Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
OK. Změnilo se něco?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Ospravedlňujem, že až teraz reagujem.
Je to lepšie. Nejaké mrznutie pri otváraní programov (nereaguje) potom sa rozbehnú, inak OK.
Prosím, niečoho sa zbaviť ešte?
Ďakujem.
Vkladám log.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-02-2021 01
Ran by Seka (administrator) on SEKA-THINK (LENOVO 1143K4G) (18-02-2021 16:31:00)
Running from C:\Users\Seka\Desktop
Loaded Profiles: Seka
Platform: Windows 10 Home Version 20H2 19042.804 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Seka\AppData\Local\WebEx\ciscowebexstart.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Seka\AppData\Local\WebEx\WebEx\Meetings\atmgr.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(LENOVO -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowsstore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.740_none_e752aa59261f271f\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3936936 2015-07-28] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [SynLenovoHelper] => C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe [146600 2015-07-28] (Synaptics Incorporated -> Synaptics)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [175504 2020-10-26] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32721976 2021-02-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\Run: [CiscoMeetingDaemon] => C:\Users\Seka\AppData\Local\WebEx\ciscowebexstart.exe [2499272 2021-02-05] (Cisco WebEx LLC -> Cisco Webex LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\88.0.4324.182\Installer\chrmstp.exe [2021-02-17] (Google LLC -> Google LLC)
Lsa: [Notification Packages] scecli C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0D1886C8-5A6A-4C93-8D67-9C7AA0DEC3E6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27165752 2021-02-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0D69DC21-FA67-4AB9-821F-A976E242A3FC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {25D10F08-FE96-40E8-A34C-BFFD010C20B0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-02-16] (Piriform Software Ltd -> Piriform)
Task: {2A612207-D7AA-406E-B378-3602166945D2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142216 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {4F555DD1-E636-462E-AE29-1AE48D32E119} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [62152 2020-12-20] (Lenovo -> )
Task: {65F40312-0A09-4533-8877-5153EE8832B6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {A80A09B4-DB15-4C4C-B432-B8F37A83C5AE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {B13262BB-1926-4A9D-BE7A-8A8823B3241A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5199792 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD570226-CBEE-4E0A-8AFB-5C9CAB440FD6} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
Task: {DEDA310E-CF49-481B-ADF1-A4539C07DCDB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5199792 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {E09AF8B1-1426-4D61-89C8-657E240B552A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142216 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{f06c9e1d-6c66-4450-b99f-3ac97e98c758}: [DhcpNameServer] 192.168.100.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Seka\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-18]
Edge Extension: (Outlook) - C:\Users\Seka\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2021-02-09]
Edge Extension: (TotalСashback — кэшбэк-сервис) - C:\Users\Seka\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eofogjfkadmolbbmnlbohhbkhbodcjjm [2021-02-12]
Edge Extension: (Word) - C:\Users\Seka\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2021-02-09]
Edge Extension: (Excel) - C:\Users\Seka\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2021-02-09]
Edge Extension: (PowerPoint) - C:\Users\Seka\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2021-02-09]
Edge HKLM-x32\...\Edge\Extension: [eofogjfkadmolbbmnlbohhbkhbodcjjm]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-15] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default [2021-02-18]
CHR Extension: (Slides) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-02-09]
CHR Extension: (Docs) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-02-09]
CHR Extension: (Google Drive) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-02-09]
CHR Extension: (YouTube) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-02-09]
CHR Extension: (Sheets) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-02-09]
CHR Extension: (Google Docs Offline) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-02-09]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-09]
CHR Extension: (Gmail) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-02-09]
CHR Extension: (Chrome Media Router) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-09]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8905608 2021-02-03] (Microsoft Corporation -> Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\NisSrv.exe [2462960 2021-02-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MsMpEng.exe [128376 2021-02-11] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 5U877; C:\WINDOWS\system32\DRIVERS\5U877.sys [166016 2011-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Ricoh co.,Ltd.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [109360 2020-10-26] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15288 2020-10-22] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\System32\drivers\ekbdflt.sys [43720 2020-11-06] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [70048 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET)
S3 iwdbus; C:\WINDOWS\System32\drivers\iwdbus.sys [25496 2011-06-21] (Wireless Display -> Intel Corporation)
R2 risdxc; C:\WINDOWS\System32\drivers\risdxc64.sys [101888 2011-05-26] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-11-11] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49552 2021-02-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [419040 2021-02-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2021-02-11] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-18 16:31 - 2021-02-18 16:32 - 000014595 _____ C:\Users\Seka\Desktop\FRST.txt
2021-02-18 16:10 - 2021-02-18 16:10 - 000000000 ____D C:\Users\Seka\AppData\Local\mbam
2021-02-18 16:09 - 2021-02-18 16:09 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-02-15 09:27 - 2021-02-15 09:27 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2021-02-15 06:17 - 2021-02-15 06:17 - 000000000 ____D C:\Users\Seka\AppData\Roaming\webex
2021-02-15 06:16 - 2021-02-18 15:37 - 000000000 ____D C:\Users\Seka\AppData\Local\WebEx
2021-02-15 06:16 - 2021-02-15 06:17 - 000000000 ____D C:\Users\Seka\AppData\LocalLow\WebEx
2021-02-12 22:17 - 2021-02-12 22:17 - 000000000 ____D C:\Users\Seka\Documents\Vlastné šablóny balíka Office
2021-02-12 21:41 - 2021-02-12 21:41 - 000002467 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000002462 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000002461 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000002424 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000002418 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000002412 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000002404 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-02-12 21:40 - 2021-02-12 21:40 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2021-02-12 21:21 - 2021-02-12 21:41 - 000000000 ____D C:\Program Files\Microsoft Office
2021-02-12 21:21 - 2021-02-12 21:21 - 000000000 ____D C:\Program Files\Microsoft Office 15
2021-02-12 20:23 - 2021-02-12 21:01 - 000000000 ____D C:\Users\Seka\AppData\Local\SaraResults
2021-02-12 20:22 - 2021-02-12 20:22 - 000000000 ____D C:\Users\Seka\AppData\Local\SaRALogs
2021-02-12 20:19 - 2021-02-12 21:50 - 000000000 ____D C:\Users\Seka\AppData\Local\Deployment
2021-02-12 20:19 - 2021-02-12 20:19 - 000000000 ____D C:\Users\Seka\AppData\Local\Apps\2.0
2021-02-12 19:47 - 2021-02-18 16:05 - 000000000 ____D C:\Users\Seka\Documents\Súbory programu Outlook
2021-02-12 19:47 - 2021-02-12 19:47 - 000000000 ____D C:\Users\Seka\AppData\Roaming\ESET
2021-02-12 19:11 - 2021-02-12 19:11 - 000000000 ____D C:\Users\Seka\AppData\Local\D3DSCache
2021-02-12 16:54 - 2021-02-12 16:54 - 000000000 ____D C:\Users\Seka\AppData\Local\VS Revo Group
