Stránka 1 z 2

Windows Update

Napsal: 06 bře 2021 10:05
od czech 08
Dobrý den,
jako vždycky jsem si šel zkontrolovat aktualizace. Windows update ale napsal: "Něco se nepovedlo. Zkuste Nastavení otevřít později." Počítač jsem i restartoval.

Tady je log z FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-02-2021
Ran by PC (administrator) on DESKTOP-VNNSM0S (ATComputers CZC) (06-03-2021 10:01:21)
Running from C:\Users\PC\Desktop
Loaded Profiles: PC
Platform: Windows 10 Home Version 20H2 19042.844 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <23>
(Greatis Software LLC -> Greatis Software, LLC) C:\Windows\F1VPIJD6\SU10Guard.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.3-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\Policies\Explorer: [NoSecurityTab] 1
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HPLJ1020LM: C:\Windows\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\88.0.4324.190\Installer\chrmstp.exe [2021-02-27] (Google LLC -> Google LLC)
IFEO\dismHost.exe: [Debugger] *
IFEO\EOSNOTIFY.EXE: [Debugger] *
IFEO\InstallAgent.exe: [Debugger] *
IFEO\MusNotification.exe: [Debugger] *
IFEO\MUSNOTIFICATIONUX.EXE: [Debugger] *
IFEO\remsh.exe: [Debugger] *
IFEO\SIHClient.exe: [Debugger] *
IFEO\UpdateAssistant.exe: [Debugger] *
IFEO\UPFC.EXE: [Debugger] *
IFEO\UsoClient.exe: [Debugger] *
IFEO\WaaSMedic.exe: [Debugger] *
IFEO\WaasMedicAgent.exe: [Debugger] *
IFEO\Windows10Upgrade.exe: [Debugger] *
IFEO\WINDOWS10UPGRADERAPP.EXE: [Debugger] *

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {05C7F2FB-A664-4270-804C-A9EA3EA75E82} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0DB66CE3-6FDC-44A8-8B82-A42E4C6F0847} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {72DF168F-C3D9-4B53-958E-2C5A0AC464FE} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\program files (x86)\microsoft visual studio\installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [64936 2021-01-25] (Microsoft Corporation -> Microsoft)
Task: {72FD744D-2D0C-4772-9587-E50DFDA28E3D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AADDFD4F-EBA0-472A-85F3-3120A8C81380} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-321179341-2139502707-572524282-500 => C:\Users\PC\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {C22E2733-4F8F-4C14-BC1F-63EB53D6B01C} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754104 2021-01-07] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {D51B55CD-FD32-45C3-B42F-745D0FEFFDD2} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {E8FDB956-1576-4A06-A530-6F5BDDDF2BDA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
"C:\Windows\System32\Tasks\Microsoft\Windows\Google" could not be unlocked Error: 5. <==== ATTENTION
"C:\Windows\System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIS" was unlocked. <==== ATTENTION
Task: {F48D2DB3-D10D-40BF-B360-8321F70115DD} - System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIS => C:\Windows\SysWOW64\XPSViewer\TasksG\G-1-10-52\TG_1.3.54.41.exe (Access Denied) <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Intel PTT EK Recertification.job => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.38 213.46.172.39
Tcpip\..\Interfaces\{03ed72bc-7c71-4e7f-9275-79a541e551fb}: [DhcpNameServer] 213.46.172.38 213.46.172.39

Edge:
=======
Edge Profile: C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-06]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [No File]
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [No File]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2021-03-06]
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://meet.google.com; hxxps://web.whatsapp.com; hxxps://www.instagram.com; hxxps://www.youtube.com
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-24]
CHR Extension: (Just Black) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2021-03-01]
CHR Extension: (Dokumenty) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-24]
CHR Extension: (Disk Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-24]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-24]
CHR Extension: (Smart Auto Reload) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmojnplfenlnmkmgnkmkomnnfnklkkbj [2021-02-27]
CHR Extension: (Tabulky) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-24]
CHR Extension: (HTTPS Everywhere) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2021-02-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-03]
CHR Extension: (Adblock plus best adblock plus) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbbmlecgjpijkeelnebilpekpnkaoool [2021-03-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-24]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-24]
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\System Profile [2021-02-28]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 SU10Guard; C:\Windows\F1VPIJD6\SU10Guard.exe [72776 2020-05-30] (Greatis Software LLC -> Greatis Software, LLC)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [746944 2021-01-07] (Oracle Corporation -> Oracle Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\NisSrv.exe [2483624 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MsMpEng.exe [128392 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [269200 2020-09-27] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-04] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 MpKsl6d99bde5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{28B5F8E6-B025-40B6-8B8C-3B28A4B6BEFC}\MpKslDrv.sys [90360 2021-03-06] (Microsoft Windows -> Microsoft Corporation)
R3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [239872 2021-01-07] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [249776 2021-01-07] (Oracle Corporation -> Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [174968 2021-01-07] (Oracle Corporation -> Oracle Corporation)
R3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [48136 2021-02-25] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49544 2021-02-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [420088 2021-02-27] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [72952 2021-02-27] (Microsoft Windows -> Microsoft Corporation)
S3 WacHidRouter; \SystemRoot\System32\drivers\wachidrouter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-06 10:00 - 2021-03-06 10:00 - 000000000 ____D C:\Users\PC\Desktop\FRST-OlderVersion
2021-03-06 09:12 - 2021-03-06 09:12 - 000000000 ____D C:\Users\PC\AppData\Roaming\Macromedia
2021-03-06 09:12 - 2021-03-06 09:12 - 000000000 ____D C:\Users\PC\AppData\Local\Adobe
2021-03-06 09:12 - 2021-03-06 09:12 - 000000000 ____D C:\Program Files (x86)\Bamboo Dock
2021-03-06 08:40 - 2014-08-06 19:15 - 000014136 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\hidkmdf.sys
2021-03-06 08:37 - 2021-03-06 09:54 - 000000000 ____D C:\Windows\F1VPIJD6
2021-03-06 08:29 - 2021-03-06 08:29 - 034372099 ____N C:\Users\PC\Desktop\sketch-9-0-t-0-6.apk
2021-03-06 08:09 - 2021-03-06 08:10 - 000000000 ____D C:\ProgramData\BlueStacks
2021-03-06 08:09 - 2021-03-06 08:09 - 000000000 ____D C:\Program Files\BlueStacks
2021-03-05 08:16 - 2021-03-05 08:26 - 3581853696 _____ C:\Users\PC\Desktop\en_windows_8_x64_dvd_915440.iso
2021-03-05 07:27 - 2021-03-05 08:42 - 000000000 ____D C:\Users\PC\Desktop\New Unity Problannk
2021-03-04 16:49 - 2021-03-04 16:49 - 000000000 ____D C:\Users\PC\Documents\Pivot Animator
2021-03-04 16:49 - 2021-03-04 16:49 - 000000000 ____D C:\Users\PC\AppData\Local\Pivot Animator
2021-03-04 16:49 - 2021-03-04 16:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pivot Animator
2021-03-04 16:49 - 2021-03-04 16:49 - 000000000 ____D C:\Program Files (x86)\Pivot Animator
2021-03-03 12:36 - 2021-03-04 17:44 - 000000000 ____D C:\Users\PC\Desktop\MY GAME
2021-03-03 08:32 - 2021-03-03 08:32 - 000133731 _____ C:\Users\PC\Downloads\Prezentace 1.pptx
2021-03-02 11:21 - 2021-03-02 11:21 - 000001184 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\exp.lnk
2021-03-01 11:18 - 2021-03-02 12:42 - 000000719 _____ C:\Users\PC\Documents\ClownfishVoiceChanger.ini
2021-03-01 11:18 - 2021-03-01 11:18 - 000000000 ____D C:\Users\PC\Documents\ClownfishSoundTemp
2021-03-01 11:18 - 2021-03-01 11:18 - 000000000 ____D C:\Users\PC\Documents\ClownfishCustomVocoders
2021-03-01 11:17 - 2021-03-01 11:17 - 000000000 ____D C:\Users\PC\Documents\ClownfishCustomSounds
2021-03-01 11:17 - 2021-03-01 11:17 - 000000000 ____D C:\Users\PC\Documents\Clownfish_VST_cfg
2021-03-01 11:17 - 2021-03-01 11:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClownfishVoiceChanger
2021-03-01 11:17 - 2021-03-01 11:17 - 000000000 ____D C:\Program Files (x86)\ClownfishVoiceChanger
2021-03-01 10:10 - 2021-03-05 14:25 - 000000000 ____D C:\ProgramData\Voicemod
2021-03-01 10:10 - 2021-03-01 10:10 - 000000000 ____D C:\Users\PC\AppData\Local\Voicemod
2021-03-01 10:10 - 2021-03-01 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod
2021-03-01 10:10 - 2021-03-01 10:10 - 000000000 ____D C:\Program Files\Voicemod Desktop
2021-03-01 10:10 - 2021-02-25 13:08 - 000048136 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\vmdrv.sys
2021-02-28 18:25 - 2021-03-01 15:29 - 000000422 _____ C:\Users\PC\Desktop\Story.bat
2021-02-27 17:37 - 2021-02-27 17:37 - 001314128 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-02-27 17:37 - 2021-02-27 17:37 - 000011002 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-02-27 17:36 - 2021-02-27 17:36 - 001822272 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-02-27 17:36 - 2021-02-27 17:36 - 001394024 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-02-27 17:36 - 2021-02-27 17:36 - 000231248 _____ C:\Windows\system32\containerdevicemanagement.dll
2021-02-27 17:36 - 2021-02-27 17:36 - 000091136 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-02-27 17:23 - 2021-02-27 17:23 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-19 16:58 - 2021-02-19 16:58 - 000020451 _____ C:\Users\PC\AppData\Local\recently-used.xbel
2021-02-17 16:09 - 2021-02-17 16:10 - 000000000 ____D C:\Users\PC\AppData\Roaming\Notepad++
2021-02-17 16:09 - 2021-02-17 16:09 - 000001100 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2021-02-17 16:09 - 2021-02-17 16:09 - 000000000 ____D C:\Program Files (x86)\Notepad++
2021-02-17 13:49 - 2021-02-17 14:41 - 000000000 ____D C:\Users\PC\Documents\Inform
2021-02-17 13:19 - 2021-02-17 13:19 - 000000000 ____D C:\Users\PC\Desktop\Songs
2021-02-16 18:27 - 2021-02-16 18:27 - 000000000 ____D C:\Users\PC\AppData\Local\TADS 3
2021-02-15 16:09 - 2021-02-16 17:54 - 000000000 ____D C:\Users\PC\Desktop\OffScreen - Benedikt Audy
2021-02-15 10:12 - 2021-02-19 16:58 - 000000000 ____D C:\Users\PC\Desktop\fotky
2021-02-15 09:56 - 2021-02-15 09:56 - 006690832 _____ C:\Users\PC\Desktop\DSCN1969.MOV
2021-02-12 19:23 - 2021-02-12 19:23 - 000008301 _____ C:\Users\PC\Desktop\Fixlog.txt
2021-02-12 18:04 - 2021-02-12 18:05 - 000000000 ____D C:\AdwCleaner
2021-02-12 18:04 - 2021-02-12 18:04 - 008457584 _____ (Malwarebytes) C:\Users\PC\Desktop\adwcleaner_8.0.9.1.exe
2021-02-12 17:49 - 2021-02-12 17:50 - 000035231 _____ C:\Users\PC\Desktop\Addition.txt
2021-02-12 17:47 - 2021-03-06 10:01 - 000013152 _____ C:\Users\PC\Desktop\FRST.txt
2021-02-12 17:46 - 2021-03-06 10:01 - 000000000 ____D C:\FRST
2021-02-12 16:51 - 2021-03-06 10:00 - 002301440 _____ (Farbar) C:\Users\PC\Desktop\Last rescue FRST64.exe
2021-02-12 13:09 - 2021-02-12 13:11 - 000000000 ____D C:\Program Files (x86)\ExeScript
2021-02-11 18:43 - 2021-02-11 18:43 - 000000368 ____H C:\Windows\Tasks\Intel PTT EK Recertification.job
2021-02-11 18:31 - 2021-02-13 17:01 - 000011924 _____ C:\Users\PC\Desktop\ss.vbs
2021-02-11 18:22 - 2021-03-05 18:20 - 000000000 ____D C:\Users\PC\Desktop\VBS
2021-02-11 17:32 - 2021-03-01 12:47 - 000001441 _____ C:\Users\PC\Desktop\Antivirus.lnk
2021-02-11 17:18 - 2021-02-11 17:18 - 000000545 _____ C:\Users\PC\Desktop\nice.txt
2021-02-11 17:17 - 2021-02-11 17:25 - 000000096 ____R C:\Windows\system32\computer.vbs
2021-02-11 11:08 - 2021-02-11 11:18 - 3319478272 _____ C:\Users\PC\Desktop\en_windows_7_ultimate_x64_dvd.iso
2021-02-11 08:58 - 2021-03-04 08:02 - 000000000 ____D C:\Users\PC\AppData\Local\ElevatedDiagnostics
2021-02-11 08:16 - 2021-02-11 08:59 - 000000000 ____D C:\Users\PC\AppData\Local\AAR
2021-02-10 13:08 - 2021-02-10 13:10 - 594287729 _____ C:\Users\PC\Desktop\Timeline 1.mov
2021-02-10 11:09 - 2021-02-10 11:09 - 000241086 _____ C:\Users\PC\Desktop\A-A-AND YOU FAIL!.mp4
2021-02-10 09:57 - 2021-02-10 09:57 - 000000000 ____D C:\Users\PC\AppData\Roaming\XuanZhi
2021-02-10 09:57 - 2021-02-10 09:57 - 000000000 ____D C:\Users\PC\AppData\Roaming\lddownloader
2021-02-06 11:34 - 2021-02-06 11:34 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-02-06 11:34 - 2021-02-06 11:34 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-02-05 16:06 - 2021-02-05 16:06 - 000000000 ____D C:\Users\PC\AppData\Local\gtk-3.0
2021-02-05 16:02 - 2021-02-05 16:02 - 000000000 ____D C:\Users\PC\AppData\Local\RawTherapee
2021-02-05 16:02 - 2021-02-05 16:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RawTherapee
2021-02-05 16:02 - 2021-02-05 16:02 - 000000000 ____D C:\Program Files\RawTherapee
2021-02-05 15:33 - 2020-04-26 11:36 - 001566720 _____ C:\Users\PC\Desktop\MOV0AE.MOD
2021-02-05 12:28 - 2021-02-19 16:58 - 000000000 ____D C:\Users\PC\AppData\Local\gtk-2.0
2021-02-05 12:06 - 2021-02-19 17:35 - 000000000 ____D C:\Users\PC\AppData\Local\babl-0.1
2021-02-05 12:06 - 2021-02-05 12:06 - 000001304 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.22.lnk
2021-02-05 12:06 - 2021-02-05 12:06 - 000000000 ____D C:\Users\PC\AppData\Roaming\GIMP
2021-02-05 12:06 - 2021-02-05 12:06 - 000000000 ____D C:\Users\PC\AppData\Local\GIMP
2021-02-05 12:06 - 2021-02-05 12:06 - 000000000 ____D C:\Users\PC\AppData\Local\gegl-0.4
2021-02-04 16:34 - 2021-02-04 16:34 - 000000000 ____D C:\Users\PC\AppData\Roaming\com.ribbet.RibbetNative
2021-02-04 13:06 - 2021-02-18 10:44 - 000007601 _____ C:\Users\PC\AppData\Local\Resmon.ResmonCfg
2021-02-04 12:21 - 2021-02-04 12:21 - 000000000 ____D C:\Users\PC\AppData\Roaming\Zoner
2021-02-04 12:21 - 2021-02-04 12:21 - 000000000 ____D C:\Users\PC\AppData\Local\Zoner
2021-02-04 12:20 - 2021-02-05 11:52 - 000000000 ____D C:\ProgramData\Zoner
2021-02-04 09:33 - 2021-02-04 09:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2020.2.3f1 (64-bit)
2021-02-04 09:30 - 2021-02-04 09:30 - 000000000 ____D C:\Program Files\Unity

