VIRY.CZ

Dobrý den. Již dlouhou dobu jsem u vás nebyl. V poslední době mám někdy, ne zcela pravidelně problém s kopírováním, přesouváním a stahováním souborů.Testoval jsem paměť a zdála se v poho. Občas se mě sami uzavřou některá okna a aplikace. Někdy se mě po kliknutí na nějaký program spustí úplně jiná aplikace, např. prohlížeč obrázků.Prosím tedy o kontrolu logu. Děkuji předem za ochotu a váš čas.

Zde log z FRST:


==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <6>
(C:\Program Files (x86)\TechSmith\Snagit 12\Snagit32.exe ->) (TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 12\SnagitEditor.exe
(C:\Program Files (x86)\TechSmith\Snagit 12\Snagit32.exe ->) (TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 12\SnagPriv.exe
(C:\Program Files (x86)\TechSmith\Snagit 12\Snagit32.exe ->) (TechSmith Corporation) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 12\TscHelp.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(C:\Program Files\Wondershare\Filmora9\Wondershare Filmora9.exe ->) (Wondershare Technology Co.,Ltd -> ) C:\Program Files\Wondershare\Filmora9\GaThread.exe
(C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hpqtra08.exe ->) (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(C:\Users\hp\AppData\Roaming\uTorrent\uTorrent.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\hp\AppData\Roaming\uTorrent\updates\3.5.5_46206\utorrentie.exe <2>
(explorer.exe ->) (BitTorrent Inc -> BitTorrent Inc.) C:\Users\hp\AppData\Roaming\uTorrent\uTorrent.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <13>
(explorer.exe ->) (Hewlett Packard -> Hewlett-Packard Co.) C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hpqtra08.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE
(explorer.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22072.207.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(explorer.exe ->) (Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe <3>
(explorer.exe ->) (MPC-HC Team) [File not signed] C:\Program Files\MPC-HC\mpc-hc64.exe
(explorer.exe ->) (TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 12\Snagit32.exe
(explorer.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files\Wondershare\Filmora9\Wondershare Filmora9.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <31>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdc.inf_amd64_c55d1bd58ad81cde\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(services.exe ->) (Shanghai Microvirt Software Technology Co., Ltd. -> ) C:\Program Files\Microvirt\MEmu\MemuService.exe
(services.exe ->) (TechSmith Corporation) [File not signed] C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe
(services.exe ->) (voidtools -> voidtools) C:\Program Files\Everything\Everything.exe
(svchost.exe ->) (Hewlett Packard -> Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(svchost.exe ->) (Hewlett Packard -> Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.22031.10091.0_x64__8wekyb3d8bbwe\Music.UI.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [212192 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [2260560 2021-01-25] (voidtools -> voidtools)
HKLM\...\Run: [CTFMON] => C:\Windows\System32\ctfmon.exe [11264 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [455872 2020-02-09] (Power Software Limited -> Power Software Ltd)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91016584 2021-01-15] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\Run: [STUISpeedLauncher] => "C:\Program Files\Samsung\Stylish UI Pack\TouchBasedUI.exe" -speedlauncher -minVer:6.6.58.0 (No File)
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\Run: [com.squirrel.WhatsApp.WhatsApp] => C:\Users\hp\AppData\Local\WhatsApp\Update.exe [2253568 2022-04-16] (WhatsApp, Inc -> )
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\Run: [uTorrent] => C:\Users\hp\AppData\Roaming\uTorrent\uTorrent.exe [2103848 2022-05-10] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\MountPoints2: {cde0f06a-84dc-11ec-9ff5-f49634e5fc94} - "F:\Lenovo_Suite.exe"
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\MountPoints2: {cde0f327-84dc-11ec-9ff5-f49634e5fc94} - "F:\HiSuiteDownLoader.exe"
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\us015PC: C:\Windows\System32\spool\prtprocs\x64\us015pc.dll [52088 2019-08-26] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\WINDOWS\system32\hpzllw71.dll [53248 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\us015 Langmon: C:\WINDOWS\system32\us015lm.dll [31096 2019-08-26] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\105.0.5195.127\Installer\chrmstp.exe [2022-10-01] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2021-03-14]
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snagit 12.lnk [2022-04-10]
ShortcutTarget: Snagit 12.lnk -> C:\Program Files (x86)\TechSmith\Snagit 12\Snagit32.exe (TechSmith Corporation -> TechSmith Corporation)
Startup: C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hpqtra08.exe [2011-04-29] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0085FECC-DF15-4CB7-93FF-44836DBD7D8A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-09-12] (Piriform Software Ltd -> Piriform)
Task: {01D98A91-CAA2-48F5-A65D-6D39C938B284} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {02D5119B-1D18-42FB-951C-9A2A278704C4} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [44536 2022-10-09] (HP Inc. -> HP Inc.)
Task: {03AF7E9C-A656-4AB5-8E30-076C02D64D44} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-01-16] (Google Inc -> Google LLC)
Task: {1ED5A862-8311-4D38-B9C3-A767A1B973CD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-01-16] (Google Inc -> Google LLC)
Task: {23D7B859-94E0-47A9-9201-A59965199F04} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4946144 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
Task: {24905BDF-E07F-41F8-8D5C-FE72AB9D945F} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {337F065F-99B1-411D-A29D-04B5F1D58B58} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\hp\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [19989464 2022-01-14] (ESET, spol. s r.o. -> ESET)
Task: {3B424537-0CBA-46F4-B799-25EB5C5F0DCA} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3C97C34C-D8FB-42EA-BD32-A6229B1EDF91} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software)
Task: {3EB5A1A4-0457-4391-8D2B-DF73F5D19422} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124336 2021-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {4ACEA3D5-6891-4A37-B49B-5CEC392DCC75} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [44536 2022-10-09] (HP Inc. -> HP Inc.)
Task: {5E62B1AA-678F-46F0-B495-89DB4FC22211} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {5E67FAFD-C1FB-42AD-9AEF-EB45834EBB0A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124336 2021-05-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D83A60E-ED93-44EB-BCA2-1CBB7EFD3809} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {83F8306B-55C3-46BB-883B-6779486C0116} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102816 2020-09-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {8A2D1027-6CC6-4ADD-BAAA-B9CBFCB6CEB6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {8C60B873-D08F-400F-9825-9A503A19C8FD} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147288 2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {8D712B46-7153-449B-8994-773FC100BE7C} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "8e21ed0b-8cb6-4697-bc1d-abc0775723fd" --version "6.04.10044" --silent
Task: {A323DB2C-FE4F-46D5-8976-A789BCD1898E} - System32\Tasks\CCleanerSkipUAC - hp => C:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A3786128-8402-4497-991F-AE6AE58F0D3D} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {A987CBFC-7C9A-4B77-8C6A-D5869DC9E8DA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5275568 2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {AAC35BD5-0672-4204-974B-3FB585CED1AF} - System32\Tasks\TechSmith Updater => C:\Program Files (x86)\Common Files\TechSmith Shared\Updater\TSCUpdClt.exe [56704 2014-07-31] (TechSmith Corporation -> TechSmith Corporation)
Task: {AD82BFDF-4D9E-4A3C-B91F-955F10EF9C9A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B2DA6797-872C-4CEE-935B-CACDA35657D8} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [147288 2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {B5621BFB-5A7D-433A-A6EB-3045FFB3EA63} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5275568 2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {D0B28E73-D4F6-47EF-ACCA-1147356232E1} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D20CB504-44ED-4C95-BCB0-3141F6755746} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {F64ADF6F-FCAF-45C5-AADA-E5514A421B63} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\hp\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [19989464 2022-01-14] (ESET, spol. s r.o. -> ESET)
Task: {F939829F-E572-46C3-867F-3A6839CA1DBA} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\WebReg HP Deskjet F2100 series.job => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwrg.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{1e59fc22-ee49-477f-b6dc-6df8310eeb61}: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{3fb4a9ab-3432-45f0-ad4b-3ec89180f33e}: [DhcpNameServer] 31.30.90.11 31.30.90.12

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\hp\AppData\Local\Microsoft\Edge\User Data\Default [2022-08-29]