2021-02-12 16:54 - 2021-02-12 16:54 - 000000000 ____D C:\ProgramData\VS Revo Group
2021-02-12 15:56 - 2011-04-11 18:53 - 000000000 ____D C:\Users\Seka\Downloads\Browningová, Elisabeth Barett - Portugalské sonety (1974)
2021-02-12 15:41 - 2021-02-12 15:41 - 000002027 _____ C:\ProgramData\Desktop\ESET Ochrana online platieb.lnk
2021-02-12 15:41 - 2021-02-12 15:41 - 000000000 ____D C:\Users\Seka\AppData\Local\ESET
2021-02-12 15:39 - 2021-02-12 15:39 - 000000000 ____D C:\ProgramData\ESET
2021-02-12 15:39 - 2021-02-12 15:39 - 000000000 ____D C:\Program Files\ESET
2021-02-12 15:14 - 2021-02-12 15:23 - 000000000 ____D C:\totalcmd
2021-02-12 15:14 - 2021-02-12 15:14 - 000000694 _____ C:\Users\Seka\Desktop\Total Commander 64 bit.lnk
2021-02-12 15:14 - 2021-02-12 15:14 - 000000000 ____D C:\Users\Seka\AppData\Roaming\GHISLER
2021-02-12 15:14 - 2021-02-12 15:14 - 000000000 ____D C:\Users\Seka\AppData\Local\GHISLER
2021-02-12 11:51 - 2021-02-18 16:19 - 002298368 _____ (Farbar) C:\Users\Seka\Desktop\FRST64.exe
2021-02-12 11:51 - 2021-02-12 11:51 - 002297344 _____ (Farbar) C:\Users\Seka\Downloads\FRST64.exe
2021-02-12 11:16 - 2021-02-12 11:16 - 000000000 ____D C:\Users\Seka\AppData\Roaming\WinRAR
2021-02-12 11:15 - 2021-02-12 11:17 - 000000000 ____D C:\Program Files\WinRAR
2021-02-12 11:12 - 2021-02-12 11:12 - 000000000 ____D C:\Users\Default\AppData\Local\AdvinstAnalytics
2021-02-12 11:12 - 2021-02-12 11:12 - 000000000 ____D C:\Users\Default User\AppData\Local\AdvinstAnalytics
2021-02-12 11:12 - 2021-02-12 11:12 - 000000000 ____D C:\Program Files (x86)\AdvancedWindowsManager
2021-02-12 11:09 - 2021-02-12 11:30 - 000000000 ____D C:\Users\Seka\AppData\Local\AdvinstAnalytics
2021-02-12 11:01 - 2021-02-12 11:01 - 000782095 _____ C:\Users\Seka\Downloads\001398.pdf
2021-02-12 09:27 - 2021-02-12 09:27 - 000011718 _____ C:\Users\Seka\Downloads\Prerozdelene projektov_02_2021.xlsx
2021-02-11 17:17 - 2021-02-11 17:17 - 000136085 _____ C:\Users\Seka\Downloads\dopis_300842531_602557f098955.pdf
2021-02-11 17:14 - 2021-02-11 17:14 - 000066395 _____ C:\Users\Seka\Downloads\1604059150_sekulova_katarina.pdf
2021-02-09 20:09 - 2021-02-12 20:34 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-02-09 20:09 - 2021-02-09 20:09 - 000002135 _____ C:\ProgramData\Desktop\Acrobat Reader DC.lnk
2021-02-09 20:08 - 2021-02-09 20:08 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-02-09 20:07 - 2021-02-09 20:11 - 000000000 ____D C:\ProgramData\Adobe
2021-02-09 20:06 - 2021-02-11 16:37 - 000000000 ____D C:\Users\Seka\AppData\Local\Adobe
2021-02-09 19:43 - 2021-02-09 19:43 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-09 19:43 - 2021-02-09 19:43 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-02-09 19:03 - 2021-02-18 16:26 - 000000000 ____D C:\Program Files\CCleaner
2021-02-09 19:03 - 2021-02-18 16:16 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-02-09 19:03 - 2021-02-09 19:03 - 000002876 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-02-09 19:03 - 2021-02-09 19:03 - 000000874 _____ C:\ProgramData\Desktop\CCleaner.lnk
2021-02-09 18:49 - 2021-02-17 15:44 - 000002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-09 18:49 - 2021-02-17 15:44 - 000002229 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-02-09 18:48 - 2021-02-09 18:48 - 000000000 ____D C:\Program Files\Google
2021-02-09 18:48 - 2021-02-09 18:48 - 000000000 ____D C:\Program Files (x86)\Google
2021-02-09 18:44 - 2021-02-09 18:44 - 000002929 _____ C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-02-09 18:44 - 2021-02-09 18:44 - 000002919 _____ C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-02-09 18:44 - 2021-02-09 18:44 - 000002917 _____ C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-02-09 18:41 - 2021-02-12 16:48 - 000000000 ____D C:\Users\Seka\AppData\Local\BitTorrentHelper
2021-02-09 18:36 - 2021-02-14 01:42 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-09 18:36 - 2021-02-14 01:42 - 000002293 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-02-09 18:35 - 2021-02-11 16:34 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-09 18:35 - 2021-02-11 16:34 - 000003452 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-09 18:32 - 2021-02-09 18:32 - 000000000 ____D C:\Users\Seka\AppData\Local\OneDrive
2021-02-07 08:50 - 2021-02-07 08:50 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2021-02-05 20:42 - 2021-02-05 20:42 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-05 20:38 - 2021-02-09 19:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-02-05 18:10 - 2021-02-05 18:10 - 000000000 ____D C:\Users\Seka\AppData\Local\Comms
2021-02-05 17:56 - 2021-02-05 17:56 - 000000000 ___HD C:\OneDriveTemp
2021-02-05 17:55 - 2021-02-06 17:56 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4046335105-2706149465-2342894865-1000
2021-02-05 17:54 - 2021-02-09 19:00 - 000000000 ____D C:\Users\Seka\AppData\Local\Google
2021-02-05 17:53 - 2021-02-12 15:36 - 000000000 ____D C:\Users\Seka\AppData\Local\PlaceholderTileLogoFolder
2021-02-05 17:52 - 2021-02-05 17:52 - 000000000 ____D C:\Users\Seka\AppData\Roaming\ATI
2021-02-05 17:52 - 2021-02-05 17:52 - 000000000 ____D C:\Users\Seka\AppData\Local\MicrosoftEdge
2021-02-05 17:52 - 2021-02-05 17:52 - 000000000 ____D C:\Users\Seka\AppData\Local\ATI
2021-02-05 17:52 - 2021-02-05 17:52 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-02-05 17:52 - 2021-02-05 17:52 - 000000000 ____D C:\ProgramData\ATI
2021-02-05 17:49 - 2021-02-05 18:11 - 000000000 ____D C:\ProgramData\Packages
2021-02-05 17:49 - 2021-02-05 17:49 - 000000000 ____D C:\Users\Seka\AppData\Local\Publishers
2021-02-05 17:48 - 2021-02-12 19:53 - 000000000 ____D C:\Users\Seka\AppData\Local\Packages
2021-02-05 17:48 - 2021-02-09 20:10 - 000000000 ____D C:\Users\Seka\AppData\Roaming\Adobe
2021-02-05 17:48 - 2021-02-05 17:48 - 000000000 ____D C:\Users\Seka\AppData\Local\VirtualStore
2021-02-05 17:48 - 2021-02-05 17:48 - 000000000 ____D C:\Users\Seka\AppData\Local\Lenovo
2021-02-05 17:47 - 2021-02-09 18:21 - 000000000 ____D C:\Users\Seka\AppData\Local\ConnectedDevicesPlatform
2021-02-05 17:47 - 2021-02-05 17:47 - 000000020 ___SH C:\Users\Seka\ntuser.ini
2021-02-05 17:42 - 2021-02-05 17:42 - 000000000 _____ C:\WINDOWS\ativpsrm.bin
2021-02-05 17:34 - 2021-02-05 17:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2021-02-05 17:34 - 2021-02-05 17:34 - 000000000 ____D C:\ProgramData\Lenovo
2021-02-05 17:30 - 2021-02-09 19:56 - 000840598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-05 17:22 - 2021-02-06 17:56 - 000002363 _____ C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-05 17:22 - 2021-02-05 17:48 - 000000000 ____D C:\Users\Seka
2021-02-05 17:16 - 2020-12-20 22:57 - 005408968 _____ (Lenovo Group Limited) C:\WINDOWS\SysWOW64\PWMTR32V.dll
2021-02-05 17:16 - 2020-12-20 22:57 - 002351304 _____ (Lenovo Group Limited) C:\WINDOWS\SysWOW64\EasyResume.exe
2021-02-05 17:16 - 2020-12-20 22:57 - 000158920 _____ (Lenovo) C:\WINDOWS\SysWOW64\InstHelper.dll
2021-02-05 17:16 - 2020-12-20 22:57 - 000090312 _____ (Lenovo) C:\WINDOWS\SysWOW64\EventLogger.dll
2021-02-05 17:16 - 2020-12-20 22:57 - 000062152 _____ () C:\WINDOWS\SysWOW64\PowerMgrInst.exe
2021-02-05 17:15 - 2021-02-05 17:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2021-02-05 17:15 - 2021-02-05 17:15 - 000000000 ____D C:\Program Files\ATI Technologies
2021-02-05 17:14 - 2021-02-05 17:15 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2021-02-05 17:14 - 2021-02-05 17:14 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf
2021-02-05 17:14 - 2021-02-05 17:14 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_winusb_01009.Wdf
2021-02-05 17:14 - 2021-02-05 17:14 - 000000000 ____D C:\ProgramData\Package Cache
2021-02-05 17:13 - 2021-02-05 17:13 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2021-02-05 17:13 - 2021-02-05 17:13 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2021-02-05 17:13 - 2021-02-05 17:13 - 000000000 ____D C:\Program Files\AuthenTec
2021-02-05 17:13 - 2021-02-05 17:13 - 000000000 ____D C:\Program Files\AMD
2021-02-05 17:12 - 2021-02-05 17:12 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2021-02-05 17:12 - 2021-02-05 17:12 - 000000000 ____D C:\Program Files\CONEXANT