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-06 10:01 - 2021-01-24 19:05 - 001693140 _____ C:\Windows\system32\PerfStringBackup.INI
2021-03-06 10:01 - 2019-12-07 15:41 - 000716770 _____ C:\Windows\system32\perfh005.dat
2021-03-06 10:01 - 2019-12-07 15:41 - 000144948 _____ C:\Windows\system32\perfc005.dat
2021-03-06 10:01 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2021-03-06 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-06 09:54 - 2021-01-24 19:08 - 000000000 ____D C:\ProgramData\NVIDIA
2021-03-06 09:54 - 2020-09-27 08:51 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-03-06 09:54 - 2020-09-27 06:50 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-06 09:54 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2021-03-06 09:54 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-03-06 09:51 - 2021-01-22 15:57 - 000000000 ____D C:\Users\PC\AppData\Local\PlaceholderTileLogoFolder
2021-03-06 09:12 - 2021-01-22 15:56 - 000000000 ____D C:\Users\PC
2021-03-06 08:14 - 2021-02-01 15:49 - 000003940 _____ C:\Windows\system32\Tasks\BlueStacksHelper
2021-03-06 08:10 - 2021-02-01 15:46 - 000002081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2021-03-06 08:10 - 2021-02-01 15:46 - 000001920 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks.lnk
2021-03-06 08:09 - 2021-01-28 16:11 - 000000000 ____D C:\Users\PC\AppData\Local\Bluestacks
2021-03-06 08:08 - 2021-02-01 15:43 - 000000000 ____D C:\Users\PC\AppData\Local\BlueStacksSetup
2021-03-06 08:06 - 2021-01-31 09:10 - 000000000 ____D C:\Users\PC\.VirtualBox
2021-03-06 08:02 - 2021-01-28 10:31 - 000000000 ____D C:\ProgramData\VirtualBox
2021-03-05 19:07 - 2021-01-24 19:16 - 000000000 ____D C:\Users\PC\AppData\Roaming\vlc
2021-03-05 18:36 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2021-03-05 15:49 - 2021-01-24 19:32 - 000000000 ____D C:\Users\PC\AppData\Roaming\UnityHub
2021-03-05 15:47 - 2021-01-31 09:10 - 000000000 ____D C:\Users\PC\VirtualBox VMs
2021-03-05 15:47 - 2021-01-24 19:31 - 000000000 ____D C:\Users\PC\Desktop\Distanční výuka
2021-03-05 15:31 - 2020-09-27 06:50 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-03-05 08:42 - 2021-01-24 19:31 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Unity
2021-03-05 07:09 - 2020-09-27 08:53 - 000003584 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-05 07:09 - 2020-09-27 08:53 - 000003460 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-05 07:02 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-04 19:10 - 2021-01-26 15:22 - 000000000 ____D C:\Users\PC\AppData\Roaming\obs-studio
2021-03-04 14:11 - 2021-01-25 10:06 - 000000000 ____D C:\Users\PC\AppData\Local\.IdentityService
2021-03-04 11:28 - 2021-01-25 11:15 - 000000000 ____D C:\Users\PC\Documents\Zoom
2021-03-03 13:14 - 2021-01-27 08:35 - 000000000 ____D C:\Users\PC\AppData\Local\NVIDIA
2021-03-02 14:49 - 2021-01-24 19:31 - 000000000 ____D C:\Users\PC\AppData\Roaming\Unity
2021-03-02 11:52 - 2021-01-28 09:59 - 000000000 ____D C:\Users\PC\AppData\Local\CrashDumps
2021-03-01 16:36 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2021-03-01 16:35 - 2019-12-07 15:44 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-03-01 16:35 - 2019-12-07 15:44 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-03-01 16:35 - 2019-12-07 15:41 - 000000000 ____D C:\Windows\SysWOW64\WCN
2021-03-01 16:35 - 2019-12-07 15:41 - 000000000 ____D C:\Windows\system32\WCN
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-03-01 16:35 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2021-03-01 16:34 - 2021-01-22 15:56 - 000000000 ____D C:\Users\PC\AppData\Local\Packages
2021-03-01 16:34 - 2019-12-07 15:43 - 000000000 ____D C:\Windows\OCR
2021-03-01 15:12 - 2021-01-29 11:56 - 000000000 ____D C:\Users\PC\AppData\Roaming\audacity
2021-02-28 16:51 - 2021-01-25 10:22 - 000000000 ____D C:\Users\PC\AppData\Local\D3DSCache
2021-02-28 16:48 - 2021-01-22 15:52 - 000000000 ____D C:\Windows\Panther
2021-02-27 18:08 - 2021-01-25 07:30 - 000000000 ____D C:\Users\PC\Desktop\Filmy
2021-02-27 17:45 - 2020-09-27 06:50 - 000266576 _____ C:\Windows\system32\FNTCACHE.DAT
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2021-02-27 17:10 - 2021-01-24 19:06 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-27 17:08 - 2020-09-27 08:53 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-27 17:07 - 2020-09-27 08:51 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-02-17 09:17 - 2021-01-22 10:31 - 000000000 ____D C:\Users\PC\Desktop\adventure
2021-02-13 08:57 - 2021-01-25 10:03 - 000001795 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019.lnk
2021-02-13 07:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF
2021-02-10 16:17 - 2021-01-24 19:10 - 000000000 ____D C:\Windows\system32\MRT
2021-02-10 16:16 - 2021-01-24 19:10 - 130141752 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-02-06 12:08 - 2021-01-30 11:02 - 000000000 ____D C:\Users\PC\Desktop\Hudba
2021-02-06 11:56 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Keywords
2021-02-06 11:56 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Keywords
2021-02-06 11:56 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2021-02-05 07:52 - 2021-01-26 12:46 - 000000000 ____D C:\Users\PC\Documents\Zvukové záznamy
2021-02-04 09:33 - 2021-01-24 19:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2020.2.2f1 (64-bit)
2021-02-04 09:30 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared

==================== Files in the root of some directories ========

2021-01-29 08:16 - 2021-01-29 08:16 - 000000016 _____ () C:\Users\PC\AppData\Roaming\obs-virtualcam.txt
2021-02-19 16:58 - 2021-02-19 16:58 - 000020451 _____ () C:\Users\PC\AppData\Local\recently-used.xbel
2021-02-04 13:06 - 2021-02-18 10:44 - 000007601 _____ () C:\Users\PC\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================




















A tady Adition:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-02-2021
Ran by PC (administrator) on DESKTOP-VNNSM0S (ATComputers CZC) (06-03-2021 10:01:21)
Running from C:\Users\PC\Desktop
Loaded Profiles: PC
Platform: Windows 10 Home Version 20H2 19042.844 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <23>
(Greatis Software LLC -> Greatis Software, LLC) C:\Windows\F1VPIJD6\SU10Guard.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.3-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\Policies\Explorer: [NoSecurityTab] 1
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HPLJ1020LM: C:\Windows\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\88.0.4324.190\Installer\chrmstp.exe [2021-02-27] (Google LLC -> Google LLC)
IFEO\dismHost.exe: [Debugger] *
IFEO\EOSNOTIFY.EXE: [Debugger] *
IFEO\InstallAgent.exe: [Debugger] *
IFEO\MusNotification.exe: [Debugger] *
IFEO\MUSNOTIFICATIONUX.EXE: [Debugger] *
IFEO\remsh.exe: [Debugger] *
IFEO\SIHClient.exe: [Debugger] *
IFEO\UpdateAssistant.exe: [Debugger] *
IFEO\UPFC.EXE: [Debugger] *
IFEO\UsoClient.exe: [Debugger] *
IFEO\WaaSMedic.exe: [Debugger] *
IFEO\WaasMedicAgent.exe: [Debugger] *
IFEO\Windows10Upgrade.exe: [Debugger] *
IFEO\WINDOWS10UPGRADERAPP.EXE: [Debugger] *

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {05C7F2FB-A664-4270-804C-A9EA3EA75E82} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0DB66CE3-6FDC-44A8-8B82-A42E4C6F0847} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {72DF168F-C3D9-4B53-958E-2C5A0AC464FE} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\program files (x86)\microsoft visual studio\installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [64936 2021-01-25] (Microsoft Corporation -> Microsoft)
Task: {72FD744D-2D0C-4772-9587-E50DFDA28E3D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AADDFD4F-EBA0-472A-85F3-3120A8C81380} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-321179341-2139502707-572524282-500 => C:\Users\PC\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {C22E2733-4F8F-4C14-BC1F-63EB53D6B01C} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754104 2021-01-07] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {D51B55CD-FD32-45C3-B42F-745D0FEFFDD2} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {E8FDB956-1576-4A06-A530-6F5BDDDF2BDA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
"C:\Windows\System32\Tasks\Microsoft\Windows\Google" could not be unlocked Error: 5. <==== ATTENTION
"C:\Windows\System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIS" was unlocked. <==== ATTENTION
Task: {F48D2DB3-D10D-40BF-B360-8321F70115DD} - System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIS => C:\Windows\SysWOW64\XPSViewer\TasksG\G-1-10-52\TG_1.3.54.41.exe (Access Denied) <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Intel PTT EK Recertification.job => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.38 213.46.172.39
Tcpip\..\Interfaces\{03ed72bc-7c71-4e7f-9275-79a541e551fb}: [DhcpNameServer] 213.46.172.38 213.46.172.39

Edge:
=======
Edge Profile: C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-06]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [No File]
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [No File]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2021-03-06]
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://meet.google.com; hxxps://web.whatsapp.com; hxxps://www.instagram.com; hxxps://www.youtube.com
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-24]
CHR Extension: (Just Black) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2021-03-01]
CHR Extension: (Dokumenty) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-24]
CHR Extension: (Disk Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-24]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-24]
CHR Extension: (Smart Auto Reload) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmojnplfenlnmkmgnkmkomnnfnklkkbj [2021-02-27]
CHR Extension: (Tabulky) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-24]
CHR Extension: (HTTPS Everywhere) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2021-02-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-03]
CHR Extension: (Adblock plus best adblock plus) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbbmlecgjpijkeelnebilpekpnkaoool [2021-03-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-24]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-24]
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\System Profile [2021-02-28]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 SU10Guard; C:\Windows\F1VPIJD6\SU10Guard.exe [72776 2020-05-30] (Greatis Software LLC -> Greatis Software, LLC)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [746944 2021-01-07] (Oracle Corporation -> Oracle Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\NisSrv.exe [2483624 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MsMpEng.exe [128392 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [269200 2020-09-27] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-04] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 MpKsl6d99bde5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{28B5F8E6-B025-40B6-8B8C-3B28A4B6BEFC}\MpKslDrv.sys [90360 2021-03-06] (Microsoft Windows -> Microsoft Corporation)
R3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [239872 2021-01-07] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [249776 2021-01-07] (Oracle Corporation -> Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [174968 2021-01-07] (Oracle Corporation -> Oracle Corporation)
R3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [48136 2021-02-25] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49544 2021-02-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [420088 2021-02-27] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [72952 2021-02-27] (Microsoft Windows -> Microsoft Corporation)
S3 WacHidRouter; \SystemRoot\System32\drivers\wachidrouter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-06 10:00 - 2021-03-06 10:00 - 000000000 ____D C:\Users\PC\Desktop\FRST-OlderVersion
2021-03-06 09:12 - 2021-03-06 09:12 - 000000000 ____D C:\Users\PC\AppData\Roaming\Macromedia
2021-03-06 09:12 - 2021-03-06 09:12 - 000000000 ____D C:\Users\PC\AppData\Local\Adobe
2021-03-06 09:12 - 2021-03-06 09:12 - 000000000 ____D C:\Program Files (x86)\Bamboo Dock
2021-03-06 08:40 - 2014-08-06 19:15 - 000014136 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\hidkmdf.sys
2021-03-06 08:37 - 2021-03-06 09:54 - 000000000 ____D C:\Windows\F1VPIJD6
2021-03-06 08:29 - 2021-03-06 08:29 - 034372099 ____N C:\Users\PC\Desktop\sketch-9-0-t-0-6.apk
2021-03-06 08:09 - 2021-03-06 08:10 - 000000000 ____D C:\ProgramData\BlueStacks
2021-03-06 08:09 - 2021-03-06 08:09 - 000000000 ____D C:\Program Files\BlueStacks
2021-03-05 08:16 - 2021-03-05 08:26 - 3581853696 _____ C:\Users\PC\Desktop\en_windows_8_x64_dvd_915440.iso
2021-03-05 07:27 - 2021-03-05 08:42 - 000000000 ____D C:\Users\PC\Desktop\New Unity Problannk
2021-03-04 16:49 - 2021-03-04 16:49 - 000000000 ____D C:\Users\PC\Documents\Pivot Animator
2021-03-04 16:49 - 2021-03-04 16:49 - 000000000 ____D C:\Users\PC\AppData\Local\Pivot Animator
2021-03-04 16:49 - 2021-03-04 16:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pivot Animator
2021-03-04 16:49 - 2021-03-04 16:49 - 000000000 ____D C:\Program Files (x86)\Pivot Animator
2021-03-03 12:36 - 2021-03-04 17:44 - 000000000 ____D C:\Users\PC\Desktop\MY GAME
2021-03-03 08:32 - 2021-03-03 08:32 - 000133731 _____ C:\Users\PC\Downloads\Prezentace 1.pptx
2021-03-02 11:21 - 2021-03-02 11:21 - 000001184 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\exp.lnk
2021-03-01 11:18 - 2021-03-02 12:42 - 000000719 _____ C:\Users\PC\Documents\ClownfishVoiceChanger.ini
2021-03-01 11:18 - 2021-03-01 11:18 - 000000000 ____D C:\Users\PC\Documents\ClownfishSoundTemp
2021-03-01 11:18 - 2021-03-01 11:18 - 000000000 ____D C:\Users\PC\Documents\ClownfishCustomVocoders
2021-03-01 11:17 - 2021-03-01 11:17 - 000000000 ____D C:\Users\PC\Documents\ClownfishCustomSounds
2021-03-01 11:17 - 2021-03-01 11:17 - 000000000 ____D C:\Users\PC\Documents\Clownfish_VST_cfg
2021-03-01 11:17 - 2021-03-01 11:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClownfishVoiceChanger
2021-03-01 11:17 - 2021-03-01 11:17 - 000000000 ____D C:\Program Files (x86)\ClownfishVoiceChanger
2021-03-01 10:10 - 2021-03-05 14:25 - 000000000 ____D C:\ProgramData\Voicemod
2021-03-01 10:10 - 2021-03-01 10:10 - 000000000 ____D C:\Users\PC\AppData\Local\Voicemod
2021-03-01 10:10 - 2021-03-01 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod
2021-03-01 10:10 - 2021-03-01 10:10 - 000000000 ____D C:\Program Files\Voicemod Desktop
2021-03-01 10:10 - 2021-02-25 13:08 - 000048136 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\vmdrv.sys
2021-02-28 18:25 - 2021-03-01 15:29 - 000000422 _____ C:\Users\PC\Desktop\Story.bat
2021-02-27 17:37 - 2021-02-27 17:37 - 001314128 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-02-27 17:37 - 2021-02-27 17:37 - 000011002 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-02-27 17:36 - 2021-02-27 17:36 - 001822272 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-02-27 17:36 - 2021-02-27 17:36 - 001394024 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-02-27 17:36 - 2021-02-27 17:36 - 000231248 _____ C:\Windows\system32\containerdevicemanagement.dll
2021-02-27 17:36 - 2021-02-27 17:36 - 000091136 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-02-27 17:23 - 2021-02-27 17:23 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-19 16:58 - 2021-02-19 16:58 - 000020451 _____ C:\Users\PC\AppData\Local\recently-used.xbel
2021-02-17 16:09 - 2021-02-17 16:10 - 000000000 ____D C:\Users\PC\AppData\Roaming\Notepad++
2021-02-17 16:09 - 2021-02-17 16:09 - 000001100 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2021-02-17 16:09 - 2021-02-17 16:09 - 000000000 ____D C:\Program Files (x86)\Notepad++
2021-02-17 13:49 - 2021-02-17 14:41 - 000000000 ____D C:\Users\PC\Documents\Inform
2021-02-17 13:19 - 2021-02-17 13:19 - 000000000 ____D C:\Users\PC\Desktop\Songs
2021-02-16 18:27 - 2021-02-16 18:27 - 000000000 ____D C:\Users\PC\AppData\Local\TADS 3
2021-02-15 16:09 - 2021-02-16 17:54 - 000000000 ____D C:\Users\PC\Desktop\OffScreen - Benedikt Audy
2021-02-15 10:12 - 2021-02-19 16:58 - 000000000 ____D C:\Users\PC\Desktop\fotky
2021-02-15 09:56 - 2021-02-15 09:56 - 006690832 _____ C:\Users\PC\Desktop\DSCN1969.MOV
2021-02-12 19:23 - 2021-02-12 19:23 - 000008301 _____ C:\Users\PC\Desktop\Fixlog.txt
2021-02-12 18:04 - 2021-02-12 18:05 - 000000000 ____D C:\AdwCleaner
2021-02-12 18:04 - 2021-02-12 18:04 - 008457584 _____ (Malwarebytes) C:\Users\PC\Desktop\adwcleaner_8.0.9.1.exe
2021-02-12 17:49 - 2021-02-12 17:50 - 000035231 _____ C:\Users\PC\Desktop\Addition.txt
2021-02-12 17:47 - 2021-03-06 10:01 - 000013152 _____ C:\Users\PC\Desktop\FRST.txt
2021-02-12 17:46 - 2021-03-06 10:01 - 000000000 ____D C:\FRST
2021-02-12 16:51 - 2021-03-06 10:00 - 002301440 _____ (Farbar) C:\Users\PC\Desktop\Last rescue FRST64.exe
2021-02-12 13:09 - 2021-02-12 13:11 - 000000000 ____D C:\Program Files (x86)\ExeScript
2021-02-11 18:43 - 2021-02-11 18:43 - 000000368 ____H C:\Windows\Tasks\Intel PTT EK Recertification.job
2021-02-11 18:31 - 2021-02-13 17:01 - 000011924 _____ C:\Users\PC\Desktop\ss.vbs
2021-02-11 18:22 - 2021-03-05 18:20 - 000000000 ____D C:\Users\PC\Desktop\VBS
2021-02-11 17:32 - 2021-03-01 12:47 - 000001441 _____ C:\Users\PC\Desktop\Antivirus.lnk
2021-02-11 17:18 - 2021-02-11 17:18 - 000000545 _____ C:\Users\PC\Desktop\nice.txt
2021-02-11 17:17 - 2021-02-11 17:25 - 000000096 ____R C:\Windows\system32\computer.vbs
2021-02-11 11:08 - 2021-02-11 11:18 - 3319478272 _____ C:\Users\PC\Desktop\en_windows_7_ultimate_x64_dvd.iso
2021-02-11 08:58 - 2021-03-04 08:02 - 000000000 ____D C:\Users\PC\AppData\Local\ElevatedDiagnostics
2021-02-11 08:16 - 2021-02-11 08:59 - 000000000 ____D C:\Users\PC\AppData\Local\AAR
2021-02-10 13:08 - 2021-02-10 13:10 - 594287729 _____ C:\Users\PC\Desktop\Timeline 1.mov
2021-02-10 11:09 - 2021-02-10 11:09 - 000241086 _____ C:\Users\PC\Desktop\A-A-AND YOU FAIL!.mp4
2021-02-10 09:57 - 2021-02-10 09:57 - 000000000 ____D C:\Users\PC\AppData\Roaming\XuanZhi
2021-02-10 09:57 - 2021-02-10 09:57 - 000000000 ____D C:\Users\PC\AppData\Roaming\lddownloader
2021-02-06 11:34 - 2021-02-06 11:34 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-02-06 11:34 - 2021-02-06 11:34 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-02-05 16:06 - 2021-02-05 16:06 - 000000000 ____D C:\Users\PC\AppData\Local\gtk-3.0
2021-02-05 16:02 - 2021-02-05 16:02 - 000000000 ____D C:\Users\PC\AppData\Local\RawTherapee
2021-02-05 16:02 - 2021-02-05 16:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RawTherapee
2021-02-05 16:02 - 2021-02-05 16:02 - 000000000 ____D C:\Program Files\RawTherapee
2021-02-05 15:33 - 2020-04-26 11:36 - 001566720 _____ C:\Users\PC\Desktop\MOV0AE.MOD
2021-02-05 12:28 - 2021-02-19 16:58 - 000000000 ____D C:\Users\PC\AppData\Local\gtk-2.0
2021-02-05 12:06 - 2021-02-19 17:35 - 000000000 ____D C:\Users\PC\AppData\Local\babl-0.1
2021-02-05 12:06 - 2021-02-05 12:06 - 000001304 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.22.lnk
2021-02-05 12:06 - 2021-02-05 12:06 - 000000000 ____D C:\Users\PC\AppData\Roaming\GIMP
2021-02-05 12:06 - 2021-02-05 12:06 - 000000000 ____D C:\Users\PC\AppData\Local\GIMP
2021-02-05 12:06 - 2021-02-05 12:06 - 000000000 ____D C:\Users\PC\AppData\Local\gegl-0.4
2021-02-04 16:34 - 2021-02-04 16:34 - 000000000 ____D C:\Users\PC\AppData\Roaming\com.ribbet.RibbetNative
2021-02-04 13:06 - 2021-02-18 10:44 - 000007601 _____ C:\Users\PC\AppData\Local\Resmon.ResmonCfg
2021-02-04 12:21 - 2021-02-04 12:21 - 000000000 ____D C:\Users\PC\AppData\Roaming\Zoner
2021-02-04 12:21 - 2021-02-04 12:21 - 000000000 ____D C:\Users\PC\AppData\Local\Zoner
2021-02-04 12:20 - 2021-02-05 11:52 - 000000000 ____D C:\ProgramData\Zoner
2021-02-04 09:33 - 2021-02-04 09:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2020.2.3f1 (64-bit)
2021-02-04 09:30 - 2021-02-04 09:30 - 000000000 ____D C:\Program Files\Unity