FireFox:
========
FF DefaultProfile: k904rfea.default
FF ProfilePath: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\k904rfea.default [2022-05-09]
FF Homepage: Mozilla\Firefox\Profiles\k904rfea.default -> about:home
FF NewTab: Mozilla\Firefox\Profiles\k904rfea.default -> about:newtab
FF ProfilePath: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release [2022-10-11]
FF DownloadDir: E:\Stažené soubory
FF Homepage: Mozilla\Firefox\Profiles\icbt817x.default-release -> www.seznam.cz
FF NewTab: Mozilla\Firefox\Profiles\icbt817x.default-release -> hxxps://securesearch.org/homepage?hp=2&pId=BT170902&iDate=2022-05-08 07:21:08&iid=1f144dc4-68bd-43e3-949c-532a95b786c7&bName=
FF Session Restore: Mozilla\Firefox\Profiles\icbt817x.default-release -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\icbt817x.default-release -> hxxps://web.whatsapp.com; hxxps://www.alirecenze.cz; hxxps://cs.xhamsterlive.com; hxxps://tr.aliexpress.com; hxxps://www.instagram.com; hxxps://twitter.com
FF Extension: (Google Container) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\@contain-google.xpi [2021-12-09]
FF Extension: (Bookmarks Organizer) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\bookmarksorganizer@agenedia.com.xpi [2022-01-16]
FF Extension: (Disable HTML5 Autoplay) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\disable-html5-autoplay@afnankhan.xpi [2021-03-11]
FF Extension: (Firefox Color) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\FirefoxColor@mozilla.com.xpi [2021-06-02]
FF Extension: (AdBlocker for YouTube™) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2022-06-29]
FF Extension: (Dark Background and Light Text) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\jid1-QoFqdK4qzUfGWQ@jetpack.xpi [2021-05-22]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2022-08-26]
FF Extension: (Grammar & Spell Checker — LanguageTool) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\languagetool-webextension@languagetool.org.xpi [2022-08-09]
FF Extension: (S3.Translator) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\s3@translator.xpi [2022-09-08]
FF Extension: (Tab Session Manager) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\Tab-Session-Manager@sienori.xpi [2022-09-30]
FF Extension: (TinEye Reverse Image Search) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\tineye@ideeinc.com.xpi [2021-10-29]
FF Extension: (WebP\/Avif image converter) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\webpconverter@hilberteikelboom.nl.xpi [2022-01-22]
FF Extension: (Block Site) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\{07046613-1993-4b66-9dd1-9dd1ce581cb7}.xpi [2021-05-22]
FF Extension: (Rizikové weby) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\{46785cc3-03e4-4591-8312-74782cd9ae6f}.xpi [2022-01-12]
FF Extension: (Aliexpress SuperStar česky, Historie cen a koruny) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\{49756ccc-44ea-4661-bc1f-2baba64cca2f}.xpi [2022-10-06]
FF Extension: (CSFD Magnets) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\{5dcbc3c3-318a-4f86-9ae4-9bb4de536c7a}.xpi [2022-09-30]
FF Extension: (Fenrir Red Perfection) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\{8f36e4f9-12b6-48d1-ad49-317c0b917478}.xpi [2021-10-14]
FF Extension: (Flash and Video Download) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\{adeadebb-fedc-4180-a7f4-cfdd87496551}.xpi [2021-05-22]
FF Extension: (Video DownloadHelper) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-02]
FF Extension: (No Name) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-08-29]
FF Extension: (Green Parallel Space World) - C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\Extensions\{d2bb4a2d-2bee-4fae-9f9c-7cab0d64ce13}.xpi [2021-07-12]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default [2022-10-11]
CHR Extension: (Safe Torrent Scanner) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2022-06-20]
CHR Extension: (Filmtoro - kde je film online) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\elpopnockfmdhlkillehaopbnbodnkcd [2022-08-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-10-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-05-31]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8513552 2022-10-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [592608 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [592096 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11279752 2021-05-21] (Microsoft Corporation -> Microsoft Corporation)
S3 ComboCleaner.Guard; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.Guard.exe [143488 2021-11-05] (RCS LT, UAB -> RCS LT)
S3 ComboCleaner.WinService; C:\Program Files (x86)\Combo Cleaner\ComboCleaner.WinService.exe [151168 2021-11-05] (RCS LT, UAB -> RCS LT)
R2 Everything; C:\Program Files\Everything\Everything.exe [2260560 2021-01-25] (voidtools -> voidtools)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [228344 2022-10-09] (HP Inc. -> HP Inc.)
R2 MEmuSVC; C:\Program Files\Microvirt\MEmu\MemuService.exe [85304 2019-09-12] (Shanghai Microvirt Software Technology Co., Ltd. -> )
S3 MicrosoftEdgeElevationService1d8d848211e56b0; C:\Program Files (x86)\Microsoft\Edge\Application\106.0.1370.37\elevation_service.exe [1695648 2022-10-06] (Microsoft Corporation -> Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 SamsungUPDUtilSvc; C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe [143664 2022-02-19] (Samsung Electronics CO., LTD. -> )
R2 TechSmith Uploader Service; C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe [3408384 2015-01-26] (TechSmith Corporation) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2203.5-0\NisSrv.exe [3116848 2022-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2203.5-0\MsMpEng.exe [133544 2022-04-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdc.inf_amd64_c55d1bd58ad81cde\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhdc.inf_amd64_c55d1bd58ad81cde\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [42296 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [238128 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [390096 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [258496 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [105920 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [24528 2022-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [48488 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [276496 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [558536 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [114488 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [90000 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [862960 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [671712 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221976 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327904 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
S3 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [802976 2020-12-04] (Bitdefender SRL -> Bitdefender)
S3 btathprot; C:\WINDOWS\system32\DRIVERS\btathprot.sys [637088 2011-02-28] (Atheros Communications Inc. -> Atheros)
S3 btathUSB; C:\WINDOWS\system32\DRIVERS\btathusb.sys [93856 2011-02-28] (Atheros Communications Inc. -> Atheros)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [287744 2022-04-15] (Microsoft Corporation) [File not signed]
R0 FlashBoot; C:\WINDOWS\System32\drivers\FlashBoot.sys [17616 2014-04-03] (Challenger Backup Solutions, LLC -> Challenger Backup Solutions, LLC)
R3 gFilterMouUsb; C:\WINDOWS\System32\drivers\gFilterMouUsb.sys [30568 2021-01-11] (KYE SYSTEMS CORP. -> KYE Systems Corp.)
S3 gKbdfltr; C:\WINDOWS\System32\drivers\gKbdfltr.sys [26504 2021-02-13] (KYE SYSTEMS CORP. -> )
S3 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [176008 2021-09-30] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender LLC)
R0 hswultpep; C:\WINDOWS\System32\drivers\hswultpep.sys [62968 2013-02-08] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
R3 IntelReadyModeDriver; C:\WINDOWS\System32\drivers\IntelReadyModeDriver.sys [34952 2016-03-29] (Intel(R) RMT -> Intel Corporation)
R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [320360 2021-01-04] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation)
R3 MonitorFunction; C:\WINDOWS\System32\drivers\lockscr.sys [24560 2019-01-21] (Remote Utilities LLC -> )
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [37336 2021-03-09] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2019-11-08] (MiniTool Solution Ltd -> )
R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [14224 2021-04-01] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [40664 2013-08-22] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [615840 2021-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R1 vbdenum; C:\WINDOWS\System32\drivers\vbdenum.sys [119432 2020-04-14] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49600 2022-04-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [443664 2022-04-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90384 2022-04-09] (Microsoft Windows -> Microsoft Corporation)
R3 whfltr2k; C:\WINDOWS\System32\drivers\whfltr2k.sys [10368 2009-09-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 WiseFs; C:\WINDOWS\WiseFs64.sys [62200 2021-08-09] (Lespeed Technology Co., Ltd -> WiseCleaner.com)
S3 EverestDriver; \??\E:\SOFTWARE\EverestPortable\EverestPortable\App\EverestUltimate\kerneld.amd64 [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-11 07:50 - 2022-10-11 07:50 - 000034620 _____ C:\Users\hp\Desktop\FRST.txt
2022-10-11 07:41 - 2022-10-11 07:41 - 002372096 _____ (Farbar) C:\Users\hp\Desktop\FRST64.exe
2022-10-11 01:49 - 2022-10-11 01:50 - 000000000 ____D C:\Users\hp\AppData\LocalLow\uTorrent
2022-10-11 00:16 - 2022-10-11 00:17 - 000000000 ____D C:\Users\hp\FOTKY
2022-10-10 22:05 - 2022-10-10 22:05 - 000000000 ____D C:\Users\hp\GRAFIKA
2022-10-10 00:09 - 2022-10-10 00:09 - 033644471 _____ C:\Users\hp\Downloads\2022-10-09_22-19-56 (1) (online-video-cutter.com).mp4
2022-10-10 00:05 - 2022-10-10 00:05 - 017532960 _____ C:\Users\hp\Downloads\2022-10-09_22-19-56 (1).mp4
2022-10-09 23:55 - 2022-10-09 23:55 - 008791352 _____ (Malwarebytes) C:\Users\hp\Desktop\adwcleaner(1).exe
2022-10-09 23:14 - 2022-10-09 22:19 - 052751992 _____ C:\Users\hp\Downloads\2022-10-09_22-19-56.mp4
2022-10-09 23:04 - 2022-10-09 23:04 - 335744267 _____ C:\Users\hp\Downloads\Poctivá socialistická „vepřovka“ se vrací na scénu.mp4
2022-10-09 17:01 - 2022-10-09 17:01 - 000000000 ____D C:\WINDOWS\LastGood
2022-10-09 17:01 - 2022-09-21 03:15 - 001905920 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-10-09 17:01 - 2022-09-21 03:15 - 001905920 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-10-09 17:01 - 2022-09-21 03:15 - 001478408 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-10-09 17:01 - 2022-09-21 03:15 - 001478408 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-10-09 17:01 - 2022-09-21 03:14 - 001471976 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-10-09 17:01 - 2022-09-21 03:14 - 001432328 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-10-09 17:01 - 2022-09-21 03:14 - 001432328 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-10-09 17:01 - 2022-09-21 03:14 - 001213440 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-10-09 17:01 - 2022-09-21 03:14 - 001145608 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-10-09 17:01 - 2022-09-21 03:14 - 001145608 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-10-09 17:00 - 2022-09-21 03:11 - 000865784 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-10-09 17:00 - 2022-09-21 03:11 - 000687616 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-10-09 17:00 - 2022-09-21 03:10 - 043743720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2022-10-09 17:00 - 2022-09-21 03:10 - 002127856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-10-09 17:00 - 2022-09-21 03:10 - 001607672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-10-09 17:00 - 2022-09-21 03:10 - 001536488 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-10-09 17:00 - 2022-09-21 03:10 - 001182704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-10-09 17:00 - 2022-09-21 03:10 - 000771576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-10-09 17:00 - 2022-09-21 03:10 - 000714728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-10-09 17:00 - 2022-09-21 03:10 - 000052184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2022-10-09 17:00 - 2022-09-21 03:09 - 010269680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-10-09 17:00 - 2022-09-21 03:09 - 008803824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-10-09 17:00 - 2022-09-21 03:09 - 003066856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-10-09 17:00 - 2022-09-21 03:09 - 001059320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-10-09 17:00 - 2022-09-21 03:09 - 000845304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-10-09 17:00 - 2022-09-21 03:09 - 000456192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-10-09 17:00 - 2022-09-21 03:08 - 005735920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-10-09 17:00 - 2022-09-21 03:08 - 005362672 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-10-09 17:00 - 2022-09-21 03:08 - 000852984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-10-09 17:00 - 2022-09-21 03:06 - 006367424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-10-09 17:00 - 2022-09-21 02:42 - 000093241 _____ C:\WINDOWS\system32\nvinfo.pb
2022-10-07 08:15 - 2022-10-07 08:15 - 000000000 __RSD C:\WINDOWS\SysWOW64\WindowsDevicePortal
2022-10-07 08:15 - 2022-10-07 08:15 - 000000000 __RSD C:\WINDOWS\system32\WindowsDevicePortal
2022-10-07 08:15 - 2022-10-07 08:15 - 000000000 ___RD C:\WINDOWS\WebManagement
2022-10-06 13:21 - 2022-10-06 13:21 - 000000000 ____D C:\Users\hp\Documents\Zdravotní dokumentace
2022-10-04 01:09 - 2022-10-04 01:09 - 000000000 ____D C:\Users\hp\Documents\PDF
2022-10-04 01:08 - 2022-10-04 01:08 - 001278587 _____ C:\Users\hp\Documents\Strafika_Jansa2.pdf
2022-10-04 01:08 - 2022-10-04 01:08 - 000902574 _____ C:\Users\hp\Documents\Strafika_Jansa.pdf
2022-10-03 22:48 - 2022-10-03 22:48 - 000001136 _____ C:\Users\hp\Desktop\Format Factory.lnk
2022-10-03 22:48 - 2022-10-03 22:48 - 000000000 ____D C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2022-10-03 22:47 - 2022-10-03 22:47 - 000000000 ____D C:\Users\hp\AppData\Local\luminati
2022-10-03 22:45 - 2022-10-03 22:45 - 000000000 ____D C:\Users\hp\Downloads\FormatFactory2022_10_03
2022-10-03 22:45 - 2022-10-03 22:45 - 000000000 ____D C:\Users\hp\AppData\Local\Free_Time_Co.,_Ltd
2022-10-03 21:55 - 2022-10-06 10:34 - 000000000 ____D C:\Users\hp\Albánie 2022
2022-10-03 08:32 - 2022-10-03 08:33 - 000000000 ____D C:\Program Files (x86)\PassFab for ZIP
2022-10-03 08:32 - 2022-10-03 08:32 - 000001160 _____ C:\Users\Public\Desktop\PassFab for ZIP.lnk
2022-10-03 08:32 - 2022-10-03 08:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PassFab for ZIP
2022-09-30 17:18 - 2022-10-11 05:18 - 000003416 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2022-09-30 17:18 - 2022-10-11 05:18 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2022-09-30 17:14 - 2022-09-30 17:14 - 000270560 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-09-30 17:14 - 2022-09-30 17:14 - 000221976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-09-15 09:32 - 2022-09-15 09:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript
2022-09-14 16:19 - 2022-09-14 16:19 - 000413696 _____ C:\WINDOWS\system32\AzureCheck.dll
2022-09-14 16:19 - 2022-09-14 16:19 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-09-14 16:19 - 2022-09-14 16:19 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2022-09-14 16:19 - 2022-09-14 16:19 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-09-14 16:12 - 2022-09-14 16:12 - 000000000 ___HD C:\$WinREAgent
2022-09-13 21:20 - 2022-09-13 21:21 - 000000000 ____D C:\Users\hp\Záloha flash disk
2022-09-13 19:50 - 2022-09-13 19:50 - 000233233 _____ C:\Users\hp\Documents\Letenky Jaroslav Otta.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-11 07:50 - 2022-05-10 00:20 - 000000000 ____D C:\Users\hp\AppData\Roaming\uTorrent
2022-10-11 07:50 - 2022-02-13 20:47 - 000000000 ____D C:\FRST
2022-10-11 07:38 - 2021-01-14 11:47 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-10-11 07:38 - 2021-01-14 11:41 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-10-11 07:08 - 2021-01-16 10:01 - 000000000 ____D C:\Program Files (x86)\Google
2022-10-11 05:18 - 2021-02-23 17:57 - 000000000 ____D C:\Program Files\CCleaner
2022-10-11 02:44 - 2021-03-11 18:14 - 000000000 ____D C:\Users\hp\AppData\LocalLow\Mozilla
2022-10-11 01:31 - 2021-10-25 09:54 - 000003014 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2022-10-11 01:31 - 2021-10-25 09:54 - 000002634 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2022-10-11 01:31 - 2021-10-05 09:23 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-11 01:31 - 2021-10-05 09:23 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-11 01:31 - 2021-10-05 09:23 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-11 01:31 - 2021-10-05 09:23 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-11 01:31 - 2021-10-05 09:23 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-11 01:31 - 2021-10-05 09:23 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-11 01:31 - 2021-10-05 09:23 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-11 01:31 - 2021-10-05 09:23 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-11 01:31 - 2021-10-05 09:23 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-11 01:31 - 2021-10-05 00:27 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-11 01:31 - 2021-10-05 00:27 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-10-11 01:31 - 2021-08-29 07:48 - 000002246 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - hp
2022-10-11 01:31 - 2021-03-15 20:39 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-10-11 01:31 - 2021-01-16 19:36 - 000003122 _____ C:\WINDOWS\system32\Tasks\TechSmith Updater
2022-10-11 01:31 - 2021-01-16 10:01 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-10-11 01:31 - 2021-01-16 10:01 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-10-11 01:31 - 2021-01-16 10:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-10-11 01:31 - 2021-01-14 11:47 - 000002280 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2022-10-11 00:17 - 2021-01-14 12:56 - 000000000 ____D C:\Users\hp
2022-10-10 22:01 - 2022-02-09 20:44 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-10-10 22:00 - 2021-01-16 19:36 - 000000000 ____D C:\Users\hp\AppData\Local\CrashDumps
2022-10-10 12:25 - 2021-02-07 21:19 - 000000000 ____D C:\ProgramData\NVIDIA
2022-10-10 09:31 - 2022-01-16 01:22 - 000000000 ____D C:\ProgramData\Wondershare Filmora
2022-10-10 09:21 - 2022-04-11 12:05 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2022-10-10 09:21 - 2022-04-11 12:05 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-10-09 23:48 - 2021-10-06 05:43 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-10-09 23:48 - 2021-03-11 18:14 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-10-09 23:48 - 2021-03-11 18:14 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-10-09 20:25 - 2021-03-21 23:01 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2022-10-09 20:25 - 2021-03-15 20:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-10-09 18:46 - 2021-01-14 11:41 - 000000000 ___HD C:\Program Files\WindowsApps
2022-10-09 18:46 - 2021-01-14 11:41 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-10-09 17:29 - 2022-05-09 11:00 - 000000000 ____D C:\Users\hp\AppData\Local\Avast Software
2022-10-09 17:15 - 2021-01-14 11:41 - 000000000 ____D C:\WINDOWS\INF
2022-10-09 17:05 - 2021-01-14 11:54 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-10-09 17:05 - 2021-01-14 11:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2022-10-09 17:05 - 2021-01-14 11:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2022-10-09 16:58 - 2021-01-16 09:59 - 000000000 ____D C:\ProgramData\Avast Software
2022-10-09 16:58 - 2021-01-14 11:47 - 000008192 ___SH C:\DumpStack.log.tmp
2022-10-09 16:58 - 2021-01-14 11:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-10-07 08:20 - 2021-01-14 11:38 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-10-07 08:16 - 2021-01-14 12:57 - 000000000 ____D C:\Users\hp\AppData\Local\Packages
2022-10-07 08:16 - 2021-01-14 11:43 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2022-10-07 08:16 - 2021-01-14 11:38 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-10-07 08:15 - 2021-01-14 11:41 - 000000000 ____D C:\WINDOWS\SystemApps
2022-10-06 13:19 - 2021-03-22 14:36 - 000000000 ____D C:\Users\hp\Documents\Moje naskenované obrázky
2022-10-06 12:04 - 2021-01-29 11:55 - 000000000 ____D C:\Users\hp\AppData\Local\GHISLER
2022-10-06 08:40 - 2021-03-04 02:07 - 000000000 ____D C:\Program Files (x86)\FormatFactory
2022-10-05 16:23 - 2021-01-17 00:10 - 000000000 ____D C:\Users\hp\AppData\Local\BitTorrentHelper
2022-10-05 09:11 - 2021-11-06 20:26 - 000000000 ____D C:\Users\hp\AppData\Roaming\audacity
2022-10-03 13:13 - 2021-01-17 11:08 - 000000000 ____D C:\Users\hp\AppData\Local\D3DSCache
2022-10-01 00:08 - 2021-01-16 10:01 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-10-01 00:08 - 2021-01-16 10:01 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-09-30 17:18 - 2021-10-24 21:08 - 000001375 _____ C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2022-09-30 17:14 - 2021-01-16 10:00 - 000862960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-09-30 17:14 - 2021-01-16 10:00 - 000671712 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-09-30 17:14 - 2021-01-16 10:00 - 000558536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-09-30 17:14 - 2021-01-16 10:00 - 000390096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-09-30 17:14 - 2021-01-16 10:00 - 000327904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-09-30 17:14 - 2021-01-16 10:00 - 000276496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-09-30 17:14 - 2021-01-16 10:00 - 000258496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-09-30 17:14 - 2021-01-16 10:00 - 000238128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-09-30 17:14 - 2021-01-16 10:00 - 000114488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-09-30 17:14 - 2021-01-16 10:00 - 000105920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-09-30 17:14 - 2021-01-16 10:00 - 000090000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-09-30 17:14 - 2021-01-16 10:00 - 000048488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-09-30 17:14 - 2021-01-16 10:00 - 000042296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2022-09-30 17:14 - 2021-01-16 10:00 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-09-30 17:14 - 2021-01-14 11:41 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-09-21 03:10 - 2020-11-05 08:41 - 000139224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2022-09-21 03:06 - 2020-11-05 08:41 - 007483400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-09-16 00:06 - 2021-01-14 11:47 - 005718392 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-09-16 00:05 - 2021-01-14 11:41 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-09-16 00:05 - 2021-01-14 11:41 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-09-16 00:05 - 2021-01-14 11:41 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-09-16 00:05 - 2021-01-14 11:41 - 000000000 ____D C:\WINDOWS\SystemResources
2022-09-16 00:05 - 2021-01-14 11:41 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-09-16 00:05 - 2021-01-14 11:41 - 000000000 ____D C:\WINDOWS\system32\setup
2022-09-16 00:05 - 2021-01-14 11:41 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-09-16 00:05 - 2021-01-14 11:41 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-09-16 00:05 - 2021-01-14 11:41 - 000000000 ____D C:\WINDOWS\Provisioning
2022-09-16 00:05 - 2021-01-14 11:41 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-09-15 12:30 - 2021-04-13 10:17 - 000000000 ____D C:\Users\hp\Documents\Manuály Návody
2022-09-14 16:19 - 2021-01-14 11:51 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-09-14 16:11 - 2021-01-17 02:57 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-09-14 16:08 - 2021-01-17 02:57 - 141646296 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-09-14 10:35 - 2022-07-13 23:19 - 000001745 _____ C:\Users\Public\Desktop\MPC-HC x64.lnk
2022-09-14 10:35 - 2022-07-13 23:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
2022-09-14 10:35 - 2022-07-13 23:19 - 000000000 ____D C:\Program Files\MPC-HC