2021-02-05 17:09 - 2021-02-18 16:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-05 17:09 - 2021-02-11 16:36 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-02-05 17:06 - 2021-02-17 17:11 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-05 17:06 - 2021-02-12 20:16 - 000438936 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-05 17:03 - 2021-02-12 11:24 - 000000000 ____D C:\WINDOWS\Panther
2021-02-05 17:01 - 2021-02-05 17:42 - 000000000 ____D C:\Windows.old
2021-02-05 17:00 - 2021-02-05 17:00 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-02-05 16:56 - 2021-02-05 16:56 - 000000000 ____D C:\ProgramData\ssh
2021-02-05 16:45 - 2021-02-05 16:45 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-02-05 16:45 - 2021-02-05 16:45 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-02-05 16:45 - 2021-02-05 16:45 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2021-02-05 16:45 - 2021-02-05 16:45 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-02-05 16:45 - 2021-02-05 16:45 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-02-05 16:45 - 2021-02-05 16:45 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-02-05 16:44 - 2021-02-05 16:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-02-05 16:44 - 2021-02-05 16:44 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-02-05 16:44 - 2021-02-05 16:44 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-02-05 16:44 - 2021-02-05 16:44 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-02-05 16:44 - 2021-02-05 16:44 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2021-02-05 16:44 - 2021-02-05 16:44 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-02-05 16:44 - 2021-02-05 16:44 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-02-05 16:44 - 2021-02-05 16:44 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-02-05 16:44 - 2021-02-05 16:44 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-02-05 16:44 - 2021-02-05 16:44 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-02-05 16:44 - 2021-02-05 16:44 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll
2021-02-05 16:43 - 2021-02-05 16:43 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2021-02-05 16:43 - 2021-02-05 16:43 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-05 16:43 - 2021-02-05 16:43 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-02-05 16:43 - 2021-02-05 16:43 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2021-02-05 16:43 - 2021-02-05 16:43 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2021-02-05 16:43 - 2021-02-05 16:43 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2021-02-05 16:43 - 2021-02-05 16:43 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-02-05 16:43 - 2021-02-05 16:43 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-02-05 16:43 - 2021-02-05 16:43 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-02-05 16:43 - 2021-02-05 16:43 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2021-02-05 16:43 - 2021-02-05 16:43 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-02-05 16:43 - 2021-02-05 16:43 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-02-05 16:43 - 2021-02-05 16:43 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2021-02-05 16:42 - 2021-02-05 16:42 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-02-05 16:42 - 2021-02-05 16:42 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-02-05 16:42 - 2021-02-05 16:42 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-02-05 16:42 - 2021-02-05 16:42 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-02-05 16:42 - 2021-02-05 16:42 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-02-05 16:42 - 2021-02-05 16:42 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2021-02-05 16:42 - 2021-02-05 16:42 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb
2021-02-05 16:42 - 2021-02-05 16:42 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll
2021-02-05 16:42 - 2021-02-05 16:42 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-02-05 16:41 - 2021-02-05 16:41 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-02-05 16:41 - 2021-02-05 16:41 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-02-05 16:41 - 2021-02-05 16:41 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2021-02-05 16:41 - 2021-02-05 16:41 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2021-02-05 16:41 - 2021-02-05 16:41 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2021-02-05 16:40 - 2021-02-05 16:40 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-02-05 16:40 - 2021-02-05 16:40 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-02-05 16:40 - 2021-02-05 16:40 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-02-05 16:40 - 2021-02-05 16:40 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2021-02-05 16:40 - 2021-02-05 16:40 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2021-02-05 16:39 - 2021-02-05 16:39 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-02-05 16:39 - 2021-02-05 16:39 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-02-05 16:39 - 2021-02-05 16:39 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-02-05 16:39 - 2021-02-05 16:39 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2021-02-05 16:39 - 2021-02-05 16:39 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-02-05 16:39 - 2021-02-05 16:39 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-02-05 16:39 - 2021-02-05 16:39 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb
2021-02-05 16:38 - 2021-02-05 16:38 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-02-05 16:38 - 2021-02-05 16:38 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-02-05 16:38 - 2021-02-05 16:38 - 000707544 _____ C:\WINDOWS\system32\TextShaping.dll
2021-02-05 16:38 - 2021-02-05 16:38 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-02-05 16:38 - 2021-02-05 16:38 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-02-05 16:38 - 2021-02-05 16:38 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2021-02-05 16:38 - 2021-02-05 16:38 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2021-02-05 16:37 - 2021-02-05 16:37 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-02-05 16:37 - 2021-02-05 16:37 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-02-05 16:37 - 2021-02-05 16:37 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-02-05 16:37 - 2021-02-05 16:37 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2021-02-05 16:37 - 2021-02-05 16:37 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-02-05 16:22 - 2021-02-05 16:22 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-02-05 16:22 - 2021-02-05 16:22 - 000000000 ____D C:\Program Files\MSBuild
2021-02-05 16:22 - 2021-02-05 16:22 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-02-05 16:22 - 2021-02-05 16:22 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-02-05 16:21 - 2019-10-15 13:53 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2021-02-05 16:21 - 2019-04-18 18:49 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2021-02-05 16:14 - 2021-02-12 11:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Lenovo
2021-02-05 16:14 - 2021-02-12 11:38 - 000000000 ____D C:\WINDOWS\system32\Lenovo
2021-02-05 16:14 - 2021-02-05 16:14 - 000000000 ____D C:\Program Files\Synaptics
2021-02-05 16:12 - 2021-02-05 16:12 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-02-04 23:06 - 2021-02-17 15:34 - 000002147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-04 19:02 - 2021-02-04 19:21 - 000000000 ____D C:\KVRT_Data
2021-02-03 19:21 - 2021-02-18 16:31 - 000000000 ____D C:\FRST
2021-02-01 10:07 - 2021-02-01 10:07 - 002753606 _____ C:\Users\Seka\Downloads\Monitorovacia správa 1..pdf
2021-02-01 10:07 - 2021-02-01 10:07 - 002084967 _____ C:\Users\Seka\Downloads\Prílohy k monitorovacej správe 1.pdf
2021-02-01 10:07 - 2021-02-01 10:07 - 000615220 _____ C:\Users\Seka\Downloads\Personálna matica 2 - od 01.02.2021.pdf
2021-02-01 08:51 - 2021-02-01 08:51 - 000042228 _____ C:\Users\Seka\Downloads\Príloha 14_Personalna matica 4.xlsx
2021-02-01 07:25 - 2021-02-01 07:25 - 001559653 _____ C:\Users\Seka\Downloads\FW__ziadost_o_opravu_udajov_karta_ucastnika.zip
2021-02-01 07:25 - 2021-02-01 07:25 - 000049769 _____ C:\Users\Seka\Downloads\Zmeny v systéme finančného riadenia.pdf
2021-01-29 22:36 - 2021-01-29 22:36 - 000001332 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerXpress.lnk
2021-01-29 22:27 - 2021-02-18 16:21 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-29 06:39 - 2021-01-29 06:39 - 000020619 _____ C:\Users\Seka\Downloads\01-03-Veršíky-Jaro.odt