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-06 10:01 - 2021-01-24 19:05 - 001693140 _____ C:\Windows\system32\PerfStringBackup.INI
2021-03-06 10:01 - 2019-12-07 15:41 - 000716770 _____ C:\Windows\system32\perfh005.dat
2021-03-06 10:01 - 2019-12-07 15:41 - 000144948 _____ C:\Windows\system32\perfc005.dat
2021-03-06 10:01 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2021-03-06 09:55 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-06 09:54 - 2021-01-24 19:08 - 000000000 ____D C:\ProgramData\NVIDIA
2021-03-06 09:54 - 2020-09-27 08:51 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-03-06 09:54 - 2020-09-27 06:50 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-06 09:54 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2021-03-06 09:54 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-03-06 09:51 - 2021-01-22 15:57 - 000000000 ____D C:\Users\PC\AppData\Local\PlaceholderTileLogoFolder
2021-03-06 09:12 - 2021-01-22 15:56 - 000000000 ____D C:\Users\PC
2021-03-06 08:14 - 2021-02-01 15:49 - 000003940 _____ C:\Windows\system32\Tasks\BlueStacksHelper
2021-03-06 08:10 - 2021-02-01 15:46 - 000002081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2021-03-06 08:10 - 2021-02-01 15:46 - 000001920 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks.lnk
2021-03-06 08:09 - 2021-01-28 16:11 - 000000000 ____D C:\Users\PC\AppData\Local\Bluestacks
2021-03-06 08:08 - 2021-02-01 15:43 - 000000000 ____D C:\Users\PC\AppData\Local\BlueStacksSetup
2021-03-06 08:06 - 2021-01-31 09:10 - 000000000 ____D C:\Users\PC\.VirtualBox
2021-03-06 08:02 - 2021-01-28 10:31 - 000000000 ____D C:\ProgramData\VirtualBox
2021-03-05 19:07 - 2021-01-24 19:16 - 000000000 ____D C:\Users\PC\AppData\Roaming\vlc
2021-03-05 18:36 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2021-03-05 15:49 - 2021-01-24 19:32 - 000000000 ____D C:\Users\PC\AppData\Roaming\UnityHub
2021-03-05 15:47 - 2021-01-31 09:10 - 000000000 ____D C:\Users\PC\VirtualBox VMs
2021-03-05 15:47 - 2021-01-24 19:31 - 000000000 ____D C:\Users\PC\Desktop\Distanční výuka
2021-03-05 15:31 - 2020-09-27 06:50 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-03-05 08:42 - 2021-01-24 19:31 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Unity
2021-03-05 07:09 - 2020-09-27 08:53 - 000003584 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-05 07:09 - 2020-09-27 08:53 - 000003460 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-05 07:02 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-04 19:10 - 2021-01-26 15:22 - 000000000 ____D C:\Users\PC\AppData\Roaming\obs-studio
2021-03-04 14:11 - 2021-01-25 10:06 - 000000000 ____D C:\Users\PC\AppData\Local\.IdentityService
2021-03-04 11:28 - 2021-01-25 11:15 - 000000000 ____D C:\Users\PC\Documents\Zoom
2021-03-03 13:14 - 2021-01-27 08:35 - 000000000 ____D C:\Users\PC\AppData\Local\NVIDIA
2021-03-02 14:49 - 2021-01-24 19:31 - 000000000 ____D C:\Users\PC\AppData\Roaming\Unity
2021-03-02 11:52 - 2021-01-28 09:59 - 000000000 ____D C:\Users\PC\AppData\Local\CrashDumps
2021-03-01 16:36 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2021-03-01 16:35 - 2019-12-07 15:44 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-03-01 16:35 - 2019-12-07 15:44 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-03-01 16:35 - 2019-12-07 15:41 - 000000000 ____D C:\Windows\SysWOW64\WCN
2021-03-01 16:35 - 2019-12-07 15:41 - 000000000 ____D C:\Windows\system32\WCN
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-03-01 16:35 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2021-03-01 16:34 - 2021-01-22 15:56 - 000000000 ____D C:\Users\PC\AppData\Local\Packages
2021-03-01 16:34 - 2019-12-07 15:43 - 000000000 ____D C:\Windows\OCR
2021-03-01 15:12 - 2021-01-29 11:56 - 000000000 ____D C:\Users\PC\AppData\Roaming\audacity
2021-02-28 16:51 - 2021-01-25 10:22 - 000000000 ____D C:\Users\PC\AppData\Local\D3DSCache
2021-02-28 16:48 - 2021-01-22 15:52 - 000000000 ____D C:\Windows\Panther
2021-02-27 18:08 - 2021-01-25 07:30 - 000000000 ____D C:\Users\PC\Desktop\Filmy
2021-02-27 17:45 - 2020-09-27 06:50 - 000266576 _____ C:\Windows\system32\FNTCACHE.DAT
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2021-02-27 17:10 - 2021-01-24 19:06 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-27 17:08 - 2020-09-27 08:53 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-27 17:07 - 2020-09-27 08:51 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-02-17 09:17 - 2021-01-22 10:31 - 000000000 ____D C:\Users\PC\Desktop\adventure
2021-02-13 08:57 - 2021-01-25 10:03 - 000001795 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019.lnk
2021-02-13 07:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF
2021-02-10 16:17 - 2021-01-24 19:10 - 000000000 ____D C:\Windows\system32\MRT
2021-02-10 16:16 - 2021-01-24 19:10 - 130141752 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-02-06 12:08 - 2021-01-30 11:02 - 000000000 ____D C:\Users\PC\Desktop\Hudba
2021-02-06 11:56 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Keywords
2021-02-06 11:56 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Keywords
2021-02-06 11:56 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2021-02-05 07:52 - 2021-01-26 12:46 - 000000000 ____D C:\Users\PC\Documents\Zvukové záznamy
2021-02-04 09:33 - 2021-01-24 19:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2020.2.2f1 (64-bit)
2021-02-04 09:30 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared

==================== Files in the root of some directories ========

2021-01-29 08:16 - 2021-01-29 08:16 - 000000016 _____ () C:\Users\PC\AppData\Roaming\obs-virtualcam.txt
2021-02-19 16:58 - 2021-02-19 16:58 - 000020451 _____ () C:\Users\PC\AppData\Local\recently-used.xbel
2021-02-04 13:06 - 2021-02-18 10:44 - 000007601 _____ () C:\Users\PC\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Předem díky

Re: Windows Update

Napsal: 06 bře 2021 11:19
od Rudy
Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Windows Update

Napsal: 06 bře 2021 11:25
od czech 08
Našlo mi to: "PUP.Optional.VLCPLUSPLAYER.DE" a k tomu dvě položky, mám je dát do karantény?

Re: Windows Update

Napsal: 06 bře 2021 12:01
od czech 08
Malwarebytes log:

# -------------------------------
# Malwarebytes AdwCleaner 8.0.9.1
# -------------------------------
# Build: 01-20-2021
# Database: 2021-03-03.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-06-2021
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 2
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\Software\Classes\TypeLib\{DF2BBE39-40A8-433B-A279-073F48DA94B6}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{DF2BBE39-40A8-433B-A279-073F48DA94B6}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1406 octets] - [12/02/2021 18:05:37]
AdwCleaner[C00].txt - [1596 octets] - [12/02/2021 18:09:10]
AdwCleaner[S01].txt - [1707 octets] - [06/03/2021 11:22:55]
AdwCleaner[S02].txt - [1768 octets] - [06/03/2021 12:00:37]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########

Re: Windows Update

Napsal: 06 bře 2021 12:05
od czech 08
Všiml jsem si jedné aplikace v pozadí: "StopUpdates 10 Service (32 bit)". Umístění: "C:\Windows\F1VPIJD6"

Re: Windows Update

Napsal: 06 bře 2021 14:47
od Rudy
Dejte nové logy FRST+Addition.

Re: Windows Update

Napsal: 06 bře 2021 14:58
od czech 08
FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-02-2021
Ran by PC (administrator) on DESKTOP-VNNSM0S (ATComputers CZC) (06-03-2021 14:56:13)
Running from C:\Users\PC\Desktop
Loaded Profiles: PC
Platform: Windows 10 Home Version 20H2 19042.844 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <24>
(Greatis Software LLC -> Greatis Software, LLC) C:\Windows\F1VPIJD6\SU10Guard.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2102.3-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Wondershare Technology Co.,Ltd -> Wondershare) C:\ProgramData\Wondershare\Service\InstallAssistService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\Policies\Explorer: [NoSecurityTab] 1
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HPLJ1020LM: C:\Windows\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\88.0.4324.190\Installer\chrmstp.exe [2021-02-27] (Google LLC -> Google LLC)
IFEO\dismHost.exe: [Debugger] *
IFEO\EOSNOTIFY.EXE: [Debugger] *
IFEO\InstallAgent.exe: [Debugger] *
IFEO\MusNotification.exe: [Debugger] *
IFEO\MUSNOTIFICATIONUX.EXE: [Debugger] *
IFEO\remsh.exe: [Debugger] *
IFEO\SIHClient.exe: [Debugger] *
IFEO\UpdateAssistant.exe: [Debugger] *
IFEO\UPFC.EXE: [Debugger] *
IFEO\UsoClient.exe: [Debugger] *
IFEO\WaaSMedic.exe: [Debugger] *
IFEO\WaasMedicAgent.exe: [Debugger] *
IFEO\Windows10Upgrade.exe: [Debugger] *
IFEO\WINDOWS10UPGRADERAPP.EXE: [Debugger] *

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {05C7F2FB-A664-4270-804C-A9EA3EA75E82} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0DB66CE3-6FDC-44A8-8B82-A42E4C6F0847} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {72DF168F-C3D9-4B53-958E-2C5A0AC464FE} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\program files (x86)\microsoft visual studio\installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [64936 2021-01-25] (Microsoft Corporation -> Microsoft)
Task: {72FD744D-2D0C-4772-9587-E50DFDA28E3D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AADDFD4F-EBA0-472A-85F3-3120A8C81380} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-321179341-2139502707-572524282-500 => C:\Users\PC\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {C22E2733-4F8F-4C14-BC1F-63EB53D6B01C} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754104 2021-01-07] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {D51B55CD-FD32-45C3-B42F-745D0FEFFDD2} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {E8FDB956-1576-4A06-A530-6F5BDDDF2BDA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MpCmdRun.exe [566376 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F48D2DB3-D10D-40BF-B360-8321F70115DD} - System32\Tasks\Microsoft\Windows\Google\GoogleUpdateTaskMachineIS => C:\Windows\SysWOW64\XPSViewer\TasksG\G-1-10-52\TG_1.3.54.41.exe (Access Denied) <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Intel PTT EK Recertification.job => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.38 213.46.172.39
Tcpip\..\Interfaces\{03ed72bc-7c71-4e7f-9275-79a541e551fb}: [DhcpNameServer] 213.46.172.38 213.46.172.39