==================== Files in the root of some directories ========

2021-03-01 12:31 - 2021-03-01 12:31 - 000000207 _____ () C:\Users\hp\AppData\Roaming\DESKTOP-V512I58.MTBF.txt
2021-10-01 17:17 - 2021-10-01 17:17 - 000099384 _____ () C:\Users\hp\AppData\Roaming\inst.exe
2021-01-18 10:00 - 2021-01-19 11:30 - 002106893 _____ () C:\Users\hp\AppData\Roaming\langInstall.exe
2021-10-01 17:17 - 2021-10-01 17:17 - 000007859 _____ () C:\Users\hp\AppData\Roaming\pcouffin.cat
2021-10-01 17:17 - 2021-10-01 17:17 - 000001167 _____ () C:\Users\hp\AppData\Roaming\pcouffin.inf
2021-10-01 17:17 - 2021-10-01 17:17 - 000000055 _____ () C:\Users\hp\AppData\Roaming\pcouffin.log
2021-10-01 17:17 - 2021-10-01 17:17 - 000082816 _____ (VSO Software) C:\Users\hp\AppData\Roaming\pcouffin.sys
2021-03-01 12:32 - 2022-07-16 20:41 - 000006144 _____ () C:\Users\hp\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Zde log Adddition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-10-2022 01
Ran by hp (11-10-2022 07:51:30)
Running from C:\Users\hp\Desktop
Microsoft Windows 10 Home Version 21H2 19044.2006 (X64) (2021-01-14 09:50:02)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-4110395000-121095619-2023355872-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4110395000-121095619-2023355872-503 - Limited - Disabled)
Guest (S-1-5-21-4110395000-121095619-2023355872-501 - Limited - Disabled)
hp (S-1-5-21-4110395000-121095619-2023355872-1001 - Administrator - Enabled) => C:\Users\hp
WDAGUtilityAccount (S-1-5-21-4110395000-121095619-2023355872-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\uTorrent) (Version: 3.5.5.46206 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Flash Player 10 ActiveX (HKLM-x32\...\{B7B3E9B3-FB14-4927-894B-E9124509AF5A}) (Version: 10.0.32.18 - Adobe Systems, Inc.)
AMP Font Viewer (HKLM-x32\...\AMP Font Viewer) (Version: - )
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Aspell 0.6 Dictionary (Language: cs) (HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\Aspell6-Dictionary-cs) (Version: - )
Audacity 3.1.1 (HKLM\...\Audacity_is1) (Version: 3.1.1 - Audacity Team)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 22.9.6034 - Avast Software)
BurnInTest v8.1 Pro (HKLM\...\BurnInTest_is1) (Version: 8.1.1001.0 - Passmark Software)
BusinessCards MX (HKLM-x32\...\{0D5B5ED2-3E38-4585-B1F3-64B2A9EA95D6}_is1) (Version: 5.0 - MOJOSOFT)
CCleaner (HKLM\...\CCleaner) (Version: 6.04 - Piriform)
Combo Cleaner (HKLM\...\{8C9F8853-52F7-46F3-BC78-98001D3FF40C}) (Version: 1.0.58.0 - RCS LT) Hidden
Combo Cleaner (HKLM-x32\...\InstallShield_{8C9F8853-52F7-46F3-BC78-98001D3FF40C}) (Version: 1.0.58.0 - RCS LT)
CrystalDiskInfo 8.9.0a (HKLM\...\CrystalDiskInfo_is1) (Version: 8.9.0a - Crystal Dew World)
Everything 1.4.1.1005 (x64) (HKLM\...\Everything) (Version: 1.4.1.1005 - voidtools)
FormatFactory 5.12.2.0 (HKLM-x32\...\FormatFactory) (Version: 5.12.2.0 - Free Time)
Google Earth Pro (HKLM\...\{DE181B35-ACEF-4DB0-86D9-731D5767ABB1}) (Version: 7.3.4.8642 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 105.0.5195.127 - Google LLC)
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.22) (Version: 9.22 - Artifex Software Inc.)
HD Tune Pro 5.00 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Deskjet All-In-One Software (HKLM\...\{2CB8566A-8EA6-417A-BAB1-1B10A88C79BB}) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Infix PDF Editor verze 5.2.7.0 (HKLM-x32\...\D42C36B3-E36B-43EC-A8B4-B613D7B92782_is1) (Version: 5.2.7.0 - Iceni Technology)
IrfanView 4.60 (64-bit) (HKLM\...\IrfanView64) (Version: 4.60 - Irfan Skiljan)
K-Lite Codec Pack 13.7.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.7.5 - KLCP)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D18FE9D2-2F54-4C68-A2DE-A59D4A80A9BC}) (Version: 3.1.2109.29003 - Microsoft Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
LAV Filters 0.74.1 (HKLM-x32\...\lavfilters_is1) (Version: 0.74.1 - Hendrik Leppkes)
MEmu (HKLM-x32\...\MEmu) (Version: 7.6.6.0 - Microvirt Software Technology Co. Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 106.0.1370.37 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 106.0.1370.37 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - cs-cz (HKLM\...\ProPlus2019Volume - cs-cz) (Version: 16.0.14026.20246 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.22.27821 (HKLM\...\{6E2C7A8E-B17A-4637-9CE9-F0B1157CF378}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.22.27821 (HKLM\...\{0093C20C-273D-4397-B623-515CB8616CB9}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.22.27821 (HKLM-x32\...\{3BDE80F7-7EC9-448E-8160-4ADA0CDA8879}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.22.27821 (HKLM-x32\...\{1E6FC929-567E-4D22-9206-C5B83F0A21B9}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 105.0.3 (x64 cs)) (Version: 105.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 78.8.1 - Mozilla)
Mozilla Thunderbird (x64 cs) (HKLM\...\Mozilla Thunderbird 102.3.2 (x64 cs)) (Version: 102.3.2 - Mozilla)
MP3Resizer 1.8.3 (HKLM-x32\...\MP3Resizer_is1) (Version: - Skyshape Software)
Mp3tag v3.11 (HKLM-x32\...\Mp3tag) (Version: 3.11 - Florian Heidenreich)
MPC-HC 1.9.23 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.9.23 - MPC-HC Team)
NAPS2 4.7.1 (HKLM-x32\...\NAPS2 (Not Another PDF Scanner 2)_is1) (Version: - Ben Olden-Cooligan)
NVIDIA FrameView SDK 1.2.7521.31103277 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7521.31103277 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.25.1.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.1.27 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 516.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 516.94 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden
PassFab for ZIP 8.2.5.3 (HKLM-x32\...\{PassFabforZIP}_is1) (Version: 8.2.5.3 - PassFab, Inc.)
PhotoFiltre Studio X (HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\PhotoFiltre Studio X) (Version: - )
Pinnacle Creative Pack Volume 1 (HKLM\...\{918359BE-B9C3-4495-87B7-671985A047EB}) (Version: 9.0 - Corel Corporation)
Pinnacle Studio - Standard Content Pack (HKLM\...\{C05ABD27-37E5-40B7-BE13-0C4A6BBA8199}) (Version: 24.1 - Corel Corporation)
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.6 - Power Software Ltd)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.31235 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9030.1 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.0.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.5 - VS Revo Group, Ltd.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.32 - Samsung Electronics Co., Ltd.) Hidden
SetIP (HKLM-x32\...\SetIP) (Version: 1.05.08.00 - Samsung Electronics Co., Ltd.)
Skype verze 8.68 (HKLM-x32\...\Skype_is1) (Version: 8.68 - Skype Technologies S.A.)
Snagit 12 (HKLM-x32\...\{ae5218bf-cfcc-4099-818d-7e16ce0d97df}) (Version: 12.4.0.2992 - TechSmith Corporation)
Snagit 12 (HKLM-x32\...\{BDFD9ADC-3F97-4A8A-A533-987B21776449}) (Version: 12.4.0 - TechSmith Corporation) Hidden
Stellar Data Recovery (HKLM\...\Stellar Data Recovery_is1) (Version: 10.0.0.0 - Stellar Information Technology Pvt Ltd.)
Subtitle Edit 3.6.1 (HKLM\...\SubtitleEdit_is1) (Version: 3.6.1.0 - Nikse)
Subtitle Workshop 2.50 (HKLM-x32\...\SubtitleWorkshop) (Version: - )
Telegram Desktop (HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 3.7.3 - Telegram FZ-LLC)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.93 - Samsung Electronics CO., LTD.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
VSO ConvertXToDVD 6 (HKLM-x32\...\{8FC36FA6-C508-44FB-B137-1CB46D8258B2}_is1) (Version: 6.0.0.80 - VSO Software)
Windows Driver Package - AMD (amdkmpfd) System (07/13/2021 21.40.0.0000) (HKLM\...\3B77BABE101DD3C0566498017F6CC47409A95AF9) (Version: 07/13/2021 21.40.0.0000 - AMD)
Windows Driver Package - ELAN SMBus (ETDSMBus) System (08/05/2021 24.14.1.1) (HKLM\...\B0883EB436EA192651CA8BAD0A0D7B5B20FD0AFE) (Version: 08/05/2021 24.14.1.1 - ELAN SMBus)
Windows Driver Package - Genius (gFilterMouUsb) Mouse (01/11/2020 11.0.1.15) (HKLM\...\5B47F9ED79D6DBB1A44749D1B832BCDA2D896019) (Version: 01/11/2020 11.0.1.15 - Genius)
Windows Driver Package - Challenger Backup Solutions, LLC (FlashBoot) DiskDrive (08/11/2013 2.3.72.0) (HKLM\...\CA8BFE662913F62CB908BA31685037C57A7DD973) (Version: 08/11/2013 2.3.72.0 - Challenger Backup Solutions, LLC)
Windows Driver Package - Intel (ICCWDT) System (07/11/2021 11.7.0.1003) (HKLM\...\122649B7F8C2E173DFA0F6410C9B6CD4DCE8DEB5) (Version: 07/11/2021 11.7.0.1003 - Intel)
Windows Driver Package - Intel (IntelReadyModeDriver) System (03/14/2016 1.2.0.0) (HKLM\...\653BC9089B74F8042B4F2C2632EE1FDFF1263926) (Version: 03/14/2016 1.2.0.0 - Intel)
Windows Driver Package - Intel (jhi_service) SoftwareComponent (01/21/2021 1.41.2021.0121) (HKLM\...\9FCE6EA11F57164FFB99DA1AE49186712DBF4D00) (Version: 01/21/2021 1.41.2021.0121 - Intel)
Windows Driver Package - Intel (XTUComponent) SoftwareComponent (09/15/2021 7.5.3.3) (HKLM\...\6848E29B1C6CF381EB9A0AA87C9F1C302EEC6A5A) (Version: 09/15/2021 7.5.3.3 - Intel)
Windows Driver Package - Intel Corp (hswultpep) System (01/30/2013 1.0.5.591) (HKLM\...\9D406FEE18ADC9C102B04926FB415C1F530F5C77) (Version: 01/30/2013 1.0.5.591 - Intel Corp)
Windows Driver Package - Intel Corporation (btmaux) BluetoothAuxiliary (12/10/2019 20.90.6.5) (HKLM\...\E64D060AA335D3BF27D3D555E7FD9BC52E38AEB8) (Version: 12/10/2019 20.90.6.5 - Intel Corporation)
Windows Driver Package - Intel Corporation (ibtusb) Bluetooth (09/02/2021 22.80.1.1) (HKLM\...\CB065B622E850BD488514B7EAEA8379CB9DA9908) (Version: 09/02/2021 22.80.1.1 - Intel Corporation)
Windows Driver Package - INTEL System (01/10/2019 10.1.10.4) (HKLM\...\726D7C87F92D7C62D8B1C35AC30AD04A50E7A801) (Version: 01/10/2019 10.1.10.4 - INTEL)
Windows Driver Package - INTEL System (01/10/2019 10.1.6.2) (HKLM\...\00574168EE594099956EEF657FCCB0B555EB35AA) (Version: 01/10/2019 10.1.6.2 - INTEL)
Windows Driver Package - INTEL System (01/10/2019 10.1.7.3) (HKLM\...\3561767FD219A252832B3B98AFBA6DBE5D84601E) (Version: 01/10/2019 10.1.7.3 - INTEL)
Windows Driver Package - Intel System (06/07/2021 2124.100.0.1096) (HKLM\...\4058D6ECDE14B6840A827F43EBB82DB837BAA1EE) (Version: 06/07/2021 2124.100.0.1096 - Intel)
Windows Driver Package - KYE Systems Corp. (gKbdfltr) HIDClass (11/08/2019 10.1.1.4) (HKLM\...\5A71362DABA82EC8D7DF1DABA712DDC19D3B8B27) (Version: 11/08/2019 10.1.1.4 - KYE Systems Corp.)
Windows Driver Package - LG Electronics Inc. (AirModeBtn) HIDClass (11/04/2016 1.0.1611.0401) (HKLM\...\FD1DB0C9F96D75B2DBE15DC8D24593B0C671BAB6) (Version: 11/04/2016 1.0.1611.0401 - LG Electronics Inc.)
Windows Driver Package - Qualcomm Atheros Communications (AthBTPort) BluetoothVirtual (06/22/2016 4.0.0.688) (HKLM\...\01069D6802A68D1F83307E6BCAE2264CE16C91D4) (Version: 06/22/2016 4.0.0.688 - Qualcomm Atheros Communications)
Windows Driver Package - Realtek (rt640x64) Net (08/11/2021 10.051.0811.2021) (HKLM\...\49987CCA6D6257F949F5777688D991611E6D5063) (Version: 08/11/2021 10.051.0811.2021 - Realtek)
Windows Driver Package - Realtek Semiconductor Corp. (RTSUER) USB (08/21/2021 10.0.22000.31270) (HKLM\...\42998A2565CD3B39539592AD2DD7CBEF7AA4DC66) (Version: 08/21/2021 10.0.22000.31270 - Realtek Semiconductor Corp.)
Windows Driver Package - Remote Utilities LLC (MonitorFunction) Monitor (01/21/2019 16.10.46.576) (HKLM\...\D1A359D7AACFA04424BDDA9BA49C81EB248799E3) (Version: 01/21/2019 16.10.46.576 - Remote Utilities LLC)
Windows Driver Package - WheelMouse (whfltr2k) Mouse (04/24/2010 6.00.0.010) (HKLM\...\7F5F7DC2572238A05315BA1D906389AB9F3FDE36) (Version: 04/24/2010 6.00.0.010 - WheelMouse)
WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
Wise Folder Hider (HKLM-x32\...\Wise Folder Hider_is1) (Version: 4.3.9 - WiseCleaner.com, Inc.)
Wondershare Filmora9(Build 9.3.6) (HKLM\...\Wondershare Filmora9_is1) (Version: - Wondershare Software)
Wondershare Recoverit(Build 8.2.3.5) (HKLM-x32\...\{829555DC-31E5-4FEA-B350-8FCF24CECD95}_is1) (Version: 8.2.3.5 - Wondershare Software Co.,Ltd.)
Youtube-DLG version 0.4 (HKLM-x32\...\{3C455028-FC99-4846-8E04-4FCD87D85613}_is1) (Version: 0.4 - Sotiris Papadopoulos)