2021-01-28 15:44 - 2021-01-28 15:44 - 000000000 ___HD C:\$WinREAgent
2021-01-21 16:11 - 2021-01-21 16:30 - 000038400 _____ C:\Users\Seka\Documents\Priloha_c_2-Hlasenie-o-testovanych-osobach TABULKA_Sekulová.xls
2021-01-21 16:07 - 2021-01-21 16:07 - 000037888 _____ C:\Users\Seka\Downloads\Priloha_c_2-Hlasenie-o-testovanych-osobach TABULKA (3).xls
2021-01-21 15:43 - 2021-01-21 15:43 - 000037888 _____ C:\Users\Seka\Downloads\Priloha_c_2-Hlasenie-o-testovanych-osobach TABULKA (2).xls
2021-01-21 15:42 - 2021-01-21 15:42 - 000138583 _____ C:\Users\Seka\Downloads\POTVRDENIE AG TESTY (1).pdf
2021-01-21 15:40 - 2021-01-21 15:40 - 000037888 _____ C:\Users\Seka\Downloads\Priloha_c_2-Hlasenie-o-testovanych-osobach TABULKA (1).xls
2021-01-21 15:31 - 2021-01-21 15:31 - 000037888 _____ C:\Users\Seka\Downloads\Priloha_c_2-Hlasenie-o-testovanych-osobach TABULKA.xls
2021-01-21 15:29 - 2021-01-21 15:29 - 000138583 _____ C:\Users\Seka\Downloads\POTVRDENIE AG TESTY.pdf
2021-01-20 16:06 - 2020-11-11 03:54 - 000167280 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2021-01-19 17:31 - 2021-01-19 17:31 - 000188726 _____ C:\Users\Seka\Downloads\Orange_doklad_FR_202012_CN0308513803.pdf
2021-01-19 17:31 - 2021-01-19 17:31 - 000159410 _____ C:\Users\Seka\Downloads\Orange_doklad_FR_202011_CN0308513803 (1).pdf
2021-01-19 17:21 - 2021-01-19 17:21 - 000183865 _____ C:\Users\Seka\Downloads\Orange_doklad_FR_202006_CN0308513803.pdf
2021-01-19 17:17 - 2021-01-19 17:17 - 000187821 _____ C:\Users\Seka\Downloads\Orange_doklad_FR_202101_CN0308513803.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-18 16:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-02-18 16:28 - 2012-05-02 14:31 - 000000000 ____D C:\Users\Seka\Documents\zaloha ccleaner
2021-02-18 16:27 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-18 16:24 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-18 16:20 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-02-18 16:17 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-02-18 16:16 - 2016-11-12 09:40 - 000000000 ____D C:\Users\Seka\Downloads\XXX
2021-02-18 16:12 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-02-18 15:44 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-18 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-12 22:00 - 2016-10-26 19:53 - 000000000 ____D C:\Users\Seka\Documents\ZP 122 2016 2-i byt Kempelenova 11 K. Ves
2021-02-12 21:59 - 2012-07-02 17:29 - 000000000 ____D C:\Users\Seka\Documents\Zivotopis
2021-02-12 21:40 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-02-12 18:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-02-12 15:14 - 2012-07-12 17:32 - 000000000 ____D C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2021-02-12 14:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2021-02-12 11:15 - 2015-07-04 12:03 - 000000000 ____D C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-02-12 11:15 - 2015-07-04 12:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-02-09 19:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-09 19:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-09 19:48 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-09 19:47 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-09 18:42 - 2016-08-04 16:49 - 000000000 ___RD C:\Users\Seka\OneDrive
2021-02-06 04:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2021-02-05 19:49 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-02-05 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-02-05 18:06 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-02-05 17:48 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-05 17:48 - 2017-12-07 17:38 - 000000000 ___RD C:\Users\Seka\3D Objects
2021-02-05 17:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool
2021-02-05 17:42 - 2019-12-07 15:37 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2021-02-05 17:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-05 17:42 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2021-02-05 17:31 - 2019-06-21 16:47 - 000000000 ____D C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center
2021-02-05 17:31 - 2017-09-26 17:06 - 000000000 ___RD C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Azure Information Protection Viewer
2021-02-05 17:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-02-05 17:13 - 2016-08-04 16:12 - 000000000 ____D C:\AMD
2021-02-05 17:10 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-02-05 17:03 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-02-05 17:03 - 2019-03-13 18:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-02-05 17:03 - 2018-04-07 14:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Phone
2021-02-05 17:03 - 2015-10-30 15:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack 64bit
2021-02-05 17:03 - 2015-06-30 17:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2021-02-05 17:03 - 2015-06-10 20:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage
2021-02-05 17:03 - 2014-09-26 13:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Parhelia Tools
2021-02-05 17:03 - 2013-03-20 20:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2021-02-05 17:03 - 2012-05-14 16:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2021-02-05 17:03 - 2012-04-05 19:29 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2021-02-05 17:03 - 2012-04-05 19:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel
2021-02-05 17:03 - 2012-04-05 19:07 - 000000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2021-02-05 17:01 - 2018-02-22 10:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2021-02-05 17:01 - 2017-09-21 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2021-02-05 17:01 - 2015-05-18 21:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bentley
2021-02-05 16:56 - 2019-12-07 15:39 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-02-05 16:56 - 2019-12-07 15:39 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-02-05 16:53 - 2019-12-07 15:39 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-02-05 16:53 - 2019-12-07 15:39 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2021-02-05 16:23 - 2019-12-07 15:38 - 000000000 ____D C:\WINDOWS\OCR
2021-02-05 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-02-05 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-02-05 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-02-05 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-02-05 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-02-05 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-02-05 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-02-05 16:20 - 2019-12-07 15:36 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2021-02-05 16:20 - 2019-12-07 15:36 - 000000000 ____D C:\WINDOWS\system32\WCN
2021-02-05 15:40 - 2012-04-27 14:27 - 000000000 ____D C:\Users\Seka\AppData\LocalLow\Adobe
2021-02-04 21:04 - 2017-09-21 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2021-02-04 17:14 - 2019-10-03 16:53 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2021-02-03 22:31 - 2012-09-12 18:08 - 000000000 ____D C:\Users\Seka\Documents\My Games
2021-02-03 21:52 - 2012-05-02 16:32 - 000000000 ____D C:\Users\Seka\Games
2021-02-03 18:57 - 2016-06-27 15:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-02-2021 01
Ran by Seka (18-02-2021 16:39:21)
Running from C:\Users\Seka\Desktop
Windows 10 Home Version 20H2 19042.804 (X64) (2021-02-05 16:42:25)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-4046335105-2706149465-2342894865-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4046335105-2706149465-2342894865-503 - Limited - Disabled)
Guest (S-1-5-21-4046335105-2706149465-2342894865-501 - Limited - Disabled)
Seka (S-1-5-21-4046335105-2706149465-2342894865-1000 - Administrator - Enabled) => C:\Users\Seka
WDAGUtilityAccount (S-1-5-21-4046335105-2706149465-2342894865-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 21.001.20138 - Adobe Systems Incorporated)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
CCleaner (HKLM\...\CCleaner) (Version: 5.77 - Piriform)
Cisco Webex Meetings (HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\ActiveTouchMeetingClient) (Version: 41.2.4 - Cisco Webex LLC)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.32.27.0 - Conexant)
ESET Security (HKLM\...\{3B47BDC5-99BF-4F5C-A303-1F0F9DBC74F6}) (Version: 14.0.22.0 - ESET, spol. s r.o.)
