MB
Available Virtual: 10223.95 MB

==================== Drives ================================

Drive c: (System SSD) (Fixed) (Total:237.84 GB) (Free:139 GB) (Model: ADATA SU650) NTFS
Drive d: (DATA) (Fixed) (Total:465.76 GB) (Free:285.5 GB) (Model: WDC WD5000AZLX-22JKKA0) NTFS
Drive e: (DATA) (Fixed) (Total:931.5 GB) (Free:578.71 GB) (Model: Hitachi HUA722010CLA330) NTFS

\\?\Volume{36068e4e-c07a-4809-b6a8-783444d61569}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
\\?\Volume{54d1f9ac-52a9-484a-8d3f-92dcff5b7c76}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: E86885E0)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (Size: 238.5 GB) (Disk ID: 433111EE)

Partition: GPT.

==================== End of Addition.txt =======================

#6 Příspěvek od **Rudy** » 23 úno 2024 09:34

Otevřte poznámkový blok a zkopírujte do něj:

Start

ClosePrřocesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
F:\photofiltre11.5.1_en_setup.exe
C:\Users\PC\Downloads\Riffstation Guitar Software v1.4.0.0 Full + crack a path -funkčný.zip
D:\INSTALAČKY\photofiltre11.5.1_en_setup.exe
Task: {F1D72B73-B58C-4F42-9259-17BB03E280C3} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem123.0.6288.0{DA918000-C8BD-44F9-86CA-E3F03DE2BF64} => C:\Program Files (x86)\Google\GoogleUpdater\123.0.6288.0\updater.exe [4682528 2024-02-08] (Google LLC -> Google LLC) <==== ATTENTION
S2 GoogleUpdaterInternalService123.0.6288.0; C:\Program Files (x86)\Google\GoogleUpdater\123.0.6288.0\updater.exe [4682528 2024-02-08] (Google LLC -> Google LLC) <==== ATTENTION
S2 GoogleUpdaterService123.0.6288.0; C:\Program Files (x86)\Google\GoogleUpdater\123.0.6288.0\updater.exe [4682528 2024-02-08] (Google LLC -> Google LLC) <==== ATTENTION
C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\DumpStack.log.tmp

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Romann · #7 Příspěvek od **Romann** » 23 úno 2024 17:02

Fix result of Farbar Recovery Scan Tool (x64) Version: 23.02.2024
Ran by PC (23-02-2024 16:58:25) Run:1
Running from C:\Users\PC\Desktop
Loaded Profiles: PC
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

ClosePrřocesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
F:\photofiltre11.5.1_en_setup.exe
C:\Users\PC\Downloads\Riffstation Guitar Software v1.4.0.0 Full + crack a path -funkčný.zip
D:\INSTALAČKY\photofiltre11.5.1_en_setup.exe
Task: {F1D72B73-B58C-4F42-9259-17BB03E280C3} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem123.0.6288.0{DA918000-C8BD-44F9-86CA-E3F03DE2BF64} => C:\Program Files (x86)\Google\GoogleUpdater\123.0.6288.0\updater.exe [4682528 2024-02-08] (Google LLC -> Google LLC) <==== ATTENTION
S2 GoogleUpdaterInternalService123.0.6288.0; C:\Program Files (x86)\Google\GoogleUpdater\123.0.6288.0\updater.exe [4682528 2024-02-08] (Google LLC -> Google LLC) <==== ATTENTION
S2 GoogleUpdaterService123.0.6288.0; C:\Program Files (x86)\Google\GoogleUpdater\123.0.6288.0\updater.exe [4682528 2024-02-08] (Google LLC -> Google LLC) <==== ATTENTION
C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\DumpStack.log.tmp

EmptyTemp:
End
*****************

ClosePrřocesses: => Error: No automatic fix found for this entry.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
"F:\photofiltre11.5.1_en_setup.exe" => not found
C:\Users\PC\Downloads\Riffstation Guitar Software v1.4.0.0 Full + crack a path -funkčný.zip => moved successfully
D:\INSTALAČKY\photofiltre11.5.1_en_setup.exe => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F1D72B73-B58C-4F42-9259-17BB03E280C3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F1D72B73-B58C-4F42-9259-17BB03E280C3}" => removed successfully
C:\Windows\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem123.0.6288.0{DA918000-C8BD-44F9-86CA-E3F03DE2BF64} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem123.0.6288.0{DA918000-C8BD-44F9-86CA-E3F03DE2BF64}" => removed successfully
HKLM\System\CurrentControlSet\Services\GoogleUpdaterInternalService123.0.6288.0 => removed successfully
GoogleUpdaterInternalService123.0.6288.0 => service removed successfully
HKLM\System\CurrentControlSet\Services\GoogleUpdaterService123.0.6288.0 => removed successfully
GoogleUpdaterService123.0.6288.0 => service removed successfully
C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1048576 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 1011685691 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 9896784 B
Edge => 0 B
Chrome => 22040843 B
Firefox => 1271131078 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 13502 B
PC => 181169724 B

RecycleBin => 4796003858 B
EmptyTemp: => 6.8 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 23-02-2024 17:00:54)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 17:00:54 ====

#8 Příspěvek od **Rudy** » 23 úno 2024 18:09

Smazáno, log by již měl být OK.

Romann · #9 Příspěvek od **Romann** » 23 úno 2024 18:18

Děkuji moc.

#10 Příspěvek od **Rudy** » 23 úno 2024 18:48

Rádo se stalo!

VIRY.CZ

Prosím o kontrolu logu.

Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.