Packages:
=========
Adobe Photoshop Express -> C:\Program Files\WindowsApps\AdobeSystemsIncorporated.AdobePhotoshopExpress_3.7.403.0_x64__ynb6jyjzte8ga [2022-08-18] (Adobe Inc.)
ALIEXPRESS SALE -> C:\Program Files\WindowsApps\l.corp.ALIEXPRESSSALE_1.1.2.0_x64__wmejf3b8kpde4 [2021-08-28] (AU MFC VMP)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.15.523.0_x64__rz1tebttyb220 [2022-10-09] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-28] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-08-28] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_139.2.289.0_x64__v10z8vjag6ke6 [2022-10-09] (HP Inc.)
iVysílání -> C:\Program Files\WindowsApps\Ceskatelevize.iVysln_1.2.0.0_x64__ndqbq1wc819cy [2021-08-28] (Ceska televize)
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.2.9260.0_x64__8wekyb3d8bbwe [2022-09-30] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.14.9130.0_x64__8wekyb3d8bbwe [2022-09-16] (Microsoft Studios) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-04-18] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-07-24] (NVIDIA Corp.)
Picsart - Photo Studio -> C:\Program Files\WindowsApps\2FE3CB00.PICSART-PHOTOSTUDIO_10.3.1.0_x64__crhqpqs3x1ygc [2022-09-03] (PicsArt Inc.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0 [2022-09-30] (Spotify AB) [Startup Task]
The Northern Lights -> C:\Program Files\WindowsApps\Microsoft.TheNorthernLights_1.0.0.0_neutral__8wekyb3d8bbwe [2021-08-28] (Microsoft Corporation)
TikTok -> C:\Program Files\WindowsApps\BytedancePte.Ltd.TikTok_1.0.5.0_neutral__6yccndn6064se [2022-08-10] (Bytedance Pte. Ltd.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4110395000-121095619-2023355872-1001_Classes\CLSID\{85F9377F-C842-484D-9A95-929AAE7FCDD6}\InprocServer32 -> C:\Program Files\Mozilla Firefox\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll -> No File
ContextMenuHandlers1: [IrfanViewShellExt] -> {C835F12F-DD15-4294-B245-954A877D778A} => C:\Program Files\IrfanView\Shell Extension\IrfanViewShellExt64.dll [2022-05-10] (Irfan Skiljan) [File not signed]
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2021-10-29] (Florian Heidenreich) [File not signed]
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => C:\Program Files (x86)\TechSmith\Snagit 12\DLLx64\SnagitShellExt64.dll [2015-06-16] (TechSmith Corporation -> TechSmith Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2021-10-29] (Florian Heidenreich) [File not signed]
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll -> No File
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2021-10-29] (Florian Heidenreich) [File not signed]
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers4: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => C:\Program Files (x86)\TechSmith\Snagit 12\DLLx64\SnagitShellExt64.dll [2015-06-16] (TechSmith Corporation -> TechSmith Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhdc.inf_amd64_c55d1bd58ad81cde\nvshext.dll [2022-09-21] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2012-12-29] (VS Revo Group -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers4_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers5_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.pDAD] => C:\Windows\SysWOW64\prodad-codec.dll [506312 2020-06-29] (proDAD GmbH -> proDAD GmbH)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\hp\Desktop\TikTok.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc --app-url=hxxps://www.tiktok.com/foryou --app-launch-source=4
ShortcutWithArgument: C:\Users\hp\AppData\Local\Microsoft\Edge\User Data\Default\Web Applications\_crx__nlalbmkafgmoifbeooblidblkmlhhpnc\TikTok.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc --app-url=hxxps://www.tiktok.com/foryou --app-launch-source=4
ShortcutWithArgument: C:\Users\hp\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\TikTok.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=nlalbmkafgmoifbeooblidblkmlhhpnc --app-url=hxxps://www.tiktok.com/foryou --app-launch-source=4