Excel (HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 88.0.4324.182 - Google LLC)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.10.15 - Lenovo)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.68 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.141.59 - )
Microsoft Office 2016 Professional Plus - sk-sk (HKLM\...\ProPlusRetail - sk-sk) (Version: 16.0.13628.20380 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\OneDriveSetup.exe) (Version: 21.002.0104.0005 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{143E35D3-F0A4-4E90-96C9-B1B72F11343A}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13628.20380 - Microsoft Corporation) Hidden
PowerPoint (HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.16.0 - Synaptics Incorporated)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
WinRAR 6.00 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
Word (HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)
Packages:
=========
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-02-05] (Microsoft Studios) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm
ShortcutWithArgument: C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf
ShortcutWithArgument: C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi
==================== Loaded Modules (Whitelisted) =============
2021-02-11 17:00 - 2021-02-11 17:00 - 000031232 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\A4.Foundation\299bf2e4e23af02175445e6a26f183b3\A4.Foundation.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\a24c26eba4ea3ddce65e74fa4668e293\AEM.Actions.CCAA.Shared.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\b1c480fea6a1f23d52c3e56efa0e3568\AEM.Plugin.EEU.Shared.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\ab84ec371d67664b2b3835984aa2dce2\AEM.Plugin.Hotkeys.Shared.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.54d8abe3#\067d1b4cc2a05184c6e0a89aaee60af6\AEM.Plugin.DPPE.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000281600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\e6806d3dfa2372f274fedc400ecaea29\AEM.Plugin.Source.Kit.Server.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\20e43f89b55b6c6d58c04b22890cbbc3\AEM.Plugin.WinMessages.Shared.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\2cb21aaa54b1116e4ceda042a9d4ce1e\AEM.Plugin.REG.Shared.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\a0c3b8ce9c35481a6521f517227bbbe2\AEM.Plugin.GD.Shared.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\6cfd22563e0e2c727f094a3de46cf569\AEM.Server.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000267776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server\8e824043be59343847600763c50d6229\AEM.Server.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000055808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Foundation\8b0dfc591b480594610bbaa94430d4db\APM.Foundation.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000122880 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ATICCCom\4f9523253033d141734969c0866c932c\ATICCCom.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000204288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\af1df7a28635d8dc2019da4ad419ebaa\CCC.Implementation.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000154112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.21d2ac78#\d18e017d86840cf4e291065a203bf595\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000128000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\c473afacd64a10cb325e6c9ac524f824\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\1de0b258089f746ad04d1233cf969b29\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\dd5cc863637abdfb436e9ceaee87b61a\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000107008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\119e8f5a6e9313af4844f1cb23d04601\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.46819220#\bf72cdb8017728ac2915993a05842fee\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\ec62501776136c97cc7f8ede3f99c6d9\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\7ee8d68f2500cbf06d0e1339d0509d76\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.59a12d95#\ea99ad5efa6b77f631f17f3f6514113d\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\b25d1017d66178bbb77c5038da1e5327\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000365056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\e51ade072914adc16c9cc1a4eb929b0b\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000064000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\af53ba99fab78381ec29e55adfd889b7\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000678912 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.846fa813#\1946be912a1389e3b2e8e684bdb2c6fa\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000745472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\528e8766b99ec47ea476e036a210492b\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000449536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\b3107cf758db9f29066e5548859e950a\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\6d4486fb59307bec3ac8923aebc72ef1\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\ebccb64be88b1b07b48f2652531555a7\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000082944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\e7f1c1a772858f2bc0d52f6c35e98cf6\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000462336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\59f37443a686efbf0c52772f1db24e0e\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000067072 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\12c979ab0dac8ba20586fa52ec4c5cef\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000340992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\3e009bed5e4d5046f36f132a1b75aa95\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\e62039c5f426da0d2aa0415ba6806c9e\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000096256 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.d4f2f79c#\73b0f1411d421cf80be838629e17ed37\CLI.Aspect.CrossFireX.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000276480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\b0e1ae0abff9a1471337ff4e5cb5f5f6\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 003312640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\4c50ca884ddb173946e52d51eeb28571\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000240640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\44b63310c195cfc86fdc7b385b24d1af\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000047616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\2597fa5cfc6bbd186558dd3ddb3875f3\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\0e5e46fe8262765fc01f531393cea826\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000051200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\1b793612380f60d287e5c5f86122e89c\CLI.Caste.A4.Runtime.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\0f047cf9e2239851a811b935d7b109d0\CLI.Caste.A4.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\ad42a31ed395b0ecbe316f65491d24af\CLI.Caste.A4.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\756be47d421c14309af0c8d9dddc6a29\CLI.Caste.Fuel.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000311296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\237f6779fe63e0a2c1d282dcaae5138d\CLI.Caste.Fuel.Runtime.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\9da73010c1ac2627c98cd659770a1f1e\CLI.Caste.Fuel.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\a5e2e36025e5e42aeff913bbda1aa6d6\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 001555456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\d9023f90cb9c233a1ef9d29afe619a5d\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000587776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\2c859919bad3bef7b22e820c8331e258\CLI.Caste.Graphics.Dashboard.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\67666baee565c9b0f6a67df38462c2f3\CLI.Caste.HydraVision.Runtime.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\be62787dd2bab6bbe758bb473b72c8e4\CLI.Caste.HydraVision.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\c0e53f1337994c1667cf8986471b8253\CLI.Caste.HydraVision.Dashboard.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\0552c276520bab46992e3d931c858708\CLI.Caste.Platform.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\753c0337e60bbef84ae2e4d415b423f7\CLI.Caste.Platform.Runtime.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\8cc70011780cd7107d94671bcc46c204\CLI.Caste.Platform.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\0619ae2c3e8cc53377fbecef51f243ed\CLI.Component.Runtime.Shared.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000901632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\dfff39149c8e27593d1a824546fc918b\CLI.Component.Systemtray.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000173568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\197bf5cf7fb1b4891e579ec04e9eef33\CLI.Component.Dashboard.ProfileManager2.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\780c8bd8339ff2def14b0207cd808a3b\CLI.Component.Runtime.Shared.Private.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\c2b5ee81f835f248ac92e192a11b37f2\CLI.Component.Runtime.Extension.EEU.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 001609728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\e0ac251c51c9ce70532e3b80d17036b1\CLI.Component.Dashboard.Shared.Private.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\5627e1355102d34ea0fb784888ab8e34\CLI.Component.Client.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\007e57a69242e84ff334564a788165c0\CLI.Component.Dashboard.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000495104 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Component.Eeu\729b0074739149770459424c54b32cfe\CLI.Component.Eeu.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000089600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\a0a2b615cdc294c7d3af29f42d6f3369\CLI.Foundation.Private.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\4e50f43f222133081bca51d4ec374497\CLI.Foundation.XManifest.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000091136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\bcdee5c6fe25466f8c29767f6b2b1294\CLI.Foundation.CoreAudioAPI.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 001079808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\e71d9ac8050ddbc61de0d405425ffb71\CLI.Foundation.Client.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\f427fb4249819cdad708ab341925f176\CLI.Foundation.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\5d12a5ba7cfcf92e2bdedb9c65064c74\DEM.Foundation.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000115200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\5658790b6d8ee4f840d1ca57866316ce\DEM.Graphics.I0601.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\dfa1099aca23fc47444238db01432d1e\DEM.Graphics.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\7224c4f48b25b446a37e68bf70496628\Fuel.Foundation.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000296960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\e8caa0b0ef82e5f8b64cc8d85740b649\LOG.Foundation.Implementation.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\bb140c3f749aad3e194c37b732486584\LOG.Foundation.Private.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\941a6700366b94ec64b62cc506f95d74\LOG.Foundation.Implementation.Private.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\14a13de1f3708f74c0de29e5d486a6de\LOG.Foundation.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\c718fcd8c25b703ccad4cb802f9c7dca\MOM.Foundation.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000402944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\942416935b21cacc907f56d100506704\MOM.Implementation.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\ae9a13269043d55e4140d5868270661d\NEWAEM.Foundation.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\79c00831b1c30bf18fb586d85535361d\ADL.Foundation.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000256000 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Server\11725f354a5e8c6ce052906bd4a8e5e8\APM.Server.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000783872 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.79734f7a#\ee4275611386e7caa8525721f42d22b6\CLI.Aspect.PowerXpress.Graphics.Runtime.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000357888 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b3da5a8f#\8115c9f4be5c153a71dc876fbb8dd313\CLI.Aspect.PowerXpress.Graphics.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000595456 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.d4846ba2#\4b2f4a30c7c2dd195fd6e39df3e80028\CLI.Aspect.PowerXpress.Graphics.Dashboard.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 008027648 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\9290d5fffa3771fc564d5a494bbaef80\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000136704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\4a1483e26ec981cde398a218ac363ad1\CLI.Component.Client.Shared.Private.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000234496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\e6ebbe99ad169505a7b1614029784799\CLI.Component.Runtime.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000929280 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\de0138b3d17f3b789606957fedfe666f\CLI.Component.Dashboard.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000011264 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0702\b412bf450c79457c9c6e02719fef3a99\DEM.Graphics.I0702.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000084480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\5252f14189e3677767b454164fb541cf\DEM.Graphics.I0709.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000009728 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0710\8eeed39b8e461125c3b64ec004190ba5\DEM.Graphics.I0710.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000012288 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\5e93aedbce33eb9d7f84de52de38623c\DEM.Graphics.I0712.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000018432 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\aa9984e9a16523bb1fd71b855c687aa6\DEM.Graphics.I0804.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000009728 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0901\2fe32ec8719bc5e139d20434f117fd6f\DEM.Graphics.I0901.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0906\58c6e0a82fa1629f5583fd56b7323d3c\DEM.Graphics.I0906.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000035840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\4fe945ea0f126bb4dccba474e3ee74dd\DEM.Graphics.I1010.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 001139200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\850f9ba397907bdd65f8b39b38d30802\Localization.Foundation.Private.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000244736 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\728cdf3754ae85033dd79ad186800036\ResourceManagement.Foundation.Implementation.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\1c70dcc4229d6020dee4a1dec7d82013\ResourceManagement.Foundation.Private.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000091648 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\cf90b853c4e28581c7cc59c5383c17ba\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 002845696 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\279fe6e0d04379447e1fe91e00e0f1ab\CLI.Caste.Graphics.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 003268096 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\38fb846f3a344f93b10dfd7394da66e1\CLI.Caste.Graphics.Runtime.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000335360 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\4f0fd874313da401477c46c3cec85dc9\Microsoft.WindowsAPICodePack.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 002546688 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\a8c5a476b51666456f23a36508ee97da\Microsoft.WindowsAPICodePack.Shell.ni.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\Control Panel\Desktop\\Wallpaper -> c:\users\seka\pictures\black-hole-space-4k.jpg
DNS Servers: 192.168.100.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\StartupApproved\Run: => "CiscoMeetingDaemon"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{6765EB1E-74DF-4E8B-86D1-2E6ECE106E8D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{12102B25-2467-499E-963D-976739FBF789}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7FC152BE-DAE9-45B6-A9D3-B9B1C6C0D1A0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{20589F5B-F5A0-4177-9D25-B55E3CFEE62D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BE50319F-CAB1-44D8-A462-CF0D7C3E1FDD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9F4D7D38-54F1-442A-A2F0-15CEE432B227}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4B7C58CF-D505-4139-9BC4-BE8EADC827CB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FEC12BE6-D5F2-4466-8904-88AC70CB3B60}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E3DB89A9-39C9-4286-AB5C-A964D4AC9C5B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DBA6FB0A-45D2-4F46-9482-F014118A3B3E}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
System errors:
=============
Error: (02/18/2021 04:22:32 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.