Edge:
=======
Edge Profile: C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-06]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [No File]
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [No File]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2021-03-06]
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://meet.google.com; hxxps://web.whatsapp.com; hxxps://www.instagram.com; hxxps://www.youtube.com
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-24]
CHR Extension: (Just Black) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2021-03-01]
CHR Extension: (Dokumenty) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-24]
CHR Extension: (Disk Google) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-24]
CHR Extension: (YouTube) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-24]
CHR Extension: (Smart Auto Reload) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmojnplfenlnmkmgnkmkomnnfnklkkbj [2021-02-27]
CHR Extension: (Tabulky) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-24]
CHR Extension: (HTTPS Everywhere) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2021-02-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-03]
CHR Extension: (Adblock plus best adblock plus) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbbmlecgjpijkeelnebilpekpnkaoool [2021-03-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-24]
CHR Extension: (Chrome Media Router) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-24]
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\System Profile [2021-02-28]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 SU10Guard; C:\Windows\F1VPIJD6\SU10Guard.exe [72776 2020-05-30] (Greatis Software LLC -> Greatis Software, LLC)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\NisSrv.exe [2483624 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2102.3-0\MsMpEng.exe [128392 2021-02-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Wondershare InstallAssist; C:\ProgramData\Wondershare\Service\InstallAssistService.exe [269200 2020-09-27] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-04] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 MpKslffe99e72; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A511007E-F7BC-4B5B-BA98-4A08460D7A67}\MpKslDrv.sys [90360 2021-03-06] (Microsoft Windows -> Microsoft Corporation)
S4 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [239872 2021-01-07] (Oracle Corporation -> Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [174968 2021-01-07] (Oracle Corporation -> Oracle Corporation)
R3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [48136 2021-02-25] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49544 2021-02-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [420088 2021-02-27] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [72952 2021-02-27] (Microsoft Windows -> Microsoft Corporation)
S3 WacHidRouter; \SystemRoot\System32\drivers\wachidrouter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-06 14:53 - 2021-03-06 14:53 - 008463216 _____ (Malwarebytes) C:\Users\PC\Desktop\adwcleaner_8.1.exe
2021-03-06 10:00 - 2021-03-06 10:00 - 000000000 ____D C:\Users\PC\Desktop\FRST-OlderVersion
2021-03-06 09:12 - 2021-03-06 09:12 - 000000000 ____D C:\Users\PC\AppData\Roaming\Macromedia
2021-03-06 09:12 - 2021-03-06 09:12 - 000000000 ____D C:\Users\PC\AppData\Local\Adobe
2021-03-06 09:12 - 2021-03-06 09:12 - 000000000 ____D C:\Program Files (x86)\Bamboo Dock
2021-03-06 08:40 - 2014-08-06 19:15 - 000014136 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\hidkmdf.sys
2021-03-06 08:37 - 2021-03-06 14:16 - 000000000 ____D C:\Windows\F1VPIJD6
2021-03-06 08:29 - 2021-03-06 08:29 - 034372099 _____ C:\Users\PC\Desktop\sketch-9-0-t-0-6.apk
2021-03-06 08:09 - 2021-03-06 08:10 - 000000000 ____D C:\ProgramData\BlueStacks
2021-03-06 08:09 - 2021-03-06 08:09 - 000000000 ____D C:\Program Files\BlueStacks
2021-03-05 07:27 - 2021-03-05 08:42 - 000000000 ____D C:\Users\PC\Desktop\New Unity Problannk
2021-03-04 16:49 - 2021-03-04 16:49 - 000000000 ____D C:\Users\PC\Documents\Pivot Animator
2021-03-04 16:49 - 2021-03-04 16:49 - 000000000 ____D C:\Users\PC\AppData\Local\Pivot Animator
2021-03-04 16:49 - 2021-03-04 16:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pivot Animator
2021-03-04 16:49 - 2021-03-04 16:49 - 000000000 ____D C:\Program Files (x86)\Pivot Animator
2021-03-03 12:36 - 2021-03-04 17:44 - 000000000 ____D C:\Users\PC\Desktop\MY GAME
2021-03-03 08:32 - 2021-03-03 08:32 - 000133731 _____ C:\Users\PC\Downloads\Prezentace 1.pptx
2021-03-02 11:21 - 2021-03-02 11:21 - 000001184 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\exp.lnk
2021-03-01 11:18 - 2021-03-02 12:42 - 000000719 _____ C:\Users\PC\Documents\ClownfishVoiceChanger.ini
2021-03-01 11:18 - 2021-03-01 11:18 - 000000000 ____D C:\Users\PC\Documents\ClownfishSoundTemp
2021-03-01 11:18 - 2021-03-01 11:18 - 000000000 ____D C:\Users\PC\Documents\ClownfishCustomVocoders
2021-03-01 11:17 - 2021-03-01 11:17 - 000000000 ____D C:\Users\PC\Documents\ClownfishCustomSounds
2021-03-01 11:17 - 2021-03-01 11:17 - 000000000 ____D C:\Users\PC\Documents\Clownfish_VST_cfg
2021-03-01 11:17 - 2021-03-01 11:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClownfishVoiceChanger
2021-03-01 11:17 - 2021-03-01 11:17 - 000000000 ____D C:\Program Files (x86)\ClownfishVoiceChanger
2021-03-01 10:10 - 2021-03-05 14:25 - 000000000 ____D C:\ProgramData\Voicemod
2021-03-01 10:10 - 2021-03-01 10:10 - 000000000 ____D C:\Users\PC\AppData\Local\Voicemod
2021-03-01 10:10 - 2021-03-01 10:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod
2021-03-01 10:10 - 2021-03-01 10:10 - 000000000 ____D C:\Program Files\Voicemod Desktop
2021-03-01 10:10 - 2021-02-25 13:08 - 000048136 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\vmdrv.sys
2021-02-28 18:25 - 2021-03-01 15:29 - 000000422 _____ C:\Users\PC\Desktop\Story.bat
2021-02-27 17:37 - 2021-02-27 17:37 - 001314128 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-02-27 17:37 - 2021-02-27 17:37 - 000011002 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-02-27 17:36 - 2021-02-27 17:36 - 001822272 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-02-27 17:36 - 2021-02-27 17:36 - 001394024 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-02-27 17:36 - 2021-02-27 17:36 - 000231248 _____ C:\Windows\system32\containerdevicemanagement.dll
2021-02-27 17:36 - 2021-02-27 17:36 - 000091136 _____ C:\Windows\system32\Drivers\cimfs.sys
2021-02-27 17:23 - 2021-02-27 17:23 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-19 16:58 - 2021-02-19 16:58 - 000020451 _____ C:\Users\PC\AppData\Local\recently-used.xbel
2021-02-17 16:09 - 2021-02-17 16:10 - 000000000 ____D C:\Users\PC\AppData\Roaming\Notepad++
2021-02-17 16:09 - 2021-02-17 16:09 - 000001100 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2021-02-17 16:09 - 2021-02-17 16:09 - 000000000 ____D C:\Program Files (x86)\Notepad++
2021-02-17 13:49 - 2021-02-17 14:41 - 000000000 ____D C:\Users\PC\Documents\Inform
2021-02-17 13:19 - 2021-02-17 13:19 - 000000000 ____D C:\Users\PC\Desktop\Songs
2021-02-16 18:27 - 2021-02-16 18:27 - 000000000 ____D C:\Users\PC\AppData\Local\TADS 3
2021-02-15 16:09 - 2021-02-16 17:54 - 000000000 ____D C:\Users\PC\Desktop\OffScreen - Benedikt Audy
2021-02-15 10:12 - 2021-02-19 16:58 - 000000000 ____D C:\Users\PC\Desktop\fotky
2021-02-15 09:56 - 2021-02-15 09:56 - 006690832 _____ C:\Users\PC\Desktop\DSCN1969.MOV
2021-02-12 19:23 - 2021-02-12 19:23 - 000008301 _____ C:\Users\PC\Desktop\Fixlog.txt
2021-02-12 18:04 - 2021-03-06 12:00 - 000000000 ____D C:\AdwCleaner
2021-02-12 18:04 - 2021-02-12 18:04 - 008457584 _____ (Malwarebytes) C:\Users\PC\Desktop\adwcleaner_8.0.9.1.exe
2021-02-12 17:47 - 2021-03-06 14:56 - 000012927 _____ C:\Users\PC\Desktop\FRST.txt
2021-02-12 17:46 - 2021-03-06 14:56 - 000000000 ____D C:\FRST
2021-02-12 16:51 - 2021-03-06 10:00 - 002301440 _____ (Farbar) C:\Users\PC\Desktop\Last rescue FRST64.exe
2021-02-12 13:09 - 2021-02-12 13:11 - 000000000 ____D C:\Program Files (x86)\ExeScript
2021-02-11 18:43 - 2021-02-11 18:43 - 000000368 ____H C:\Windows\Tasks\Intel PTT EK Recertification.job
2021-02-11 17:32 - 2021-03-01 12:47 - 000001441 _____ C:\Users\PC\Desktop\Antivirus.lnk
2021-02-11 17:18 - 2021-02-11 17:18 - 000000545 _____ C:\Users\PC\Desktop\nice.txt
2021-02-11 17:17 - 2021-02-11 17:25 - 000000096 ____R C:\Windows\system32\computer.vbs
2021-02-11 08:58 - 2021-03-04 08:02 - 000000000 ____D C:\Users\PC\AppData\Local\ElevatedDiagnostics
2021-02-11 08:16 - 2021-02-11 08:59 - 000000000 ____D C:\Users\PC\AppData\Local\AAR
2021-02-10 13:08 - 2021-02-10 13:10 - 594287729 _____ C:\Users\PC\Desktop\Timeline 1.mov
2021-02-10 11:09 - 2021-02-10 11:09 - 000241086 _____ C:\Users\PC\Desktop\A-A-AND YOU FAIL!.mp4
2021-02-10 09:57 - 2021-02-10 09:57 - 000000000 ____D C:\Users\PC\AppData\Roaming\XuanZhi
2021-02-10 09:57 - 2021-02-10 09:57 - 000000000 ____D C:\Users\PC\AppData\Roaming\lddownloader
2021-02-06 11:34 - 2021-02-06 11:34 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-02-06 11:34 - 2021-02-06 11:34 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-02-05 16:06 - 2021-02-05 16:06 - 000000000 ____D C:\Users\PC\AppData\Local\gtk-3.0
2021-02-05 16:02 - 2021-02-05 16:02 - 000000000 ____D C:\Users\PC\AppData\Local\RawTherapee
2021-02-05 16:02 - 2021-02-05 16:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RawTherapee
2021-02-05 16:02 - 2021-02-05 16:02 - 000000000 ____D C:\Program Files\RawTherapee
2021-02-05 15:33 - 2020-04-26 11:36 - 001566720 _____ C:\Users\PC\Desktop\MOV0AE.MOD
2021-02-05 12:28 - 2021-02-19 16:58 - 000000000 ____D C:\Users\PC\AppData\Local\gtk-2.0
2021-02-05 12:06 - 2021-02-19 17:35 - 000000000 ____D C:\Users\PC\AppData\Local\babl-0.1
2021-02-05 12:06 - 2021-02-05 12:06 - 000001304 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.22.lnk
2021-02-05 12:06 - 2021-02-05 12:06 - 000000000 ____D C:\Users\PC\AppData\Roaming\GIMP
2021-02-05 12:06 - 2021-02-05 12:06 - 000000000 ____D C:\Users\PC\AppData\Local\GIMP
2021-02-05 12:06 - 2021-02-05 12:06 - 000000000 ____D C:\Users\PC\AppData\Local\gegl-0.4
2021-02-04 16:34 - 2021-02-04 16:34 - 000000000 ____D C:\Users\PC\AppData\Roaming\com.ribbet.RibbetNative
2021-02-04 13:06 - 2021-02-18 10:44 - 000007601 _____ C:\Users\PC\AppData\Local\Resmon.ResmonCfg
2021-02-04 12:21 - 2021-02-04 12:21 - 000000000 ____D C:\Users\PC\AppData\Roaming\Zoner
2021-02-04 12:21 - 2021-02-04 12:21 - 000000000 ____D C:\Users\PC\AppData\Local\Zoner
2021-02-04 12:20 - 2021-02-05 11:52 - 000000000 ____D C:\ProgramData\Zoner
2021-02-04 09:33 - 2021-02-04 09:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2020.2.3f1 (64-bit)
2021-02-04 09:30 - 2021-02-04 09:30 - 000000000 ____D C:\Program Files\Unity