==================== Loaded Modules (Whitelisted) =============

2015-06-16 17:50 - 2015-06-16 17:50 - 002099200 _____ () [File not signed] C:\Program Files (x86)\TechSmith\Snagit 12\opencv_core249.dll
2015-06-16 17:50 - 2015-06-16 17:50 - 001914368 _____ () [File not signed] C:\Program Files (x86)\TechSmith\Snagit 12\opencv_imgproc249.dll
2022-07-13 23:19 - 2022-08-26 08:00 - 000376832 _____ () [File not signed] C:\Program Files\MPC-HC\LAVFilters64\libbluray.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 001335296 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\alibabacloud-oss-cpp-sdk.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000104448 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\ColorSpaceConvert.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000018432 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\COMSupport.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 007476224 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\Effect\CameraFx.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 010083840 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\Effect\CommonFx.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000979968 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\Effect\FilterPlugs.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000462336 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\Effect\LegacyClFx.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 008023040 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\Effect\LightRoomFx.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000096768 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\Effect\tp_Erase.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000031744 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\Effect\tp_Fade.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000118272 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\Effect\tp_whisk.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000110080 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\FPC_NLECompatibilityStruct.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000302080 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\FPC_NLEProjectConverter.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000132608 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\FPC_WsCompatibilityServer.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000427008 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\glew32.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 105211392 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\libcef.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 020585472 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\libkernaldec.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000013312 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\MediaInfo.dll
2022-01-16 01:22 - 2020-02-27 19:15 - 000316416 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\MediaPlayerView.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000105984 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEAnimation.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000035328 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEAuthNUpload.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000628224 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEBackgroundCache.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000373760 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEBaseClass.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000040448 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEBitmap.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000331264 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLECGFilterMgr.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000091136 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLECOMSupport.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000131072 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEEnvironment.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000045568 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEExtractor.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000117760 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEFontEngine.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000039936 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEHolePunchingLib.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 009967104 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEImageProc.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000089600 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEMediaEncoder.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000068096 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEMediaInfoProvider.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000029184 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEMemoryPool.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000033280 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEMessageBus.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000213504 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEOpenGLEffectMgr.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000134144 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEResLocator.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 002290176 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLETimeline.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 002129920 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLETimelineEffect.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000076288 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLETimelinePhoto.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000155136 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLETimelineSource.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 002107904 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLETimelineSplitScreen.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 001946112 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLETimelineTipText.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000114176 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLETimelineTransition.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000108544 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLETimelineVirtual.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000339968 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEVideoStreamProcess.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000112128 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\NLEXml.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000218112 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\OpenCLAccelerate.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 001899008 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\opencv_calib3d320.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 019059712 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\opencv_core320.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000933376 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\opencv_features2d320.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000642048 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\opencv_flann320.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000162816 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\opencv_highgui320.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 002857472 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\opencv_imgcodecs320.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 023400960 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\opencv_imgproc320.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000307200 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\opencv_videoio320.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000015872 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\ProxyDetector.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000112128 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\pythondlls\_ctypes.pyd
2022-01-16 01:22 - 2020-02-27 19:09 - 000166912 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\pythondlls\_elementtree.pyd
2022-01-16 01:22 - 2020-02-27 19:09 - 001070592 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\pythondlls\_hashlib.pyd
2022-01-16 01:22 - 2020-02-27 19:09 - 000047616 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\pythondlls\_socket.pyd
2022-01-16 01:22 - 2020-02-27 19:09 - 001695232 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\pythondlls\_ssl.pyd
2022-01-16 01:22 - 2020-02-27 19:09 - 000164352 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\pythondlls\pyexpat.pyd
2022-01-16 01:22 - 2020-02-27 19:09 - 000010752 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\pythondlls\select.pyd
2022-01-16 01:22 - 2020-02-27 19:11 - 001097216 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\QCefView.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000168448 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\QuaZip.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 002017792 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\SkiaGraphics.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 006157824 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\SkiaWapperDll.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000044032 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\WS_ImageProc.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000101888 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\WS_Log.DLL
2022-01-16 01:22 - 2020-02-27 19:09 - 000285696 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\WS_MediaLossConverter.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000307200 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\wsCUDA.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000013312 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\wsID3Lib.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000104448 _____ () [File not signed] C:\Program Files\Wondershare\Filmora9\zlibwapi.dll
2022-07-13 23:19 - 2022-08-26 08:00 - 000303616 _____ (1f0.de - Hendrik Leppkes) [File not signed] C:\Program Files\MPC-HC\LAVFilters64\LAVAudio.ax
2022-07-13 23:19 - 2022-08-26 08:00 - 000650752 _____ (1f0.de - Hendrik Leppkes) [File not signed] C:\Program Files\MPC-HC\LAVFilters64\LAVSplitter.ax
2022-07-13 23:19 - 2022-08-26 08:00 - 001233920 _____ (1f0.de - Hendrik Leppkes) [File not signed] C:\Program Files\MPC-HC\LAVFilters64\LAVVideo.ax
2022-01-16 01:22 - 2020-02-27 19:09 - 000232960 _____ (Copyright (c) 2012 Wondershare Software All Rights Reserved) [File not signed] C:\Program Files\Wondershare\Filmora9\WSUtilities.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000460288 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Program Files\Wondershare\Filmora9\imageformats\qjp2.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000275456 _____ (Digia Plc and/or its subsidiary(-ies)) [File not signed] C:\Program Files\Wondershare\Filmora9\imageformats\qmng.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000873472 _____ (D-Type Solutions) [File not signed] C:\Program Files\Wondershare\Filmora9\dtypestd.dll
2022-07-13 23:19 - 2022-08-26 08:00 - 013932668 _____ (FFmpeg Project) [File not signed] C:\Program Files\MPC-HC\LAVFilters64\avcodec-lav-59.dll
2022-07-13 23:19 - 2022-08-26 08:00 - 000207996 _____ (FFmpeg Project) [File not signed] C:\Program Files\MPC-HC\LAVFilters64\avfilter-lav-8.dll
2022-07-13 23:19 - 2022-08-26 08:00 - 005170300 _____ (FFmpeg Project) [File not signed] C:\Program Files\MPC-HC\LAVFilters64\avformat-lav-59.dll
2022-07-13 23:19 - 2022-08-26 08:00 - 000918652 _____ (FFmpeg Project) [File not signed] C:\Program Files\MPC-HC\LAVFilters64\avutil-lav-57.dll
2022-07-13 23:19 - 2022-08-26 08:00 - 000127612 _____ (FFmpeg Project) [File not signed] C:\Program Files\MPC-HC\LAVFilters64\swresample-lav-4.dll
2022-07-13 23:19 - 2022-08-26 08:00 - 000647804 _____ (FFmpeg Project) [File not signed] C:\Program Files\MPC-HC\LAVFilters64\swscale-lav-6.dll
2021-10-29 17:44 - 2021-10-29 17:44 - 000466944 _____ (Florian Heidenreich) [File not signed] C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 006403072 _____ (FreeImage) [File not signed] C:\Program Files\Wondershare\Filmora9\FreeImage.dll
2012-09-15 01:17 - 2012-09-15 01:17 - 000032256 _____ (Hewlett-Packard Co.) [File not signed] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.rsc
2011-04-29 12:34 - 2011-04-29 12:34 - 000934400 _____ (Hewlett-Packard Co.) [File not signed] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsem08.rsc
2011-04-29 12:34 - 2011-04-29 12:34 - 000012288 _____ (Hewlett-Packard Co.) [File not signed] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.rsc
2010-08-06 12:15 - 2010-08-06 12:15 - 000079872 _____ (Hewlett-Packard) [File not signed] C:\WINDOWS\System32\HPZidr12.dll
2010-08-06 12:15 - 2010-08-06 12:15 - 000071680 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2010-08-06 12:15 - 2010-08-06 12:15 - 000089600 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2010-08-06 12:15 - 2010-08-06 12:15 - 000054784 _____ (Hewlett-Packard) [File not signed] C:\WINDOWS\SYSTEM32\hpzipr12.dll
2015-06-16 17:50 - 2015-06-16 17:50 - 000480256 _____ (hxxp://hunspell.sourceforge.net/) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 12\libhunspell.dll
2022-07-13 23:19 - 2020-06-21 17:28 - 000180224 _____ (Idol Software) [File not signed] C:\Program Files\MPC-HC\CrashReporter\crashrpt.dll
2022-05-10 18:55 - 2022-05-10 18:55 - 000167424 _____ (Irfan Skiljan) [File not signed] C:\Program Files\IrfanView\Shell Extension\IrfanViewShellExt64.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000136704 _____ (Khronos Group) [File not signed] C:\Program Files\Wondershare\Filmora9\OpenCL.dll
2015-06-16 17:50 - 2015-06-16 17:50 - 000066192 ____R (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 12\LFJbg15U.DLL
2015-06-16 17:50 - 2015-06-16 17:50 - 000126096 ____R (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 12\LFPng15U.DLL
2015-06-16 17:50 - 2015-06-16 17:50 - 000212112 _____ (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 12\Ltimgclr15u.dll
2015-06-16 17:50 - 2015-06-16 17:50 - 000208016 _____ (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 12\Ltimgefx15u.dll
2015-06-16 17:50 - 2015-06-16 17:50 - 000134288 _____ (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 12\Ltimgutl15u.dll
2015-06-16 17:50 - 2015-06-16 17:50 - 000122000 _____ (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 12\Lttwn15u.dll
2022-07-13 23:19 - 2020-05-28 17:43 - 004296704 _____ (Microsoft Corporation) [File not signed] C:\Program Files\MPC-HC\d3dcompiler_47.dll
2021-01-16 22:26 - 2021-01-16 22:26 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll
2021-01-16 22:26 - 2021-01-16 22:26 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll
2022-07-13 23:19 - 2022-08-26 08:00 - 000184832 _____ (MPC-HC Team) [File not signed] C:\Program Files\MPC-HC\Lang\mpcresources.cs.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000094720 _____ (Open Source Software community LGPL) [File not signed] C:\Program Files\Wondershare\Filmora9\pthreadGC2.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000082944 _____ (Open Source Software community LGPL) [File not signed] C:\Program Files\Wondershare\Filmora9\pthreadVC2.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 003009536 _____ (Python Software Foundation) [File not signed] C:\Program Files\Wondershare\Filmora9\python27.dll
2015-06-16 18:05 - 2015-06-25 20:27 - 006934848 _____ (TechSmith Corporation -> TechSmith Corporation) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 12\SnagItEditorRes.dll
2015-06-16 18:05 - 2015-06-28 11:13 - 004794688 _____ (TechSmith Corporation) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 12\SnagItres.dll
2015-06-16 18:03 - 2015-06-16 18:03 - 000165888 _____ (TechSmith Corporation) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 12\TSCREC3.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 001005568 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Program Files\Wondershare\Filmora9\libcurl-x64.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000670720 _____ (The Chromium Authors) [File not signed] C:\Program Files\Wondershare\Filmora9\chrome_elf.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 002595840 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Wondershare\Filmora9\libcrypto-1_1-x64.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 002588456 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Wondershare\Filmora9\LIBEAY32.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000412160 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Wondershare\Filmora9\libssl-1_1-x64.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000583331 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Wondershare\Filmora9\ssleay32.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000045568 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\bearer\qgenericbearer.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000047616 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\bearer\qnativewifibearer.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000049152 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\imageformats\qdds.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000029696 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\imageformats\qgif.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000036864 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\imageformats\qicns.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000030720 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\imageformats\qico.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000236544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\imageformats\qjpeg.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000023552 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\imageformats\qsvg.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000022528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\imageformats\qtga.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000353792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\imageformats\qtiff.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000021504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\imageformats\qwbmp.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000375296 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\imageformats\qwebp.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 001245184 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\platforms\qwindows.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 005552640 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\Qt5Core.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 006005760 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\Qt5Gui.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 001070080 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\Qt5Network.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000200704 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\Qt5Sql.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000309760 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\Qt5Svg.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 005499392 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\Qt5Widgets.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000281600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\Qt5WinExtras.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000193536 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\Qt5Xml.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000884736 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Wondershare\Filmora9\qtplugins\sqldrivers\qsqlite.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000290816 _____ (TODO: <公司名>) [File not signed] C:\Program Files\Wondershare\Filmora9\NLECodec.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000193024 _____ (TODO: <公司名>) [File not signed] C:\Program Files\Wondershare\Filmora9\NLECommon.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000200192 _____ (TODO: <公司名>) [File not signed] C:\Program Files\Wondershare\Filmora9\NLECore.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000070656 _____ (TODO: <公司名>) [File not signed] C:\Program Files\Wondershare\Filmora9\NLEKey.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000070656 _____ (TODO: <公司名>) [File not signed] C:\Program Files\Wondershare\Filmora9\NLELogger.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000365568 _____ (TODO: <公司名>) [File not signed] C:\Program Files\Wondershare\Filmora9\NLEPlayer.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000164352 _____ (TODO: <公司名>) [File not signed] C:\Program Files\Wondershare\Filmora9\NLEProperty.dll
2022-01-16 01:22 - 2020-02-27 19:09 - 000058880 _____ (TODO: <公司名>) [File not signed] C:\Program Files\Wondershare\Filmora9\NLERepository.dll
2022-01-16 01:24 - 2019-04-26 20:41 - 001001472 _____ (飘云阁论坛官方出品) [File not signed] C:\Program Files\Wondershare\Filmora9\PYG64.DLL
2022-01-16 01:24 - 2019-04-26 20:41 - 000076288 _____ (飘云阁论坛官方出品) [File not signed] C:\Program Files\Wondershare\Filmora9\WINMM.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:A0CB5C3C [126]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2021-01-14 11:42 - 2022-05-09 09:57 - 000000753 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4110395000-121095619-2023355872-1001\Control Panel\Desktop\\Wallpaper -> c:\users\hp\pictures\window10.jpg
DNS Servers: 31.30.90.11 - 31.30.90.12
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "HP Digital Imaging Monitor.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "Everything"
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\StartupApproved\Run: => "STUISpeedLauncher"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E2B79466-8370-4B6C-AE25-EBFAC2C134B6}] => (Allow) LPort=8298
FirewallRules: [TCP Query User{13228492-C68E-4ABD-9781-E7AC3C038E3A}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{23F474F3-D6CF-49C1-B587-CFFB6E863914}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe => No File
FirewallRules: [{EEC9909B-3046-498F-A36A-98BCB92862D6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2E40ADB5-334A-41AE-A616-E89FC046AEB4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E06B70AC-9F5B-4FE2-B178-D28A6322732F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{EDBFF13A-0E02-4E15-B731-985DBD3CE9D9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9C888C74-DA89-4565-B8B4-7EF2D2BC6B98}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{CC6AC4A4-1415-4B2A-BCCF-D383C7D1D050}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{00320162-5AC3-4F0B-BE39-BD0CCB8BD1A4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{FDB098BF-1506-49D9-BDDF-50D75A2DE41C}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{6A85BFC3-F27E-4B13-9056-A5E7A79C8094}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0C3EE6AD-04D1-4EA0-8E61-4264121EB308}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F684DBD3-FCC4-43D5-B26E-70D8ECEAA064}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FAFA95E1-68AC-4746-8506-2946CC66690A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{2EE96C8F-9282-4316-8CA8-B3D8BC166615}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{689AF843-A4F1-4AD2-B792-26572012A77F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D60C7DC7-F6BE-4E71-B14F-39DE87837375}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4AEF1025-A375-488B-91A3-1DC5A751DB34}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D1BD3ABB-0B5E-40B7-9525-46EF60B66C40}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{2F95E6A6-EF0E-4B99-9FBA-FA0EEE15BD21}] => (Allow) C:\Program Files (x86)\HP\Diagnostics\PSDR\SoftPaq\Binaries\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{C1EE6046-6F91-40BF-9141-BF42EAB7673E}] => (Allow) C:\Program Files (x86)\HP\Diagnostics\PSDR\SoftPaq\Binaries\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{0EC302F3-E2E3-4607-A229-F08B62EA4223}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{82B4E5B9-5AE8-4ABD-BCE4-167108FB8BFC}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BE01BDB9-046D-47C4-89C2-F1E6C05A21B1}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{501C58E8-5D2E-439C-B317-E394A3BB9172}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{717A1221-5C85-4368-A7D5-6DBB3D2380E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{DB54E617-ACF2-4AF1-BC3C-3C7BF0E97D88}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{860D1899-3B56-4455-83D3-4024E2A37DF5}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B8011EF1-25A9-4957-8E8C-FBF49E9DEACF}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C698D227-D0D2-45BA-B96F-F8BB1F2CE751}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0CC7680A-6AD7-4162-8944-16D293355A15}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F0B0F835-AE77-45BE-84E4-B6BB2B8EB082}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3B3A2926-905F-410A-AFF6-7B8B8D9DB0A3}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A072DF9C-0C18-41A0-AE2A-B68FE9471B63}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{7A459475-3B0B-405F-883C-574BCE4ADC2B}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8E5EDC36-757A-4AF2-BD36-19DFC0D42577}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{25131BA1-383D-4EEF-8A65-772AD88E9F32}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{E59FA2BA-F2D5-4C1F-B20C-F640F40D0D76}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [TCP Query User{3547DEDC-913A-42C0-B621-602E4B80D5C6}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{A1F96B3F-57C3-44EF-9320-3676CE0A0CF3}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe => No File
FirewallRules: [{F6DB09A9-DF66-4FC1-B050-EA380309235B}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D2F8D613-3B24-4B6D-BEFE-87D465F6A537}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{40808B03-6346-4BF9-82F5-128FAD13BF3F}C:\program files (x86)\common files\scan process machine\imageeng.exe] => (Allow) C:\program files (x86)\common files\scan process machine\imageeng.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [UDP Query User{4C1A79D9-B1A6-48E9-B87A-C565F400A4B1}C:\program files (x86)\common files\scan process machine\imageeng.exe] => (Allow) C:\program files (x86)\common files\scan process machine\imageeng.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{6C570EBA-1756-4701-9DDE-FCB1CE0FFA48}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{4AF130B7-1E99-4B22-8AE9-D6ACA71B060A}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0FB9B95D-D0B4-4032-93ED-3B9379EC16D4}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9A3EB29C-131A-4C98-B45E-92CCD8A6F8B8}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{C22C7146-B97A-4DEE-9122-AC802BD18BB5}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{80A0270E-AD82-44A9-AD98-BB27AEEE6931}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1F60AE3A-23BD-4DD8-85A2-747FFF1D3A10}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DF2B8F2F-77D5-49AD-B37B-026B9DE3B5C8}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A512A910-DB69-41A0-837E-359ACC69DEBA}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3A8DB3FA-73D9-40A4-88B7-2B40D210A1A2}] => (Allow) LPort=57209
FirewallRules: [{023019D5-23D1-4EDB-A32A-EA80760D7EDA}] => (Allow) LPort=57209
FirewallRules: [TCP Query User{0596E88E-F40A-4EAF-8B59-7E6B3070E308}E:\stažené soubory\utorrentportable\app\utorrent\utorrent.exe] => (Allow) E:\stažené soubory\utorrentportable\app\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{3B90A2D9-C75A-4803-8FAA-943AA6A16214}E:\stažené soubory\utorrentportable\app\utorrent\utorrent.exe] => (Allow) E:\stažené soubory\utorrentportable\app\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{5B88C25D-49F5-495A-BE8F-0C3AE48E99DF}] => (Allow) C:\Users\hp\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{FAF9C704-128F-4399-A68B-F5C0AE1BF7B2}] => (Allow) C:\Users\hp\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{752B870F-33B5-4562-9BB5-F5CA5FEB9437}] => (Allow) C:\Users\hp\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{AC482C18-40AB-43A1-99F5-7E985BB1EAE8}] => (Allow) C:\Users\hp\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{7FB06467-26C1-43A4-A534-9F8011A2377D}] => (Allow) C:\Users\hp\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{8B1D5EC3-9116-43BC-B121-DB82822FCCDB}] => (Allow) C:\Users\hp\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{CAF9749D-E5BA-405A-BEAE-930414B67EAF}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{F9699D82-1D4F-44BC-9201-00DBE6F161DB}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{54CFCC52-AE32-49F3-A711-8A357A868BCE}] => (Allow) C:\Users\hp\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{013D79D1-FEB7-40B7-9D27-B100E44B5C89}] => (Allow) C:\Users\hp\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{A311A085-195E-4B72-89FF-DE6DA5B80C17}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{7926F7D3-453C-4FFB-A171-01C3F71EDBC2}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2A7CC37F-CB13-42EB-BC9E-EEFD8916B72B}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{87BCAA5A-80DC-47FA-A5DF-B90359996212}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0E09719E-BDA5-4329-9B14-F98F025B9FAC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{BA49A388-CF29-46B8-BBDB-7D8E99A198D5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A6A42555-3287-4FB4-B340-E313ECAB1FDB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A4F5F274-5EE0-401B-8A7A-B20779202B20}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B826C50E-2C23-4D35-97B0-DB9B99A6D4DF}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1841EB1D-95D8-4158-8C2A-91324CD97ACA}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9CDA1483-4985-4F31-B2C0-21573560171B}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{29513639-357D-492E-93BF-7E98781546BE}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{48471E7E-D965-496E-9A02-93EDA5E350DB}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{153CD4F0-24E3-41F5-AEFD-82DD8C4458B3}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6D82DFDA-3787-451B-BFBB-CBCEFB3BF2B7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9056C95F-D089-485F-9BA1-EDBB1E10C9BB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C9FC18F3-301F-4E95-9934-23EC0ADAD996}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EBAC885A-A7E3-4B00-8C9D-6A698C5C1D3B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{ABA80A09-6AD7-4E31-BDD2-EBFAD34CB86F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6CA43767-530A-4A55-A822-A860E24A6498}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CEEA2F99-CB8D-44DD-AF21-389B03FA6018}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{81362E21-0111-4DD3-8FDE-CFC7AC3819AF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.195.893.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C2DD026E-7856-44EB-8323-8A4AD51BE7D0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{073B7676-F3DF-4E28-9EF9-B3D03FF0B22C}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{0BCA12CE-AC04-44E1-94C7-47C8E4FCD17E}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\106.0.1370.37\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

09-10-2022 19:00:13 Windows Zálohování

==================== Faulty Device Manager Devices ============

Name: USB Input Device(Consumer Control)
Description: USB Input Device(Consumer Control)
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: KYE Systems Corp.
Service: gKbdfltr
Problem: : The software for this device has been blocked from starting because it is known to have problems with Windows. Contact the hardware vendor for a new driver. (Code 48)
Resolution: Download the latest drivers from the manufacturer, uninstall the current driver, and then install the latest drivers.

Name: USB Input Device(Keyboard)
Description: USB Input Device(Keyboard)
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: KYE Systems Corp.
Service: gKbdfltr
Problem: : The software for this device has been blocked from starting because it is known to have problems with Windows. Contact the hardware vendor for a new driver. (Code 48)
Resolution: Download the latest drivers from the manufacturer, uninstall the current driver, and then install the latest drivers.