Error: (02/18/2021 04:21:09 PM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT AUTHORITY)
Description: The password notification DLL C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll failed to load with error 126. Please verify that the notification DLL path defined in the registry, HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages, refers to a correct and absolute path (<drive>:\<path>\<filename>.<ext>) and not a relative or invalid path. If the DLL path is correct, please validate that any supporting files are located in the same directory, and that the system account has read access to both the DLL path and any supporting files. Contact the provider of the notification DLL for additional support. Further details can be found on the web at http://go.microsoft.com/fwlink/?LinkId=245898.
Error: (02/18/2021 04:20:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Windows Search zlyhalo kvôli nasledujúcej chybe:
The service did not start due to a logon failure.
Error: (02/18/2021 04:20:15 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Službe WSearch sa nepodarilo s aktuálne nakonfigurovaným heslom prihlásiť ako NT AUTHORITY\SYSTEM kvôli nasledujúcej chybe:
The request is not supported.
Ak chcete zabezpečiť správne nakonfigurovanie služby, použite modul Služby konzoly MMC (Microsoft Management Console).
Error: (02/18/2021 04:19:56 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Lenovo PM Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.
Error: (02/18/2021 04:19:45 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office Klikni a spusti sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 2 krát. O 0 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.
Error: (02/18/2021 04:19:45 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 30000 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.
Error: (02/18/2021 04:17:43 PM) (Source: DCOM) (EventID: 10000) (User: SEKA-THINK)
Description: Unable to start a DCOM Server: {0358B920-0AC7-461F-98F4-58E32CD89148}. The error:
"2147942767"
Happened while starting this command:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Windows Defender:
===============
Date: 2021-02-12 15:12:53
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: App:Utorrent
ID: 268641
Severity: Nízka
Category: Potenciálne nežiaduci softvér
Path: file:_C:\Users\Seka\Downloads\uTorrent (1).exe; file:_C:\Users\Seka\Downloads\uTorrent.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Windows\explorer.exe
Security intelligence Version: AV: 1.331.830.0, AS: 1.331.830.0, NIS: 1.331.830.0
Engine Version: AM: 1.1.17800.5, NIS: 1.1.17800.5
Date: 2021-02-12 15:12:40
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: App:Utorrent
ID: 268641
Severity: Nízka
Category: Potenciálne nežiaduci softvér
Path: file:_C:\Users\Seka\Downloads\uTorrent.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Windows\explorer.exe
Security intelligence Version: AV: 1.331.830.0, AS: 1.331.830.0, NIS: 1.331.830.0
Engine Version: AM: 1.1.17800.5, NIS: 1.1.17800.5
Date: 2021-02-12 12:03:25
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: App:Utorrent
ID: 268641
Severity: Nízka
Category: Potenciálne nežiaduci softvér
Path: file:_C:\Users\Seka\Downloads\uTorrent.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Windows\explorer.exe
Security intelligence Version: AV: 1.331.815.0, AS: 1.331.815.0, NIS: 1.331.815.0
Engine Version: AM: 1.1.17800.5, NIS: 1.1.17800.5
Date: 2021-02-12 12:02:07
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: PUA:Win32/CandyOpen
ID: 213956
Severity: Nízka
Category: Potenciálne nežiaduci softvér
Path: containerfile:_C:\Users\Seka\Downloads\uTorrent.exe; file:_C:\Users\Seka\Downloads\uTorrent.exe->(UPX)
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Users\Seka\Desktop\FRST64.exe
Security intelligence Version: AV: 1.331.815.0, AS: 1.331.815.0, NIS: 1.331.815.0
Engine Version: AM: 1.1.17800.5, NIS: 1.1.17800.5
Date: 2021-02-12 11:24:48
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: PUA:Win32/LittleRegClean
ID: 227480
Severity: Nízka
Category: Potenciálne nežiaduci softvér
Path: file:_C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe; file:_C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Program Files\CCleaner\CCleaner64.exe
Security intelligence Version: AV: 1.331.815.0, AS: 1.331.815.0, NIS: 1.331.815.0
Engine Version: AM: 1.1.17800.5, NIS: 1.1.17800.5
Event[0]:
Date: 2021-02-07 10:58:05
Description:
Microsoft Defender Antivirus has encountered an error trying to load security intelligence and will attempt reverting back to a known-good version.
Security intelligence Attempted: Backup
Error Code: 0x80004004
Error description: Operation aborted
Security intelligence version: 1.331.374.0;1.331.374.0
Engine version: 1.1.17800.5
Date: 2021-02-07 10:58:02
Description:
Microsoft Defender Antivirus has encountered an error trying to load security intelligence and will attempt reverting back to a known-good version.
Security intelligence Attempted: Current
Error Code: 0x80004004
Error description: Operation aborted
Security intelligence version: 1.331.384.0;1.331.384.0
Engine version: 1.1.17800.5
CodeIntegrity:
===============
Date: 2021-02-18 16:24:49
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: LENOVO LENOVO - 125 03/01/2013
Motherboard: LENOVO 1143K4G
Processor: Intel(R) Core(TM) i3-2350M CPU @ 2.30GHz
Percentage of memory in use: 84%
Total physical RAM: 4007.23 MB
Available physical RAM: 640.31 MB
Total Virtual: 4711.23 MB
Available Virtual: 1216.01 MB
==================== Drives ================================
Drive c: (Windows7_OS) (Fixed) (Total:447.85 GB) (Free:239.68 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive q: (Lenovo_Recovery) (Fixed) (Total:15.62 GB) (Free:4.24 GB) NTFS
\\?\Volume{0751cdc4-7f48-11e1-b9a7-806e6f6e6963}\ (SYSTEM_DRV) (Fixed) (Total:1.46 GB) (Free:1.12 GB) NTFS
\\?\Volume{ccd2e061-0000-0000-0000-005470000000}\ () (Fixed) (Total:0.82 GB) (Free:0.27 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: CCD2E061)
Partition 1: (Active) - (Size=1.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=447.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=842 MB) - (Type=27)
Partition 4: (Not Active) - (Size=15.6 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Je to lepšie. Nejaké mrznutie pri otváraní programov (nereaguje) potom sa rozbehnú, inak OK.
Prosím, niečoho sa zbaviť ešte?
Ďakujem.