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-06 14:46 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-06 14:37 - 2020-09-27 06:50 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-03-06 14:23 - 2021-01-24 19:05 - 001693140 _____ C:\Windows\system32\PerfStringBackup.INI
2021-03-06 14:23 - 2019-12-07 15:41 - 000716770 _____ C:\Windows\system32\perfh005.dat
2021-03-06 14:23 - 2019-12-07 15:41 - 000144948 _____ C:\Windows\system32\perfc005.dat
2021-03-06 14:23 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2021-03-06 14:16 - 2021-01-24 19:08 - 000000000 ____D C:\ProgramData\NVIDIA
2021-03-06 14:16 - 2020-09-27 08:51 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-03-06 14:16 - 2020-09-27 06:50 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-06 13:54 - 2021-01-24 19:16 - 000000000 ____D C:\Users\PC\AppData\Roaming\vlc
2021-03-06 12:01 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2021-03-06 11:42 - 2021-01-25 07:30 - 000000000 ____D C:\Users\PC\Desktop\Filmy
2021-03-06 09:54 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2021-03-06 09:51 - 2021-01-22 15:57 - 000000000 ____D C:\Users\PC\AppData\Local\PlaceholderTileLogoFolder
2021-03-06 09:12 - 2021-01-22 15:56 - 000000000 ____D C:\Users\PC
2021-03-06 08:14 - 2021-02-01 15:49 - 000003940 _____ C:\Windows\system32\Tasks\BlueStacksHelper
2021-03-06 08:11 - 2021-02-01 15:43 - 000000000 ____D C:\Users\PC\AppData\Local\BlueStacksSetup
2021-03-06 08:10 - 2021-02-01 15:46 - 000002081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2021-03-06 08:10 - 2021-02-01 15:46 - 000001920 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks.lnk
2021-03-06 08:09 - 2021-01-28 16:11 - 000000000 ____D C:\Users\PC\AppData\Local\Bluestacks
2021-03-06 08:06 - 2021-01-31 09:10 - 000000000 ____D C:\Users\PC\.VirtualBox
2021-03-06 08:02 - 2021-01-28 10:31 - 000000000 ____D C:\ProgramData\VirtualBox
2021-03-05 18:36 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2021-03-05 15:49 - 2021-01-24 19:32 - 000000000 ____D C:\Users\PC\AppData\Roaming\UnityHub
2021-03-05 15:47 - 2021-01-31 09:10 - 000000000 ____D C:\Users\PC\VirtualBox VMs
2021-03-05 15:47 - 2021-01-24 19:31 - 000000000 ____D C:\Users\PC\Desktop\Distanční výuka
2021-03-05 08:42 - 2021-01-24 19:31 - 000000000 ____D C:\Users\PC\AppData\LocalLow\Unity
2021-03-05 07:09 - 2020-09-27 08:53 - 000003584 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-05 07:09 - 2020-09-27 08:53 - 000003460 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-05 07:02 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-04 19:10 - 2021-01-26 15:22 - 000000000 ____D C:\Users\PC\AppData\Roaming\obs-studio
2021-03-04 14:11 - 2021-01-25 10:06 - 000000000 ____D C:\Users\PC\AppData\Local\.IdentityService
2021-03-04 11:28 - 2021-01-25 11:15 - 000000000 ____D C:\Users\PC\Documents\Zoom
2021-03-03 13:14 - 2021-01-27 08:35 - 000000000 ____D C:\Users\PC\AppData\Local\NVIDIA
2021-03-02 14:49 - 2021-01-24 19:31 - 000000000 ____D C:\Users\PC\AppData\Roaming\Unity
2021-03-02 11:52 - 2021-01-28 09:59 - 000000000 ____D C:\Users\PC\AppData\Local\CrashDumps
2021-03-01 16:36 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2021-03-01 16:35 - 2019-12-07 15:44 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-03-01 16:35 - 2019-12-07 15:44 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-03-01 16:35 - 2019-12-07 15:41 - 000000000 ____D C:\Windows\SysWOW64\WCN
2021-03-01 16:35 - 2019-12-07 15:41 - 000000000 ____D C:\Windows\system32\WCN
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-03-01 16:35 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-03-01 16:35 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2021-03-01 16:34 - 2021-01-22 15:56 - 000000000 ____D C:\Users\PC\AppData\Local\Packages
2021-03-01 16:34 - 2019-12-07 15:43 - 000000000 ____D C:\Windows\OCR
2021-03-01 15:12 - 2021-01-29 11:56 - 000000000 ____D C:\Users\PC\AppData\Roaming\audacity
2021-02-28 16:51 - 2021-01-25 10:22 - 000000000 ____D C:\Users\PC\AppData\Local\D3DSCache
2021-02-28 16:48 - 2021-01-22 15:52 - 000000000 ____D C:\Windows\Panther
2021-02-27 17:45 - 2020-09-27 06:50 - 000266576 _____ C:\Windows\system32\FNTCACHE.DAT
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2021-02-27 17:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2021-02-27 17:10 - 2021-01-24 19:06 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-27 17:08 - 2020-09-27 08:53 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-27 17:07 - 2020-09-27 08:51 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-02-17 09:17 - 2021-01-22 10:31 - 000000000 ____D C:\Users\PC\Desktop\adventure
2021-02-13 08:57 - 2021-01-25 10:03 - 000001795 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019.lnk
2021-02-13 07:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\NDF
2021-02-10 16:17 - 2021-01-24 19:10 - 000000000 ____D C:\Windows\system32\MRT
2021-02-10 16:16 - 2021-01-24 19:10 - 130141752 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-02-06 12:08 - 2021-01-30 11:02 - 000000000 ____D C:\Users\PC\Desktop\Hudba
2021-02-06 11:56 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Keywords
2021-02-06 11:56 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Keywords
2021-02-06 11:56 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2021-02-05 07:52 - 2021-01-26 12:46 - 000000000 ____D C:\Users\PC\Documents\Zvukové záznamy
2021-02-04 09:33 - 2021-01-24 19:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 2020.2.2f1 (64-bit)
2021-02-04 09:30 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared

==================== Files in the root of some directories ========

2021-01-29 08:16 - 2021-01-29 08:16 - 000000016 _____ () C:\Users\PC\AppData\Roaming\obs-virtualcam.txt
2021-02-19 16:58 - 2021-02-19 16:58 - 000020451 _____ () C:\Users\PC\AppData\Local\recently-used.xbel
2021-02-04 13:06 - 2021-02-18 10:44 - 000007601 _____ () C:\Users\PC\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================



Adition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-02-2021
Ran by PC (06-03-2021 14:56:58)
Running from C:\Users\PC\Desktop
Windows 10 Home Version 20H2 19042.844 (X64) (2021-01-22 14:54:55)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-321179341-2139502707-572524282-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-321179341-2139502707-572524282-503 - Limited - Disabled)
Guest (S-1-5-21-321179341-2139502707-572524282-501 - Limited - Disabled)
PC (S-1-5-21-321179341-2139502707-572524282-1001 - Administrator - Enabled) => C:\Users\PC
WDAGUtilityAccount (S-1-5-21-321179341-2139502707-572524282-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
Blackmagic RAW Common Components (HKLM\...\{60461BA6-AFA0-4D54-AFE1-54EC717AA7D9}) (Version: 1.8.2 - Blackmagic Design)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.270.0.1053 - BlueStack Systems, Inc.)
Clownfish Voice Changer (HKLM\...\ClownfishVoiceChanger) (Version: - )
DaVinci Resolve (HKLM\...\{47B30418-F683-4F19-BEF9-BA5E490154BF}) (Version: 16.2.8005 - Blackmagic Design)
GIMP 2.10.22 (HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\GIMP-2_is1) (Version: 2.10.22 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 88.0.4324.190 - Google LLC)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.81 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.141.63 - )
Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.8.3077.1211 - Microsoft Corporation)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.9.3 - Notepad++ Team)
NVIDIA Ovladač HD audia 1.3.38.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.35 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 456.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.71 - NVIDIA Corporation)
NVIDIA USBC Driver 1.45.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.45.831.832 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.1.1 - OBS Project)
Ovládací panel NVIDIA 456.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 456.71 - NVIDIA Corporation) Hidden
Pivot Animator version 4.2.8 (HKLM-x32\...\Pivot Animator_is1) (Version: 4.2.8 - Motus Software Ltd)
RawTherapee verze 5.8 (HKLM\...\RawTherapee5.8_is1) (Version: 5.8 - rawtherapee.com)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Unity (HKLM-x32\...\Unity) (Version: 2020.2.3f1 - Unity Technologies ApS)
Unity Hub 2.4.2 (HKLM\...\{Unity Technologies - Hub}) (Version: 2.4.2 - Unity Technologies Inc.)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
vcpp_crt.redist.clickonce (HKLM-x32\...\{7C6166AB-7B4D-47A1-840D-723D2B6A1DAC}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Visual Studio Community 2019 (HKLM-x32\...\9601d9a3) (Version: 16.8.31005.135 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 2.7.0.6 - Voicemod S.L.)
VS Script Debugging Common (HKLM\...\{A4272808-82F5-410F-A5F9-1BF6F63F6B9A}) (Version: 16.0.102.0 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{DEB11EB7-B61A-4883-8CB0-99013A4873AB}) (Version: 16.8.30608 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{72E86320-AFF2-44F8-9C8B-0BD51E5B14DE}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{AD0C92A4-1514-4BC1-A723-A272A8343924}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{E9439DB7-BF01-4820-8CB1-80957150AB86}) (Version: 16.8.30530 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{8990F1B6-F880-4E73-A2D9-7A611F4C38A1}) (Version: 16.8.30530 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{3C4B2ED3-2296-4203-A420-AC042BE8484D}) (Version: 16.8.30509 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{27B16914-BC5D-4018-8074-071262A27F6D}) (Version: 16.2.28917 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{08AF5DA9-F3BD-4B59-8D99-C47CC4D53CAD}) (Version: 16.8.30530 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{4A143624-67D1-42E7-BADA-E3574DB7157E}) (Version: 16.8.30530 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{E208E682-50EE-4F2F-9860-C91B906B8A03}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
vs_vswebprotocolselectormsi (HKLM-x32\...\{BEEB2E56-91DB-4AFB-AC88-8E98B18DD889}) (Version: 16.8.30509 - Microsoft Corporation) Hidden
vs_vswebprotocolselectormsires (HKLM-x32\...\{1E54D106-5773-4D9E-AEDF-AC5AFEAF1395}) (Version: 16.8.30509 - Microsoft Corporation) Hidden
Zoom (HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\ZoomUMX) (Version: 5.4.9 (59931.0110) - Zoom Video Communications, Inc.)

Packages:
=========
7-Zip File Manager (Unofficial) -> C:\Program Files\WindowsApps\HaukeGtze.7-ZipFileManagerUnofficial_1.1900.3.0_x64__6bk20wvc8rfx2 [2021-01-28] (Hauke Hasselberg)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-02-03] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-03-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-03-01] (Microsoft Corporation) [MS Ad]
Mountain Dwellings -> C:\Program Files\WindowsApps\Microsoft.MountainDwellings_1.0.0.0_neutral__8wekyb3d8bbwe [2021-03-01] (Microsoft Corporation)
Thug Life Creator -> C:\Program Files\WindowsApps\6291Lachlan.ThugLifeCreator_1.1.4.0_x64__kqhy9awb13v5j [2021-03-01] (Lachlan) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-321179341-2139502707-572524282-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2021-02-14] (Notepad++ -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2020-10-01] (NVIDIA Corporation -> NVIDIA Corporation)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-321179341-2139502707-572524282-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 213.46.172.38 - 213.46.172.39
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\StartupApproved\StartupFolder: => "Rainmeter.lnk"
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{6F83D56F-E9D0-4F6A-8F1C-183856A0645C}] => (Allow) C:\Users\PC\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{4F8BE6A7-C9E3-4E9C-B326-104306CEC99A}] => (Allow) C:\Program Files\Unity Hub\Unity Hub.exe (Unity Technologies SF -> Unity Technologies Inc.)
FirewallRules: [TCP Query User{FE29EDBD-45BA-44D9-B7B4-8723141687AD}C:\program files\unity hub\unity hub.exe] => (Allow) C:\program files\unity hub\unity hub.exe (Unity Technologies SF -> Unity Technologies Inc.)
FirewallRules: [UDP Query User{EE5B2756-C55B-443A-A7ED-F2FEA6A2E6ED}C:\program files\unity hub\unity hub.exe] => (Allow) C:\program files\unity hub\unity hub.exe (Unity Technologies SF -> Unity Technologies Inc.)
FirewallRules: [{264308A3-862C-4EAB-B219-5C7410C99038}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{D9619BF0-4C69-49E9-A8EE-41EBA17C1702}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{74DB4444-F4B1-45EF-AA91-CCF1D58AFA57}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{B2A1A579-252D-41D5-9A93-35AD2308B1D3}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{DCF4FA70-80B1-417C-8A51-858DA3EBB029}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{3DFE2E81-843E-400C-A50B-27FCEF03680C}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [TCP Query User{13DCFA05-C019-47B3-A8D4-E549308002BE}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{EF6C534C-354C-412B-AB61-A3A6F0141773}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{577950EC-5496-4217-8679-53A2C35D908B}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{DF75C06A-3198-4AD2-887C-B9CE3E09569D}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{0D00CF72-3A75-472E-890A-5A46CE445BC5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5A69C4EF-C897-42B5-9117-74F2F4F3B672}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{307A0060-69FA-4203-A3ED-F46BC66EC9DA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E4486EB4-763B-428E-911B-229434FE193B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D6B2DDEC-CDAA-47E3-A4B1-76F4F796F4CE}] => (Allow) C:\Program Files\Unity\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [{9164A233-E972-4DD5-87A4-2E58C35BE0A3}] => (Block) C:\Program Files\Unity\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [TCP Query User{7DEC9534-C4D1-470E-9CF5-0F0D4D68469A}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [UDP Query User{41745206-C875-4416-B4DA-3A8C7BCB604D}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [{8C08D409-8591-4046-BFD0-45DFE9EB1966}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{2838F168-BD5F-4EEF-B827-BC02FBA1F9BA}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)