==================== Event log errors: ========================

Application errors:
==================
Error: (10/10/2022 10:00:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Vzum.exe, verze: 0.0.0.0, časové razítko: 0x9f672f65
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.2006, časové razítko: 0xa5d20e5c
Kód výjimky: 0xe0434352
Posun chyby: 0x0012cc12
ID chybujícího procesu: 0xc3ac
Čas spuštění chybující aplikace: 0x01d8dce21b33eb0d
Cesta k chybující aplikaci: E:\Stažené soubory\Vzum(2)\Vzum.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: c132a3a1-bb93-47ca-ac86-24df45222d42
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/10/2022 10:00:25 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: Vzum.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.IOException
na System.Net.Security.SslState.StartReadFrame(Byte[], Int32, System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.StartReceiveBlob(Byte[], System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.CheckCompletionBeforeNextReceive(System.Net.Security.ProtocolToken, System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.StartSendBlob(Byte[], Int32, System.Net.AsyncProtocolRequest, Boolean)
na System.Net.Security.SslState.ProcessReceivedBlob(Byte[], Int32, System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.StartReadFrame(Byte[], Int32, System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.StartReceiveBlob(Byte[], System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.CheckCompletionBeforeNextReceive(System.Net.Security.ProtocolToken, System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.StartSendBlob(Byte[], Int32, System.Net.AsyncProtocolRequest, Boolean)
na System.Net.Security.SslState.ProcessReceivedBlob(Byte[], Int32, System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.StartReadFrame(Byte[], Int32, System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.StartReceiveBlob(Byte[], System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.CheckCompletionBeforeNextReceive(System.Net.Security.ProtocolToken, System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.StartSendBlob(Byte[], Int32, System.Net.AsyncProtocolRequest, Boolean)
na System.Net.Security.SslState.ProcessReceivedBlob(Byte[], Int32, System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.StartReadFrame(Byte[], Int32, System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.StartReceiveBlob(Byte[], System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.CheckCompletionBeforeNextReceive(System.Net.Security.ProtocolToken, System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.StartSendBlob(Byte[], Int32, System.Net.AsyncProtocolRequest, Boolean)
na System.Net.Security.SslState.ProcessReceivedBlob(Byte[], Int32, System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.StartReadFrame(Byte[], Int32, System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.StartReceiveBlob(Byte[], System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.CheckCompletionBeforeNextReceive(System.Net.Security.ProtocolToken, System.Net.AsyncProtocolRequest)
na System.Net.Security.SslState.StartSendBlob(Byte[], Int32, System.Net.AsyncProtocolRequest, Boolean)
na System.Net.Security.SslState.ForceAuthentication(Boolean, Byte[], System.Net.AsyncProtocolRequest, Boolean)
na System.Net.Security.SslState.ProcessAuthentication(System.Net.LazyAsyncResult)
na System.Net.TlsStream.CallProcessAuthentication(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
na System.Net.TlsStream.ProcessAuthentication(System.Net.LazyAsyncResult)
na System.Net.TlsStream.Write(Byte[], Int32, Int32)
na System.Net.PooledStream.Write(Byte[], Int32, Int32)
na System.Net.ConnectStream.WriteHeaders(Boolean)

Informace o výjimce: System.Net.WebException
na System.Net.HttpWebRequest.GetResponse()
na Vzum.FileDownloader.GetCookieContainer()
na Vzum.FileDownloader.GetDownloadingFileResponse()
na Vzum.FileDownloader.ThreadCode()
na System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
na System.Threading.ThreadHelper.ThreadStart()

Error: (10/09/2022 11:48:17 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program firefox.exe verze 105.0.2.8311 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 284c

Čas spuštění: 01d8dbefbbf25c2c

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\Mozilla Firefox\firefox.exe

ID hlášení: 8eaef7e8-9075-4dd6-9f21-10252651d760

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Top level window is idle

Error: (10/09/2022 07:26:44 PM) (Source: Windows Backup) (EventID: 4104) (User: )
Description: Zálohování nebylo úspěšné. Chyba: Na této jednotce není dost místa pro uložení zálohy. Uvolněte místo odstraněním starších záloh a nepotřebných dat nebo změňte nastavení zálohování. (0x81000005).

Error: (10/09/2022 06:59:36 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (10/09/2022 04:59:18 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Program Files\Avast Software\Avast\aswToolsSvc.exe, identifikátor PID: 4320, identifikátor PID ProfSvc: 1836.

Error: (10/06/2022 09:46:20 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 2424, identifikátor PID ProfSvc: 1668.

Error: (10/06/2022 09:46:20 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Program Files\Avast Software\Avast\aswToolsSvc.exe, identifikátor PID: 4236, identifikátor PID ProfSvc: 1668.


System errors:
=============
Error: (10/09/2022 05:01:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (10/09/2022 05:01:35 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba NVIDIA LocalSystem Container byla ukončena s následující chybou:
Obecný spustitelný příkaz vrátil výsledek označující selhání.

Error: (10/09/2022 04:58:53 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): HP - Printer - 31.1.2001.9295.

Error: (10/09/2022 04:58:24 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \SystemRoot\System32\drivers\gKbdfltr.sys

Error: (10/09/2022 04:58:24 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \SystemRoot\System32\drivers\gKbdfltr.sys

Error: (10/07/2022 08:20:23 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Instalační služba modulů systému Windows byla ukončena s následující chybou:
%%16389

Error: (10/07/2022 01:18:42 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): HP - Printer - 31.1.2001.9295.

Error: (10/06/2022 12:33:46 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: NT AUTHORITY)
Description: F:\Device\HarddiskVolume133


Windows Defender:
================Event[0]:

Date: 2021-01-16 08:50:30
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 0.0.0.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 0.0.0.0
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2021-01-16 08:50:30
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 0.0.0.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 0.0.0.0
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2021-01-16 08:50:30
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 0.0.0.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 0.0.0.0
Kód chyby: 0x8024402c
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2021-01-16 08:42:50
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 0.0.0.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 0.0.0.0
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2021-01-16 08:42:50
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 0.0.0.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 0.0.0.0
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

CodeIntegrity:
===============
Date: 2022-10-11 04:58:59
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2022-10-10 18:58:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: AMI F.26 10/25/2018
Motherboard: HP 82F1
Processor: Intel(R) Core(TM) i5-7400 CPU @ 3.00GHz
Percentage of memory in use: 55%
Total physical RAM: 16312.7 MB
Available physical RAM: 7243.27 MB
Total Virtual: 18744.7 MB
Available Virtual: 4827.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:476.33 GB) (Free:298.34 GB) (Model: SAMSUNG MZ7LN512HAJQ-00000) NTFS
Drive e: () (Fixed) (Total:931.51 GB) (Free:35.58 GB) (Model: ST1000VN002-2EY102) NTFS
Drive f: (Elements) (Fixed) (Total:3725.99 GB) (Free:1449.22 GB) (Model: WD Elements 2621 USB Device) NTFS

\\?\Volume{33cd93b4-2052-4605-96e9-eea971263cda}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS
\\?\Volume{45bb97ba-9d7d-435c-8d76-4f7753cbce91}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: DE247BC7)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 1273DDBF)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Size: 3726 GB) (Disk ID: 16F2A91F)

Partition: GPT.

==================== End of Addition.txt =======================

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-10-10.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-11-2022
# Duration: 00:00:06
# OS: Windows 10 (Build 19044.2006)
# Scanned: 32098
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner[S00].txt - [2060 octets] - [20/02/2021 14:29:45]
AdwCleaner[C00].txt - [2118 octets] - [20/02/2021 14:30:31]
AdwCleaner[S01].txt - [1706 octets] - [04/03/2021 00:55:58]
AdwCleaner[C01].txt - [1859 octets] - [04/03/2021 00:56:32]
AdwCleaner[S02].txt - [1865 octets] - [11/03/2021 22:46:27]
AdwCleaner[C02].txt - [2018 octets] - [11/03/2021 22:46:54]
AdwCleaner[S03].txt - [1771 octets] - [15/03/2021 19:34:11]
AdwCleaner[S04].txt - [1832 octets] - [21/03/2021 21:30:10]
AdwCleaner[S05].txt - [1893 octets] - [06/04/2021 00:26:14]
AdwCleaner[S06].txt - [1954 octets] - [18/04/2021 16:20:10]
AdwCleaner[S07].txt - [2015 octets] - [22/04/2021 02:58:16]
AdwCleaner[S08].txt - [2077 octets] - [02/05/2021 08:01:21]
AdwCleaner[S09].txt - [2138 octets] - [13/05/2021 00:37:41]
AdwCleaner[S10].txt - [2199 octets] - [18/05/2021 00:55:31]
AdwCleaner[S11].txt - [2260 octets] - [24/05/2021 02:25:22]
AdwCleaner[S12].txt - [2321 octets] - [24/05/2021 02:25:34]
AdwCleaner[S13].txt - [2382 octets] - [04/07/2021 14:11:06]
AdwCleaner[S14].txt - [2443 octets] - [10/07/2021 17:26:21]
AdwCleaner[S15].txt - [2504 octets] - [16/07/2021 13:43:51]
AdwCleaner[S16].txt - [2565 octets] - [16/08/2021 01:18:18]
AdwCleaner[S17].txt - [2712 octets] - [14/10/2021 12:35:11]
AdwCleaner[C17].txt - [3043 octets] - [14/10/2021 12:36:01]
AdwCleaner[S18].txt - [2790 octets] - [19/10/2021 14:06:51]
AdwCleaner[C18].txt - [3141 octets] - [19/10/2021 14:08:20]
AdwCleaner[S19].txt - [2870 octets] - [15/11/2021 14:12:03]
AdwCleaner[S20].txt - [2931 octets] - [09/01/2022 22:23:58]
AdwCleaner[S21].txt - [2992 octets] - [10/02/2022 08:41:33]
AdwCleaner[S22].txt - [3053 octets] - [13/02/2022 21:12:03]
AdwCleaner[S23].txt - [3114 octets] - [17/02/2022 09:36:45]
AdwCleaner[S24].txt - [3175 octets] - [17/02/2022 09:37:23]
AdwCleaner[C24].txt - [3365 octets] - [17/02/2022 09:37:33]
AdwCleaner[S25].txt - [3525 octets] - [19/02/2022 21:11:54]
AdwCleaner[C25].txt - [3739 octets] - [19/02/2022 21:12:50]
AdwCleaner[S26].txt - [3419 octets] - [24/03/2022 22:19:34]
AdwCleaner[S27].txt - [3480 octets] - [10/04/2022 23:54:06]
AdwCleaner[S28].txt - [5938 octets] - [08/05/2022 21:38:52]
AdwCleaner[C28].txt - [5631 octets] - [08/05/2022 21:40:07]
AdwCleaner[S29].txt - [3663 octets] - [08/05/2022 21:44:42]
AdwCleaner[S30].txt - [3724 octets] - [08/05/2022 22:14:13]
AdwCleaner[S31].txt - [3785 octets] - [10/05/2022 02:12:34]
AdwCleaner[S32].txt - [3846 octets] - [18/05/2022 22:46:26]
AdwCleaner[S33].txt - [3907 octets] - [10/06/2022 02:20:16]
AdwCleaner[S34].txt - [3968 octets] - [10/06/2022 02:20:36]
AdwCleaner[S35].txt - [4029 octets] - [13/06/2022 01:42:06]
AdwCleaner[S36].txt - [4090 octets] - [17/06/2022 21:22:41]
AdwCleaner[C36].txt - [4280 octets] - [17/06/2022 21:22:48]
AdwCleaner[S37].txt - [4212 octets] - [27/06/2022 00:24:45]
AdwCleaner[S38].txt - [4273 octets] - [08/07/2022 07:26:45]
AdwCleaner[S39].txt - [4334 octets] - [14/07/2022 08:58:02]
AdwCleaner[S40].txt - [4395 octets] - [14/07/2022 08:58:31]
AdwCleaner[S41].txt - [4456 octets] - [24/07/2022 09:03:44]
AdwCleaner[S42].txt - [4517 octets] - [29/07/2022 21:18:33]
AdwCleaner[S43].txt - [4578 octets] - [29/07/2022 21:18:55]
AdwCleaner[S44].txt - [4639 octets] - [29/08/2022 07:02:56]
AdwCleaner[S45].txt - [4700 octets] - [29/08/2022 07:03:11]
AdwCleaner[S46].txt - [4775 octets] - [09/10/2022 23:56:18]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S47].txt ##########

Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\MountPoints2: {cde0f06a-84dc-11ec-9ff5-f49634e5fc94} - "F:\Lenovo_Suite.exe"
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\MountPoints2: {cde0f327-84dc-11ec-9ff5-f49634e5fc94} - "F:\HiSuiteDownLoader.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {03AF7E9C-A656-4AB5-8E30-076C02D64D44} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-01-16] (Google Inc -> Google LLC)
Task: {1ED5A862-8311-4D38-B9C3-A767A1B973CD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-01-16] (Google Inc -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\DumpStack.log.tmp
C:\Users\hp\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll -> No File
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll -> No File
ContextMenuHandlers1_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers4_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers5_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
AlternateDataStreams: C:\ProgramData\TEMP:A0CB5C3C [126]
FirewallRules: [TCP Query User{13228492-C68E-4ABD-9781-E7AC3C038E3A}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{23F474F3-D6CF-49C1-B587-CFFB6E863914}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{3547DEDC-913A-42C0-B621-602E4B80D5C6}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{A1F96B3F-57C3-44EF-9320-3676CE0A0CF3}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe => No File

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x64) Version: 11-10-2022
Ran by hp (11-10-2022 19:45:24) Run:1
Running from C:\Users\hp\Desktop
Loaded Profiles: hp
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\MountPoints2: {cde0f06a-84dc-11ec-9ff5-f49634e5fc94} - "F:\Lenovo_Suite.exe"
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\...\MountPoints2: {cde0f327-84dc-11ec-9ff5-f49634e5fc94} - "F:\HiSuiteDownLoader.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {03AF7E9C-A656-4AB5-8E30-076C02D64D44} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-01-16] (Google Inc -> Google LLC)
Task: {1ED5A862-8311-4D38-B9C3-A767A1B973CD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2021-01-16] (Google Inc -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\DumpStack.log.tmp
C:\Users\hp\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll -> No File
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll -> No File
ContextMenuHandlers1_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers4_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers5_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
AlternateDataStreams: C:\ProgramData\TEMP:A0CB5C3C [126]
FirewallRules: [TCP Query User{13228492-C68E-4ABD-9781-E7AC3C038E3A}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{23F474F3-D6CF-49C1-B587-CFFB6E863914}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{3547DEDC-913A-42C0-B621-602E4B80D5C6}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{A1F96B3F-57C3-44EF-9320-3676CE0A0CF3}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cde0f06a-84dc-11ec-9ff5-f49634e5fc94} => removed successfully
HKU\S-1-5-21-4110395000-121095619-2023355872-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cde0f327-84dc-11ec-9ff5-f49634e5fc94} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{03AF7E9C-A656-4AB5-8E30-076C02D64D44}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{03AF7E9C-A656-4AB5-8E30-076C02D64D44}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1ED5A862-8311-4D38-B9C3-A767A1B973CD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1ED5A862-8311-4D38-B9C3-A767A1B973CD}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
C:\Users\hp\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\FormatFactoryShell => removed successfully
HKLM\Software\Classes\CLSID\{A3888923-CFD3-4A6B-89BF-08E6B95716E8} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\FormatFactoryShell => removed successfully
HKU\.DEFAULT\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx => removed successfully
HKU\.DEFAULT\SOFTWARE\Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => removed successfully
HKU\.DEFAULT\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx => removed successfully
HKU\.DEFAULT\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ FileSyncEx => removed successfully
C:\ProgramData\TEMP => ":A0CB5C3C" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{13228492-C68E-4ABD-9781-E7AC3C038E3A}C:\program files (x86)\utorrent\utorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{23F474F3-D6CF-49C1-B587-CFFB6E863914}C:\program files (x86)\utorrent\utorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{3547DEDC-913A-42C0-B621-602E4B80D5C6}C:\program files (x86)\utorrent\utorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A1F96B3F-57C3-44EF-9320-3676CE0A0CF3}C:\program files (x86)\utorrent\utorrent.exe" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1048576 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 224595985 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 160540 B
Windows/system/drivers => 29549118 B
Edge => 0 B
Chrome => 332780676 B
Firefox => 1168428335 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 31090 B
NetworkService => 31090 B
hp => 701301298 B
defaultuser100000 => 701308466 B

RecycleBin => 8791352 B
EmptyTemp: => 3 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 11-10-2022 19:49:36)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 19:49:36 ====

Smazáno. Nastala nějaká změna?

Otestuji a dám vědět později. Díky moc a pošlu příspěvek.