Vkladám log.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-02-2021 01
Ran by Seka (administrator) on SEKA-THINK (LENOVO 1143K4G) (18-02-2021 16:31:00)
Running from C:\Users\Seka\Desktop
Loaded Profiles: Seka
Platform: Windows 10 Home Version 20H2 19042.804 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Seka\AppData\Local\WebEx\ciscowebexstart.exe
(Cisco WebEx LLC -> Cisco Webex LLC) C:\Users\Seka\AppData\Local\WebEx\WebEx\Meetings\atmgr.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(LENOVO -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowsstore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.740_none_e752aa59261f271f\TiWorker.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Synaptics Incorporated -> Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3936936 2015-07-28] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [SynLenovoHelper] => C:\Program Files\Synaptics\SynTP\SynLenovoHelper.exe [146600 2015-07-28] (Synaptics Incorporated -> Synaptics)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [175504 2020-10-26] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32721976 2021-02-16] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\Run: [CiscoMeetingDaemon] => C:\Users\Seka\AppData\Local\WebEx\ciscowebexstart.exe [2499272 2021-02-05] (Cisco WebEx LLC -> Cisco Webex LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\88.0.4324.182\Installer\chrmstp.exe [2021-02-17] (Google LLC -> Google LLC)
Lsa: [Notification Packages] scecli C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0D1886C8-5A6A-4C93-8D67-9C7AA0DEC3E6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27165752 2021-02-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0D69DC21-FA67-4AB9-821F-A976E242A3FC} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {25D10F08-FE96-40E8-A34C-BFFD010C20B0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-02-16] (Piriform Software Ltd -> Piriform)
Task: {2A612207-D7AA-406E-B378-3602166945D2} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142216 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {4F555DD1-E636-462E-AE29-1AE48D32E119} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [62152 2020-12-20] (Lenovo -> )
Task: {65F40312-0A09-4533-8877-5153EE8832B6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22993800 2021-02-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {A80A09B4-DB15-4C4C-B432-B8F37A83C5AE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {B13262BB-1926-4A9D-BE7A-8A8823B3241A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5199792 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {BD570226-CBEE-4E0A-8AFB-5C9CAB440FD6} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
Task: {DEDA310E-CF49-481B-ADF1-A4539C07DCDB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5199792 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {E09AF8B1-1426-4D61-89C8-657E240B552A} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142216 2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{f06c9e1d-6c66-4450-b99f-3ac97e98c758}: [DhcpNameServer] 192.168.100.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Seka\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-18]
Edge Extension: (Outlook) - C:\Users\Seka\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2021-02-09]
Edge Extension: (TotalСashback — кэшбэк-сервис) - C:\Users\Seka\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eofogjfkadmolbbmnlbohhbkhbodcjjm [2021-02-12]
Edge Extension: (Word) - C:\Users\Seka\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2021-02-09]
Edge Extension: (Excel) - C:\Users\Seka\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2021-02-09]
Edge Extension: (PowerPoint) - C:\Users\Seka\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2021-02-09]
Edge HKLM-x32\...\Edge\Extension: [eofogjfkadmolbbmnlbohhbkhbodcjjm]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-15] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default [2021-02-18]
CHR Extension: (Slides) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-02-09]
CHR Extension: (Docs) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-02-09]
CHR Extension: (Google Drive) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-02-09]
CHR Extension: (YouTube) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-02-09]
CHR Extension: (Sheets) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-02-09]
CHR Extension: (Google Docs Offline) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-02-09]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-09]
CHR Extension: (Gmail) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-02-09]
CHR Extension: (Chrome Media Router) - C:\Users\Seka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-09]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8905608 2021-02-03] (Microsoft Corporation -> Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-26] (ESET, spol. s r.o. -> ESET)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\NisSrv.exe [2462960 2021-02-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MsMpEng.exe [128376 2021-02-11] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 5U877; C:\WINDOWS\system32\DRIVERS\5U877.sys [166016 2011-03-05] (Microsoft Windows Hardware Compatibility Publisher -> Ricoh co.,Ltd.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [109360 2020-10-26] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15288 2020-10-22] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\System32\drivers\ekbdflt.sys [43720 2020-11-06] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [70048 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET)
S3 iwdbus; C:\WINDOWS\System32\drivers\iwdbus.sys [25496 2011-06-21] (Wireless Display -> Intel Corporation)
R2 risdxc; C:\WINDOWS\System32\drivers\risdxc64.sys [101888 2011-05-26] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64880 2020-11-11] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49552 2021-02-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [419040 2021-02-11] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2021-02-11] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-18 16:31 - 2021-02-18 16:32 - 000014595 _____ C:\Users\Seka\Desktop\FRST.txt
2021-02-18 16:10 - 2021-02-18 16:10 - 000000000 ____D C:\Users\Seka\AppData\Local\mbam
2021-02-18 16:09 - 2021-02-18 16:09 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-02-15 09:27 - 2021-02-15 09:27 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2021-02-15 06:17 - 2021-02-15 06:17 - 000000000 ____D C:\Users\Seka\AppData\Roaming\webex
2021-02-15 06:16 - 2021-02-18 15:37 - 000000000 ____D C:\Users\Seka\AppData\Local\WebEx
2021-02-15 06:16 - 2021-02-15 06:17 - 000000000 ____D C:\Users\Seka\AppData\LocalLow\WebEx
2021-02-12 22:17 - 2021-02-12 22:17 - 000000000 ____D C:\Users\Seka\Documents\Vlastné šablóny balíka Office
2021-02-12 21:41 - 2021-02-12 21:41 - 000002467 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000002462 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000002461 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000002424 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000002418 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000002412 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000002404 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2021-02-12 21:41 - 2021-02-12 21:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-02-12 21:40 - 2021-02-12 21:40 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2021-02-12 21:21 - 2021-02-12 21:41 - 000000000 ____D C:\Program Files\Microsoft Office
2021-02-12 21:21 - 2021-02-12 21:21 - 000000000 ____D C:\Program Files\Microsoft Office 15
2021-02-12 20:23 - 2021-02-12 21:01 - 000000000 ____D C:\Users\Seka\AppData\Local\SaraResults
2021-02-12 20:22 - 2021-02-12 20:22 - 000000000 ____D C:\Users\Seka\AppData\Local\SaRALogs
2021-02-12 20:19 - 2021-02-12 21:50 - 000000000 ____D C:\Users\Seka\AppData\Local\Deployment
2021-02-12 20:19 - 2021-02-12 20:19 - 000000000 ____D C:\Users\Seka\AppData\Local\Apps\2.0
2021-02-12 19:47 - 2021-02-18 16:05 - 000000000 ____D C:\Users\Seka\Documents\Súbory programu Outlook
2021-02-12 19:47 - 2021-02-12 19:47 - 000000000 ____D C:\Users\Seka\AppData\Roaming\ESET
2021-02-12 19:11 - 2021-02-12 19:11 - 000000000 ____D C:\Users\Seka\AppData\Local\D3DSCache
2021-02-12 16:54 - 2021-02-12 16:54 - 000000000 ____D C:\Users\Seka\AppData\Local\VS Revo Group
2021-02-12 16:54 - 2021-02-12 16:54 - 000000000 ____D C:\ProgramData\VS Revo Group
2021-02-12 15:56 - 2011-04-11 18:53 - 000000000 ____D C:\Users\Seka\Downloads\Browningová, Elisabeth Barett - Portugalské sonety (1974)
2021-02-12 15:41 - 2021-02-12 15:41 - 000002027 _____ C:\ProgramData\Desktop\ESET Ochrana online platieb.lnk
2021-02-12 15:41 - 2021-02-12 15:41 - 000000000 ____D C:\Users\Seka\AppData\Local\ESET
2021-02-12 15:39 - 2021-02-12 15:39 - 000000000 ____D C:\ProgramData\ESET