==================== Restore Points =========================

06-03-2021 14:17:39 Removed Oracle VM VirtualBox 6.1.18

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (03/05/2021 03:49:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe, verze: 10.0.19041.546, časové razítko: 0x058e175a
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.804, časové razítko: 0x0e9c5eae
Kód výjimky: 0xc0000602
Posun chyby: 0x000000000010bd5c
ID chybujícího procesu: 0x1408
Čas spuštění chybující aplikace: 0x01d7118518d8bea7
Cesta k chybující aplikaci: C:\Windows\System32\svchost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 4a0fd4fc-7f34-47a2-aeb6-490b7c730b4b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (03/04/2021 07:11:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe, verze: 10.0.19041.546, časové razítko: 0x058e175a
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.804, časové razítko: 0x0e9c5eae
Kód výjimky: 0xc0000602
Posun chyby: 0x000000000010bd5c
ID chybujícího procesu: 0x20a8
Čas spuštění chybující aplikace: 0x01d710c359c3bf00
Cesta k chybující aplikaci: C:\Windows\System32\svchost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 86990270-18d3-44d8-929f-a910212271d1
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (03/02/2021 12:49:31 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na jedno tera (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (03/02/2021 11:52:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: YourPhone.exe, verze: 1.21011.127.0, časové razítko: 0x60148b42
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.804, časové razítko: 0x0e9c5eae
Kód výjimky: 0x00001007
Posun chyby: 0x000000000010bd5c
ID chybujícího procesu: 0x2930
Čas spuštění chybující aplikace: 0x01d70f2f08850119
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21011.127.0_x64__8wekyb3d8bbwe\YourPhone.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: d3f5e048-7e6d-4ab8-8145-3bf417669777
Úplný název chybujícího balíčku: Microsoft.YourPhone_1.21011.127.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App

Error: (03/01/2021 04:06:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe, verze: 10.0.19041.546, časové razítko: 0x058e175a
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.804, časové razítko: 0x0e9c5eae
Kód výjimky: 0xc0000602
Posun chyby: 0x000000000010bd5c
ID chybujícího procesu: 0xf30
Čas spuštění chybující aplikace: 0x01d70e6179eb5db0
Cesta k chybující aplikaci: C:\Windows\System32\svchost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: d594c0ed-9f90-41e3-9bc8-e8fae7dc7301
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (03/01/2021 03:39:24 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\3D Rad\dll3impact.dll se nezdařilo. Chyba v souboru manifestu nebo zásady C:\3D Rad\Microsoft.VC80.MFC\Microsoft.VC80.MFC.MANIFEST na řádku 4.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0".
Definice je Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (03/01/2021 03:38:57 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\3D Rad\dll3impact.dll se nezdařilo. Chyba v souboru manifestu nebo zásady C:\3D Rad\Microsoft.VC80.MFC\Microsoft.VC80.MFC.MANIFEST na řádku 4.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0".
Definice je Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (03/01/2021 03:38:34 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Generování kontextu aktivace pro C:\3D Rad\dll3impact.dll se nezdařilo. Chyba v souboru manifestu nebo zásady C:\3D Rad\Microsoft.VC80.MFC\Microsoft.VC80.MFC.MANIFEST na řádku 4.
Identita komponenty nalezená v manifestu nesouhlasí s identitou požadované komponenty.
Odkaz je Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0".
Definice je Microsoft.VC80.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053".
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.


System errors:
=============
Error: (03/06/2021 02:16:50 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (14:13:18, ‎06.‎03.‎2021) bylo neočekávané.

Error: (03/06/2021 02:16:43 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684A fatal error occurred processing the restoration data.

Error: (03/06/2021 12:00:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (03/06/2021 12:00:48 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Dynamic Application Loader Host Interface Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (03/06/2021 12:00:48 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Wondershare Install Assist Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (03/06/2021 08:37:51 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba StopUpdates10 Guard je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (03/04/2021 07:11:27 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-VNNSM0S)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.

Error: (03/04/2021 07:11:27 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-VNNSM0S)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
================
Date: 2021-03-06 12:21:53
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {3A02C82A-6D87-441D-A13D-C57C2DC8695A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-03-06 11:59:59
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8D7D81F3-13F3-46B3-938F-AB2F77E6942E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-03-06 11:38:02
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {7947F264-A51F-4908-8F63-C594E68E75CF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-03-06 11:19:14
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {046DD420-B7F4-4D9B-9FF2-CA70EADED971}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-03-06 10:45:37
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {44A73408-89D0-4D27-820B-EB855B4FDCB0}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

==================== Memory info ===========================

BIOS: American Megatrends Inc. 2002 06/18/2020
Motherboard: ASUSTeK COMPUTER INC. ROG STRIX B360-G GAMING
Processor: Intel(R) Core(TM) i5-9400F CPU @ 2.90GHz
Percentage of memory in use: 27%
Total physical RAM: 16301.14 MB
Available physical RAM: 11763.89 MB
Total Virtual: 18733.14 MB
Available Virtual: 12325.3 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.28 GB) (Free:87.38 GB) NTFS
Drive d: (jedno tera) (Fixed) (Total:931.51 GB) (Free:927.99 GB) NTFS

\\?\Volume{4db49cc0-02dc-4aa3-b614-f2947070d456}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS
\\?\Volume{99ea9264-2460-4ac8-8899-e953b4c89a6c}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: F5D14A7A)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Windows Update

Napsal: 06 bře 2021 16:11
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\Policies\Explorer: [NoSecurityTab] 1
IFEO\dismHost.exe: [Debugger] *
IFEO\EOSNOTIFY.EXE: [Debugger] *
IFEO\InstallAgent.exe: [Debugger] *
IFEO\MusNotification.exe: [Debugger] *
IFEO\MUSNOTIFICATIONUX.EXE: [Debugger] *
IFEO\remsh.exe: [Debugger] *
IFEO\SIHClient.exe: [Debugger] *
IFEO\UpdateAssistant.exe: [Debugger] *
IFEO\UPFC.EXE: [Debugger] *
IFEO\UsoClient.exe: [Debugger] *
IFEO\WaaSMedic.exe: [Debugger] *
IFEO\WaasMedicAgent.exe: [Debugger] *
IFEO\Windows10Upgrade.exe: [Debugger] *
IFEO\WINDOWS10UPGRADERAPP.EXE: [Debugger] *
C:\Windows\F1VPIJD6
C:\DumpStack.log.tmp

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Windows Update

Napsal: 06 bře 2021 16:19
od czech 08
Fix result of Farbar Recovery Scan Tool (x64) Version: 28-02-2021
Ran by PC (06-03-2021 16:17:54) Run:2
Running from C:\Users\PC\Desktop
Loaded Profiles: PC
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\...\Policies\Explorer: [NoWindowsUpdate] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-321179341-2139502707-572524282-1001\...\Policies\Explorer: [NoSecurityTab] 1
IFEO\dismHost.exe: [Debugger] *
IFEO\EOSNOTIFY.EXE: [Debugger] *
IFEO\InstallAgent.exe: [Debugger] *
IFEO\MusNotification.exe: [Debugger] *
IFEO\MUSNOTIFICATIONUX.EXE: [Debugger] *
IFEO\remsh.exe: [Debugger] *
IFEO\SIHClient.exe: [Debugger] *
IFEO\UpdateAssistant.exe: [Debugger] *
IFEO\UPFC.EXE: [Debugger] *
IFEO\UsoClient.exe: [Debugger] *
IFEO\WaaSMedic.exe: [Debugger] *
IFEO\WaasMedicAgent.exe: [Debugger] *
IFEO\Windows10Upgrade.exe: [Debugger] *
IFEO\WINDOWS10UPGRADERAPP.EXE: [Debugger] *
C:\Windows\F1VPIJD6
C:\DumpStack.log.tmp

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoWindowsUpdate" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
"HKU\S-1-5-21-321179341-2139502707-572524282-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoSecurityTab" => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\dismHost.exe => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\EOSNOTIFY.EXE => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\InstallAgent.exe => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\MusNotification.exe => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\MUSNOTIFICATIONUX.EXE => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\remsh.exe => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\SIHClient.exe => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\UpdateAssistant.exe => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\UPFC.EXE => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\UsoClient.exe => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\WaaSMedic.exe => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\WaasMedicAgent.exe => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\Windows10Upgrade.exe => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\WINDOWS10UPGRADERAPP.EXE => removed successfully
C:\Windows\F1VPIJD6 => moved successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.

=========== EmptyTemp: ==========

BITS transfer queue => 8937472 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 98025727 B
Java, Flash, Steam htmlcache => 343 B
Windows/system/drivers => 199118 B
Edge => 0 B
Chrome => 873316321 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 65104 B

Re: Windows Update

Napsal: 06 bře 2021 16:29
od Rudy
Smazáno. Nastala nějaká změna?

Re: Windows Update

Napsal: 06 bře 2021 16:30
od czech 08
Zatím, nic. Windows Update píše to stejné

Re: Windows Update

Napsal: 06 bře 2021 16:34
od Rudy
Vyzkoušejte WuFix: https://www.thewindowsclub.com/repair-f ... wu-utility . Problémy s winupdate jsou někdy složité a někdy musí být i systém přeinstalován.

Re: Windows Update

Napsal: 06 bře 2021 16:38
od czech 08
Hotovo, pořád se ale nic nezměnilo, restartuji počítač.

Re: Windows Update

Napsal: 06 bře 2021 16:41
od czech 08
Pořád stejná hláška

Re: Windows Update

Napsal: 06 bře 2021 16:53
od Rudy
Zkuste obnovu systému k datu, kdy korektně fungoval.