OK.

Omlouvám se za pozdní odpověď. Bohužel problém zůstává. Popíšu podrobněji. Když mám na ploše otevřenou nějakou složku a v ní kliknu na nějaký soubor, napříklat jpg, tak se mě otevře úplně jiný soubor co je pod touto složkou nebo oknem, například na ploše. Další problém je, že nemohu dát do bloku, tzv zamodřit např. text nebo název souboru. Podaří se mě to až na několikátý pokus. Prostě průzkumník se chová nestardantně. V prohlížeči napřiklad na nějaké stránce chci zkopírovat část textu nebo větu, kurzorem zamodřím a pustím, tak mě ten blok zmizí když pustím myš, a nebo když tu myš pustím, tak mě to přehodí na nějakou úplně jinou cizí stránku webu.

Po instalaci čeho vám nastal tento problém?

Nejsem si vědom že bych něco instaloval. Možná proběhla nějaká aktualizace nějakého software na pozadí. Mám podezření jestli to nebude nějaký hardware. Vyměnil jsem myš. Nic. Dal příkaz sfc / scannow pro obnovení systémový prostředků. Nic. Ve zprávci zařízení vše ok. Dal jsem kontolu Avastu po restartu. Nic. MBAM. Nic. Online scaner Eset. Nic. Obnovu systému k datu, o kterém jsem se domníval že to ještě fungovalo. Nic. Popíšu největší problémy.
Otevřu složku kde mám jen videa.
1. Když chci dát do bloku (zamodření výběru)název souboru pro přejmenování, tak se mě to podaří někdy až na několikátý pokus.
2. Když už to mám v bloku a chci přejmenovat, tak to nefunguje a otevře se úplně jiné video ve složce.
3. Nejdou ani mazat soubory. Opět dám na několikátý pokus výběr souboru a zvolím odstranit, tak se neodstraní a spustí se jiné video ve složce. Prostě otravné.
4. Nejdou mě kopírovat texty nebo jejich části. Prostě se nedářím dát nic do bloku. Až na několikátý pokus, klidně 7 až 10.
Dělá to i v jiném prohlížeči.
A ještě jeden postřeh. Když jsem v prohlížeči na nějaké stránce a chci se vrátit o jednu stránku zpět kde jsem byl před momentem, tak se to nevrátí o krok zpět, ale úplně na jinou stránku.

Zkusíme ještě vyčistit prohlížeče. Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe , https://www.edisk.cz/stahni/21334/zoek.rar_1.3MB.html/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

Děkuji moc za snahu a ochotu. Vše udělám dle vašeho návodu. Ale možná už jsem přišel na příčinu problému.Sice mě to nedělalo dříve, ale v poslední době. Měl jsem souběžně zapojenou bluetooth myš a zároveň klasickou usb. Odpojil jsem včera tu bluetooth a problém okamžitě prozatím vyřešen. Aleděkuji za pomoc a čištění, které provedu. Vždy je dobré mít jistotu že tam není nějaká havěť.

Kdybyste tohle nestandardní zapojní oznámil hned, nemuseli bychom to takto složitě řešit. Ale nic, pro příště. Nemáte zač!

Na ten problém s myší jsem přišel až dnes. Jen mě to tak napadlo tu bluetooth vypnout. Za to se omlouvám. Myslel jsem, že je dobré otestovat přednostně comp ohledně nějaké havěti, než se pouštět do všech možných testů HW, což jsou procesy na dlouhé doby.
Pro jistotu jsem ještě udělal ty dva testy s logama.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by hp (Administrator) on 17.10.2022 at 11:27:10,92
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0




Registry: 2

Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 17.10.2022 at 11:29:47,41
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by hp on 17.10.2022 at 8:52:59,28.
Microsoft Windows 10 Home 10.0.19044 x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\hp\Desktop\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2022-05-09-082949.log 208469 bytes

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\Program Files\FolderSize deleted successfully
C:\Users\hp\AppData\Local\DBG deleted successfully
C:\Users\hp\AppData\Local\FTMod deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\prefs.js:
user_pref("browser.startup.homepage", "www.seznam.cz");
user_pref("browser.newtab.url", "https://securesearch.org/homepage?hp=2& ... 2022-05-08 07:21:08&iid=1f144dc4-68bd-43e3-949c-532a95b786c7&bName=");
user_pref("browser.search.defaultenginename", "Default Search Engine");
user_pref("browser.search.selectedEngine", "Default Search Engine");
user_pref("browser.search.suggest.enabled.private", true);

Added to C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\k904rfea.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Added to C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\k904rfea.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\hp\AppData\Roaming\Thunderbird\Profiles\o29m7lf7.default-release\prefs.js:

Added to C:\Users\hp\AppData\Roaming\Thunderbird\Profiles\o29m7lf7.default-release\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release

user.js not found
---- Lines SecureSearch removed from prefs.js ----
user_pref("browser.newtabpage.url", "https://securesearch.org/homepage?hp=2& ... 2022-05-08 07:21:08&iid=1f144dc4-68bd-43e3-949c-532a95b
---- Lines browser.startup.page removed from prefs.js ----
user_pref("browser.startup.page", 3);
---- FireFox user.js and prefs.js backups ----

prefs__0908_.backup

ProfilePath: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\k904rfea.default

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs__0908_.backup

ProfilePath: C:\Users\hp\AppData\Roaming\Thunderbird\Profiles\o29m7lf7.default-release

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs__0908_.backup

==== Deleting Files \ Folders ======================

C:\Users\hp\AppData\Roaming\WhatsApp deleted
C:\Users\hp\.android deleted
C:\Users\hp\AppData\Local\cache deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM25A46.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-10003d9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-10003db.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-10003ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-10003fe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-100040f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-1000421.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-1000442.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-1000454.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-1000456.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-1000468.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-1000479.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-100048b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-100049c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-10004ae.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-10004c0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-10004e1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-10004f3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-10004f5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1238-1ddc-1000506.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d7206.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d7218.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d7239.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d724a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d725c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d726e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d7270.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d7281.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d7283.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d7285.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d7297.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d7299.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d729b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d72ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d72be.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d72d0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d72e1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d7312.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1268-5a8-2d7324.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d0dd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d10e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d12f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d141.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d162.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d193.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d1b4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d1c6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d1e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d218.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d22a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d24b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d24d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d26e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d270.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d291.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d2b3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d2e4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-152c-2be4-34d2e6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-2403d7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-2403e8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-2403fa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-24041b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-24042d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-24043e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-240450.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-240462.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-240473.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-240485.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-240497.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-2404a8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-2404ba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-2404cb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-2404fc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-24050e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-240510.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-240512.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1734-1860-240524.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-1314a2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-1314b4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-1314c5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-1314c7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-1314d9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-1314eb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-1314ed.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-1314fe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-131500.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-131512.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-131514.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-131516.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-131528.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-13152a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-13153b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-13154d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-1315ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-13165a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1744-10f8-1316ab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-217174.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-217176.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-217197.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-217199.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-2171ca.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-2171eb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-21720c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-21722e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-21724f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-217251.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-217272.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-217293.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-217295.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-2172b7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-2172b9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-2172da.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-2172ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-2172ee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-19b0-25a8-2172f0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-225348.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-22534a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-22535c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-22535e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-225370.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-225381.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-225383.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-225385.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-225397.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-225399.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-22539b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-2253ac.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-2253ae.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-2253b0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-2253c2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-2253c4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-2253c6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-2253e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1aa8-7b0-225409.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a68db.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a68ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a68ee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a68f0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a6902.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a6904.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a6906.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a6918.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a691a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a691c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a692d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a692f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a6931.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a6933.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a6945.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a6947.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a6949.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a695a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ab0-2178-1a695c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90cc2b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90cc2d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90cc4e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90cc5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90cc90.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90ccb2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90ccb4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90ccc5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90ccc7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90ccc9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90ccea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90cd0c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90cd2d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90cd4e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90cd50.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90cd62.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90cd64.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90cd75.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1bd4-2fe4-90cd77.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fcd47.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fcd59.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fcd5b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fcd5d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fcd7e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fcd90.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fcd92.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fcd94.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fcda5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fcda7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fcda9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fcdcb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fcddc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fcdee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fce0f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fce30.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fce52.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fce63.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1e38-7c0-fce65.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-499296.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-4992a7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-4992b9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-4992ea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-4992ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-4992ee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-49930f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-499340.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-499361.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-499373.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-499384.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-4993a6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-4993b7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-4993b9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-4993ea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-4993fc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-49940d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-49942f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1ea4-154c-499450.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d39db.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d39dd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d39df.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d39f0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d3a02.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d3a14.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d3a35.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d3a37.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d3a48.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d3a5a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d3a7b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d3a8d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d3a8f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d3a91.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d3aa3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d3ab4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d3ab6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d3ab8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a0-3c28-d3aca.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d223.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d225.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d227.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d238.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d24a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d26b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d27d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d27f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d281.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d292.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d294.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d296.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d2b8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d2c9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d2cb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d2cd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d2df.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d2e1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22ac-3b4c-45d2f3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef5e3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef604.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef625.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef627.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef639.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef63b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef65c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef65e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef670.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef691.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef6b2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef6d3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef6d5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef6e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef6e9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef70a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef70c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef71e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2384-39f8-ef720.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a4b5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a4b7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a4c9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a4cb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a4dc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a4ee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a50f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a511.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a532.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a534.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a556.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a558.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a579.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a57b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a58c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a59e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a5a0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a5b2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2478-2d94-46a5c3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-1536f6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-1536f8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-153709.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-15370b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-15370d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-15371f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-153721.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-153723.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-153725.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-153736.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-153738.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-15374a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-15375c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-15376d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-15376f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-153771.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-153783.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-153785.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2484-1b68-153787.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0a26.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0a86.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0a97.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0a99.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0aab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0aad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0abf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0ac1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0ad2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0ad4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0ad6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0ae8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0aea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0afc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0b0d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0b0f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0b21.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0b23.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-265c-3594-f0b25.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97e79.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97e7b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97eab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97edc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97ede.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97f00.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97f21.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97f42.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97f54.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97f65.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97f67.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97f89.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97f9a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97f9c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97fae.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97fb0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97fc1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97fc3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2abc-2a78-97fd5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4e9b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4ead.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4eaf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4ec0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4ed2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4ee3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4f05.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4f16.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4f28.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4f3a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4f3c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4f5d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4f5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4f70.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4f82.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4f94.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4fa5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4fb7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2b9c-1f40-5c4fc9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-93769a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-93769c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-9376ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-9376af.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-9376c1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-9376c3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-9376c5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-9376d7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-9376d9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-9376ea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-9376ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-9376ee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-937700.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-937702.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-937704.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-937715.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-937717.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-937729.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bbc-3a8c-93772b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a17ab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a17bd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a17cf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a17f0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a1801.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a1813.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a1834.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a1846.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a1858.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a1879.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a189a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a18ac.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a18bd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a18cf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a18f0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a1921.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a1933.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a1944.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c2c-2724-a1956.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d62d1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d6302.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d6304.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d6316.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d6337.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d6377.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d6389.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d63aa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d63db.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d643b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d644d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d645e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d648f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d64a1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d64b2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d64c4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d64d6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d64d8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2d68-c38-1d6508.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-58222f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-582241.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-582272.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-582293.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-5822b4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-5822d6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-5822e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-5822f9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-5822fb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-5822fd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-58230e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-582310.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-582322.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-582324.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-582326.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-582338.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-58233a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-58237a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2da8-43fc-58239b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-ce8cd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-ce8cf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-ce8f0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-ce911.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-ce932.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-ce954.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-ce975.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-ce987.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-ce989.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-ce98b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-ce9ac.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-ce9cd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-ce9df.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-ce9e1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-ce9f2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-cea04.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-cea16.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-cea46.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e6c-2170-cea68.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-177973.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-177975.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-1779a6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-1779b8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-1779ba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-1779bc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-1779cd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-1779cf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-1779e1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-1779e3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-177a04.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-177a06.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-177a08.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-177a1a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-177a1c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-177a2e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-177a3f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-177a41.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e84-100c-177a53.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-412348.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-41236a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-41237b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-41238d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-41238f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-4123a1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-4123a3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-4123b4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-4123b6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-4123b8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-4123ca.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-4123cc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-4123dd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-4123df.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-4123f1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-4123f3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-412405.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-412407.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-3378-412409.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371493.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371503.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371572.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371b31.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371b71.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371b93.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371bb4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371bd5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371be7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371bf8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371c0a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371c0c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371c2d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371c4f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371c7f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371cb0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371cc2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371cd4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3058-3bac-371ce5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-39676d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-39677e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-396790.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-3967c1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-3967e2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-396813.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-396815.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-396827.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-396838.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-396859.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-39687b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-39689c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-3968ae.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-3968bf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-3968e0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-396902.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-396923.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-396935.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3530-34f0-396946.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad5cf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad5f0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad611.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad623.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad644.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad656.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad667.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad679.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad69a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad6bb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad6ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad70e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad72f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad760.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad791.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad7e1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad7e3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad7f4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-36b4-419c-9ad816.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-965d0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-965d2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-965e4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-965e6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-965e8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-965ea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-965fb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-965fd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-9660f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-96611.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-96623.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-96625.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-96627.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-96638.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-9663a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-9663c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-9664e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-96650.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3710-2cc4-96652.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0c63.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0c85.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0ca6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0cc7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0cd9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0cea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0cfc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0d1d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0d3f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0d50.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0d71.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0d93.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0db4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0dd5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0de7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0e08.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0e29.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0e4b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-37fc-3658-8d0e6c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e36bd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e371d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e373e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e376f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e3781.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e37a2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e37c3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e37e5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e3806.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e3827.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e3839.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e383b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e385c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e388d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e388f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e38a0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e38b2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e38c4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3c78-2798-2e38e5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e255.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e257.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e279.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e28a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e28c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e28e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e2a0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e2a2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e2b4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e2c5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e2c7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e2d9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e2ea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e2ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e2fe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e300.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e302.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e314.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3e00-3ec0-47e316.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad2ee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad30f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad331.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad352.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad373.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad394.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad3c5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad3c7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad3c9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad3db.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad3dd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad42d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad42f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad47f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad491.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad4a2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad4c4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad4d5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-403c-49cc-8ad4e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-791f41.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-791f43.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-791f64.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-791f85.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-791fa7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-791fc8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-791fe9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-791ffb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-79200c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-79201e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-79204f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-792060.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-792072.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-7920a3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-7920c4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-7920f5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-792116.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-792166.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-4930-3b24-792178.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f18a6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f18d7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f1907.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f1929.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f194a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f196b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f198c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f19ae.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f19b0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f19e1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f1a11.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f1a62.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f1ac1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f1b8e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f1bdf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f1c8c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f1ccd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f1d1d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-63c-37d4-4f1d9c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5d873a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5d992e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5d9c7c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5da6ce.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5dad0a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5db0a6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5db684.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5dba4f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5dbd10.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5dc01f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5dc13a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5dc2a4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5dc565.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5dc9eb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5dcdb6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5dce06.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5dd098.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5dd434.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-df0-125c-5dd61a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b776e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b7780.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b77a1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b77c3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b77c5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b77e6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b7807.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b7819.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b782a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b783c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b784e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b786f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b7880.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b7892.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b78a4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b78a6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b78b7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b78c9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e28-36f0-2b78ea.tmp deleted
"C:\ProgramData\UpdateLock-D78BF5DD33499EC2" deleted
"C:\DumpStack.log.tmp" not deleted
"C:\Users\hp\AppData\Roaming\uTorrent\uTorrent.exe" deleted
"C:\Users\hp\AppData\Roaming\uTorrent\updates\3.5.5_46206\utorrentie.exe" deleted
"C:\Users\hp\AppData\Local\Avast Software\Avast\datascan.json" not deleted
"C:\Users\hp\AppData\Roaming\uTorrent" deleted
"C:\Users\hp\AppData\Local\Avast Software" not deleted
"C:\Users\hp\AppData\Roaming\uTorrent\updates" deleted
"C:\Users\hp\AppData\Roaming\uTorrent\updates\3.5.5_46206" deleted
"C:\Users\hp\AppData\Local\Avast Software\Avast" not deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\k904rfea.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\hp\AppData\Roaming\Thunderbird\Profiles\o29m7lf7.default-release
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\hp\AppData\Roaming\Mozilla\Firefox\Profiles\icbt817x.default-release
- Undetermined - %ProfilePath%\extensions\@contain-google.xpi
- Undetermined - %ProfilePath%\extensions\bookmarksorganizer@agenedia.com.xpi
- Undetermined - %ProfilePath%\extensions\disable-html5-autoplay@afnankhan.xpi
- Undetermined - %ProfilePath%\extensions\FirefoxColor@mozilla.com.xpi
- Undetermined - %ProfilePath%\extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi
- Undetermined - %ProfilePath%\extensions\jid1-QoFqdK4qzUfGWQ@jetpack.xpi
- Undetermined - %ProfilePath%\extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi
- Undetermined - %ProfilePath%\extensions\languagetool-webextension@languagetool.org.xpi
- Undetermined - %ProfilePath%\extensions\s3@translator.xpi
- Undetermined - %ProfilePath%\extensions\Tab-Session-Manager@sienori.xpi
- Undetermined - %ProfilePath%\extensions\tineye@ideeinc.com.xpi
- Undetermined - %ProfilePath%\extensions\webpconverter@hilberteikelboom.nl.xpi
- Undetermined - %ProfilePath%\extensions\{07046613-1993-4b66-9dd1-9dd1ce581cb7}.xpi
- Undetermined - %ProfilePath%\extensions\{46785cc3-03e4-4591-8312-74782cd9ae6f}.xpi
- Undetermined - %ProfilePath%\extensions\{49756ccc-44ea-4661-bc1f-2baba64cca2f}.xpi
- Undetermined - %ProfilePath%\extensions\{5dcbc3c3-318a-4f86-9ae4-9bb4de536c7a}.xpi
- Undetermined - %ProfilePath%\extensions\{8f36e4f9-12b6-48d1-ad49-317c0b917478}.xpi
- Undetermined - %ProfilePath%\extensions\{adeadebb-fedc-4180-a7f4-cfdd87496551}.xpi
- Undetermined - %ProfilePath%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
- Undetermined - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
- Undetermined - %ProfilePath%\extensions\{d2bb4a2d-2bee-4fae-9f9c-7cab0d64ce13}.xpi

ProfilePath: C:\Users\hp\AppData\Roaming\Thunderbird\Profiles\o29m7lf7.default-release
- Undetermined - %ProfilePath%\extensions\cs3@dictionaries.addons.mozilla.org.xpi
- Undetermined - %ProfilePath%\extensions\cs@dictionaries.addons.mozilla.org.xpi

==== Firefox Plugins ======================


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
aegnopegbbhjeeiganiajffnalhlkkjb - No path found[]

Safe Torrent Scanner - hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb
Filmtoro - kde je film online - hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\elpopnockfmdhlkillehaopbnbodnkcd

==== Chromium Startpages ======================

C:\Users\hp\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
soft\\Edge\\Application\\101.0.1210.39\\resources\\cryptotoken","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":false,"was_installed_by_oem":false},"mhjfbmdgcfjbbpaeojofohoefgiehjai":{"active_permissions":{"api":["contentSettings","fileSystem","fileSystem.write","metricsPrivate","tabs","resourcesPrivate","fileSystem.readFullPath","errorReporting","edgeLearningToolsPrivate","fileSystem.getCurrentEntry","edgePdfToolbarPrivate","edgeCertVerifierPrivate"],"explicit_host":["edge://resources/*"],"manifest_permissions":[]},"commands":{},"content_settings":[],"creation_flags":1,"events":[],"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13296722939863124","location":5,"manifest":{"content_security_policy":"script-src 'self' 'wasm-eval' blob: filesystem: chrome://resources; object-src * blob: externalfile: file: filesystem: data:","description":"","incognito":"split","key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDN6hM0rsDYGbzQPQfOygqlRtQgKUXMfnSjhIBL7LnReAVBEd7ZmKtyN2qmSasMl4HZpMhVe2rPWVVwBDl6iyNE/Kok6E6v6V3vCLGsOpQAuuNVye/3QxzIldzG/jQAdWZiyXReRVapOhZtLjGfywCvlWq7Sl/e3sbc0vWybSDI2QIDAQAB","manifest_version":2,"mime_types":["application/pdf"],"mime_types_handler":"edge_pdf/index.html","name":"Microsoft Edge PDF Viewer","offline_enabled":true,"permissions":["errorReporting","chrome://resources/","contentSettings","metricsPrivate","edgeLearningToolsPrivate","resourcesPrivate","tabs",{"fileSystem":["write","readFullPath","getCurrentEntry"]}],"version":"1"},"path":"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\101.0.1210.39\\resources\\edge_pdf","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":false,"was_installed_by_oem":false},"ncbjelpjchkpbikbpkcchkhkblodoama":{"active_permissions":{"api":[],"manifest_permissions":[]},"commands":{},"content_settings":[],"creation_flags":1,"events":[],"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13296722939865825","location":5,"manifest":{"background":{"persistent":false,"scripts":["background.js"]},"externally_connectable":{"matches":["https://*.teams.microsoft.com/*","https://*.skype.com/*","https://*.teams.live.com/*"]},"incognito":"split","key":"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtAdFAR3ckd5c7G8VSzUj4Ltt/QRInUOD00StG95LweksGcLBlFlYL46cHFVgHHj1gmzcpBtgsURdcrAC3V8yiE7GY4wtpOP+9l+adUGR+cyOG0mw9fLjyH+2Il0QqktsNXzkNiE1ogW4l0h4+PJc262j0vtm4hBzMvR0QScFWcAIcAErlUiWTt4jefXCAYqubV99ed5MvVMWBxe97wOa9hYwAhbCminOepA4RRTg9eyi0TiuHpq/bNI8C5qZgKIQNBAjgiFBaIx9hiMBFlK4NHUbFdgY6Qp/hSCMNurctwz1jpsXEnT4eHg1YWXfquoH8s4swIjkFCMBF6Ejc3cUkQIDAQAB","manifest_version":2,"name":"WebRTC Internals Extension","permissions":["webrtcInternalsPrivate"],"version":"2.0.2"},"path":"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\101.0.1210.39\\resources\\webrtc_internals","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":false,"was_installed_by_oem":false},"nkeimhogjdpnpccoofpliimaahmaaome":{"active_permissions":{"api":["desktopCapture","processes","webrtcAudioPrivate","webrtcDesktopCapturePrivate","webrtcLoggingPrivate","system.cpu","enterprise.hardwarePlatform"],"manifest_permissions":[]},"commands":{},"content_settings":[],"creation_flags":1,"events":["runtime.onConnectExternal"],"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13309986287863490","location":5,"manifest":{"background":{"page":"background.html","persistent":false},"externally_connectable":{"matches":["https://*.google.com/*","https://*.teams.microsoft.com/*","https://*.teams.live.com/*","https://*.skype.com/*"]},"incognito":"split","key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDAQt2ZDdPfoSe/JI6ID5bgLHRCnCu9T36aYczmhw/tnv6QZB2I6WnOCMZXJZlRdqWc7w9jo4BWhYS50Vb4weMfh/I0On7VcRwJUgfAxW2cHB+EkmtI1v4v/OU24OqIa1Nmv9uRVeX0GjhQukdLNhAE6ACWooaf5kqKlCeK+1GOkQIDAQAB","manifest_version":2,"name":"WebRTC Extension","permissions":["desktopCapture","enterprise.hardwarePlatform","processes","system.cpu","webrtcAudioPrivate","webrtcDesktopCapturePrivate","webrtcLoggingPrivate"],"version":"1.3.19"},"path":"C:\\Program Files (x86)\\Microsoft\\Edge\\Application\\106.0.1370.37\\resources\\hangout_services","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":false,"was_installed_by_oem":false}}},"pinned_tabs":[],"protection":{"macs":{"browser":{"show_home_button":"7B18C08D7182476D0D0525308F63922ED76F613EB2D02D8D15042EB948F570DC"},"default_search_provider_data":{"template_url_data":"B87C80E709CB9939A427D8305FF174D779E7DA58FA43F849FBB8E37DFFD2ADDA"},"edge":{"services":{"account_id":"9DCEA6BBF9C044402FC8B5D0CF14E88ACE248B5807C5DAA8324F1C47190E1E80","last_account_id":"5C8F6F2DF6FF7A760D7B65E37FD8C066758802FB28A7050FA8617B96811860D9","last_username":"815CA0614BA41501868544B12832FFBC8EB51505F1D850497603872AD15C61E0"}},"extensions":{"settings":{"ampmimodbocknpfehkbdjolnnbongejb":"03B80D7B54C5DCC3348BA205E332F33A7C82B6FD999BEABDFD7A72DEE67CE002","dgiklkfkllikcanfonkcabmbdfmgleag":"CA526E5E6F94C298B8982E7FDF03C01CC6DFFD58ABCA8FEA487E5CCD8149937D","fikbjbembnmfhppjfnmfkahdhfohhjmg":"E9810793205DE9EE34754B3D13DE9360F45B926ABBD28AC78364BA915A5AE676","iglcjdemknebjbklcgkfaebgojjphkec":"9255311EC56381C27F582040BAFE0B7C8F0D5BA08EF18B129D99C050C14FF5E6","ihmafllikibpmigkcoadcmckbfhibefp":"95F976DEB12727CBA104A57526C6504BB8C63F08D98ADD1E600BDF29168A6FCD","jdiccldimpdaibmpdkjnbmckianbfold":"8770C2FF6624D49E5EF9E75C96D7D063508C1432D40FB5E29A300ABD2F7BE526","kmendfapggjehodndflmmgagdbamhnfd":"82AE6864CED486ADA719A4BB964FE72331DEA11B83D498734258F20874FD31CA","mhjfbmdgcfjbbpaeojofohoefgiehjai":"AC0BA14084C4D1B7C996CD8F6BD854BF9DBE0B3DABF62DAF74BDAC9B5800094D","ncbjelpjchkpbikbpkcchkhkblodoama":"D6B243C315F44B1ABDEFD535D1B934DAFEB8D15293394DA5845BB430A0E3131A","nkeimhogjdpnpccoofpliimaahmaaome":"9DD0F655CD2111AB1A9BE5C02E622A5CA1CC59CE99E649D270C19460ED277468"}},"homepage":"3CC506CA71E6352C655218058EB1B554D1097180954DF136F306D8827F11D204","homepage_is_newtabpage":"D20BF3C0598508EC2C199E08087D1979AE25D6EE39D45CCC237BE2D4A0009798","media":{"cdm":{"origin_data":"526B458EEE7291E46FD67BADAE9C81C3110A8A8CB80F188F2B0F90D50069A250"},"storage_id_salt":"CF6DB0F559D37489C1D175A010D5FF52ECBE185EF204D99FC46B357FABD05418"},"pinned_tabs":"E901048ACD57D89674B2A45D18E91E6E7906C375FFA24DFB63615066A7C4E567","prefs":{"preference_reset_time":"F40C3D4E7EE2D172E87BE0A2FB1682146F37C4E5387BF47E6CE25A79F7FAF456"},"safebrowsing":{"incidents_sent":"55CD57732023890CB76913988E600C81803D33D343CF59E3A4D44B47346A75F9"},"search_provider_overrides":"71B87468F7862EFA60AAD36C64DD4E273D99ACE979CD22A727FB7633CA7F5F25","session":{"restore_on_startup":"C14C3A734FF691F6FAE40DDB9E34440DF7EF51B20D8F4BA836D423A8BC1560D4","startup_urls":"CCFDD8C8BAF09285F9804696CFBF21288B0D243C5C74C87CA7296C8219B3551B"},"settings_reset_prompt":{"last_triggered_for_default_search":"DAAE08AD589EEDAF1B1737A4491D996502E7862EA3E484A5301623922845AF6D","last_triggered_for_homepage":"6C34A65226BAA605E08755D778ADAAB78F3F2D05CD4C3F04E70CFF24398ED53B","last_triggered_for_startup_urls":"3BD2AE6A327C7790F938C41AED82BC5E005A5542055A7F72E97412377E26FF25","prompt_wave":"D992701898CF2F736232B8BBECB8DB7B911C0662D7AF8F9989D086CB8B703211"},"software_reporter":{"prompt_seed":"F29190B4755B6F052F88B13A93C8DF9FD6FBF2F9E34619E11CE05E36BA187957","prompt_version":"B81D8D60EF66F973430F6F0B13EE3425D2ADB92C776FD484C1CFF6A0EA69AAEB","reporting":"EC07B7CFE132837DD439CA2318598C2AC60BE08E076E47947F636E9BD4562DEB"}},"super_mac":"9FA2D41D192F802D91C6FAB936CF1985BE1865148363ADDBF772D97A748E178B"}}


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IESR02"

==== Reset Google Chrome ======================

C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\hp\AppData\Local\Microsoft\Edge\User Data\Default\Preferences was reset successfully
C:\Users\hp\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences was reset successfully
C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\hp\AppData\Local\Microsoft\Edge\User Data\Default\Web Data was reset successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\hp\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\hp\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\hp\AppData\Local\Mozilla\Firefox\Profiles\icbt817x.default-release\cache2 will be emptied at reboot

==== Empty Chrome Cache ======================

C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\hp\AppData\Local\Microsoft\Edge\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2070 folders=2921 804631960 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\hp\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\DumpStack.log.tmp" not deleted
"C:\Users\hp\AppData\Local\Avast Software\Avast\datascan.json" not found
"C:\Users\hp\AppData\Local\Avast Software" not found

==== EOF on 17.10.2022 at 11:19:48,61 ======================