2021-02-12 15:39 - 2021-02-12 15:39 - 000000000 ____D C:\Program Files\ESET
2021-02-12 15:14 - 2021-02-12 15:23 - 000000000 ____D C:\totalcmd
2021-02-12 15:14 - 2021-02-12 15:14 - 000000694 _____ C:\Users\Seka\Desktop\Total Commander 64 bit.lnk
2021-02-12 15:14 - 2021-02-12 15:14 - 000000000 ____D C:\Users\Seka\AppData\Roaming\GHISLER
2021-02-12 15:14 - 2021-02-12 15:14 - 000000000 ____D C:\Users\Seka\AppData\Local\GHISLER
2021-02-12 11:51 - 2021-02-18 16:19 - 002298368 _____ (Farbar) C:\Users\Seka\Desktop\FRST64.exe
2021-02-12 11:51 - 2021-02-12 11:51 - 002297344 _____ (Farbar) C:\Users\Seka\Downloads\FRST64.exe
2021-02-12 11:16 - 2021-02-12 11:16 - 000000000 ____D C:\Users\Seka\AppData\Roaming\WinRAR
2021-02-12 11:15 - 2021-02-12 11:17 - 000000000 ____D C:\Program Files\WinRAR
2021-02-12 11:12 - 2021-02-12 11:12 - 000000000 ____D C:\Users\Default\AppData\Local\AdvinstAnalytics
2021-02-12 11:12 - 2021-02-12 11:12 - 000000000 ____D C:\Users\Default User\AppData\Local\AdvinstAnalytics
2021-02-12 11:12 - 2021-02-12 11:12 - 000000000 ____D C:\Program Files (x86)\AdvancedWindowsManager
2021-02-12 11:09 - 2021-02-12 11:30 - 000000000 ____D C:\Users\Seka\AppData\Local\AdvinstAnalytics
2021-02-12 11:01 - 2021-02-12 11:01 - 000782095 _____ C:\Users\Seka\Downloads\001398.pdf
2021-02-12 09:27 - 2021-02-12 09:27 - 000011718 _____ C:\Users\Seka\Downloads\Prerozdelene projektov_02_2021.xlsx
2021-02-11 17:17 - 2021-02-11 17:17 - 000136085 _____ C:\Users\Seka\Downloads\dopis_300842531_602557f098955.pdf
2021-02-11 17:14 - 2021-02-11 17:14 - 000066395 _____ C:\Users\Seka\Downloads\1604059150_sekulova_katarina.pdf
2021-02-09 20:09 - 2021-02-12 20:34 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-02-09 20:09 - 2021-02-09 20:09 - 000002135 _____ C:\ProgramData\Desktop\Acrobat Reader DC.lnk
2021-02-09 20:08 - 2021-02-09 20:08 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-02-09 20:07 - 2021-02-09 20:11 - 000000000 ____D C:\ProgramData\Adobe
2021-02-09 20:06 - 2021-02-11 16:37 - 000000000 ____D C:\Users\Seka\AppData\Local\Adobe
2021-02-09 19:43 - 2021-02-09 19:43 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-09 19:43 - 2021-02-09 19:43 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-02-09 19:03 - 2021-02-18 16:26 - 000000000 ____D C:\Program Files\CCleaner
2021-02-09 19:03 - 2021-02-18 16:16 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-02-09 19:03 - 2021-02-09 19:03 - 000002876 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-02-09 19:03 - 2021-02-09 19:03 - 000000874 _____ C:\ProgramData\Desktop\CCleaner.lnk
2021-02-09 18:49 - 2021-02-17 15:44 - 000002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-09 18:49 - 2021-02-17 15:44 - 000002229 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-02-09 18:48 - 2021-02-09 18:48 - 000000000 ____D C:\Program Files\Google
2021-02-09 18:48 - 2021-02-09 18:48 - 000000000 ____D C:\Program Files (x86)\Google
2021-02-09 18:44 - 2021-02-09 18:44 - 000002929 _____ C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-02-09 18:44 - 2021-02-09 18:44 - 000002919 _____ C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-02-09 18:44 - 2021-02-09 18:44 - 000002917 _____ C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-02-09 18:41 - 2021-02-12 16:48 - 000000000 ____D C:\Users\Seka\AppData\Local\BitTorrentHelper
2021-02-09 18:36 - 2021-02-14 01:42 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-09 18:36 - 2021-02-14 01:42 - 000002293 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-02-09 18:35 - 2021-02-11 16:34 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-09 18:35 - 2021-02-11 16:34 - 000003452 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-09 18:32 - 2021-02-09 18:32 - 000000000 ____D C:\Users\Seka\AppData\Local\OneDrive
2021-02-07 08:50 - 2021-02-07 08:50 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2021-02-05 20:42 - 2021-02-05 20:42 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-05 20:38 - 2021-02-09 19:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-02-05 18:10 - 2021-02-05 18:10 - 000000000 ____D C:\Users\Seka\AppData\Local\Comms
2021-02-05 17:56 - 2021-02-05 17:56 - 000000000 ___HD C:\OneDriveTemp
2021-02-05 17:55 - 2021-02-06 17:56 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4046335105-2706149465-2342894865-1000
2021-02-05 17:54 - 2021-02-09 19:00 - 000000000 ____D C:\Users\Seka\AppData\Local\Google
2021-02-05 17:53 - 2021-02-12 15:36 - 000000000 ____D C:\Users\Seka\AppData\Local\PlaceholderTileLogoFolder
2021-02-05 17:52 - 2021-02-05 17:52 - 000000000 ____D C:\Users\Seka\AppData\Roaming\ATI
2021-02-05 17:52 - 2021-02-05 17:52 - 000000000 ____D C:\Users\Seka\AppData\Local\MicrosoftEdge
2021-02-05 17:52 - 2021-02-05 17:52 - 000000000 ____D C:\Users\Seka\AppData\Local\ATI
2021-02-05 17:52 - 2021-02-05 17:52 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-02-05 17:52 - 2021-02-05 17:52 - 000000000 ____D C:\ProgramData\ATI
2021-02-05 17:49 - 2021-02-05 18:11 - 000000000 ____D C:\ProgramData\Packages
2021-02-05 17:49 - 2021-02-05 17:49 - 000000000 ____D C:\Users\Seka\AppData\Local\Publishers
2021-02-05 17:48 - 2021-02-12 19:53 - 000000000 ____D C:\Users\Seka\AppData\Local\Packages
2021-02-05 17:48 - 2021-02-09 20:10 - 000000000 ____D C:\Users\Seka\AppData\Roaming\Adobe
2021-02-05 17:48 - 2021-02-05 17:48 - 000000000 ____D C:\Users\Seka\AppData\Local\VirtualStore
2021-02-05 17:48 - 2021-02-05 17:48 - 000000000 ____D C:\Users\Seka\AppData\Local\Lenovo
2021-02-05 17:47 - 2021-02-09 18:21 - 000000000 ____D C:\Users\Seka\AppData\Local\ConnectedDevicesPlatform
2021-02-05 17:47 - 2021-02-05 17:47 - 000000020 ___SH C:\Users\Seka\ntuser.ini
2021-02-05 17:42 - 2021-02-05 17:42 - 000000000 _____ C:\WINDOWS\ativpsrm.bin
2021-02-05 17:34 - 2021-02-05 17:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2021-02-05 17:34 - 2021-02-05 17:34 - 000000000 ____D C:\ProgramData\Lenovo
2021-02-05 17:30 - 2021-02-09 19:56 - 000840598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-05 17:22 - 2021-02-06 17:56 - 000002363 _____ C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-05 17:22 - 2021-02-05 17:48 - 000000000 ____D C:\Users\Seka
2021-02-05 17:16 - 2020-12-20 22:57 - 005408968 _____ (Lenovo Group Limited) C:\WINDOWS\SysWOW64\PWMTR32V.dll
2021-02-05 17:16 - 2020-12-20 22:57 - 002351304 _____ (Lenovo Group Limited) C:\WINDOWS\SysWOW64\EasyResume.exe
2021-02-05 17:16 - 2020-12-20 22:57 - 000158920 _____ (Lenovo) C:\WINDOWS\SysWOW64\InstHelper.dll
2021-02-05 17:16 - 2020-12-20 22:57 - 000090312 _____ (Lenovo) C:\WINDOWS\SysWOW64\EventLogger.dll
2021-02-05 17:16 - 2020-12-20 22:57 - 000062152 _____ () C:\WINDOWS\SysWOW64\PowerMgrInst.exe
2021-02-05 17:15 - 2021-02-05 17:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2021-02-05 17:15 - 2021-02-05 17:15 - 000000000 ____D C:\Program Files\ATI Technologies
2021-02-05 17:14 - 2021-02-05 17:15 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2021-02-05 17:14 - 2021-02-05 17:14 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf
2021-02-05 17:14 - 2021-02-05 17:14 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_winusb_01009.Wdf
2021-02-05 17:14 - 2021-02-05 17:14 - 000000000 ____D C:\ProgramData\Package Cache
2021-02-05 17:13 - 2021-02-05 17:13 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2021-02-05 17:13 - 2021-02-05 17:13 - 000000000 ____D C:\Program Files\Common Files\ATI Technologies
2021-02-05 17:13 - 2021-02-05 17:13 - 000000000 ____D C:\Program Files\AuthenTec
2021-02-05 17:13 - 2021-02-05 17:13 - 000000000 ____D C:\Program Files\AMD
2021-02-05 17:12 - 2021-02-05 17:12 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2021-02-05 17:12 - 2021-02-05 17:12 - 000000000 ____D C:\Program Files\CONEXANT
2021-02-05 17:09 - 2021-02-18 16:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-05 17:09 - 2021-02-11 16:36 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-02-05 17:06 - 2021-02-17 17:11 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-05 17:06 - 2021-02-12 20:16 - 000438936 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-05 17:03 - 2021-02-12 11:24 - 000000000 ____D C:\WINDOWS\Panther
2021-02-05 17:01 - 2021-02-05 17:42 - 000000000 ____D C:\Windows.old
2021-02-05 17:00 - 2021-02-05 17:00 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-02-05 16:56 - 2021-02-05 16:56 - 000000000 ____D C:\ProgramData\ssh
2021-02-05 16:45 - 2021-02-05 16:45 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-02-05 16:45 - 2021-02-05 16:45 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-02-05 16:45 - 2021-02-05 16:45 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2021-02-05 16:45 - 2021-02-05 16:45 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-02-05 16:45 - 2021-02-05 16:45 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-02-05 16:45 - 2021-02-05 16:45 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-02-05 16:44 - 2021-02-05 16:44 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-02-05 16:44 - 2021-02-05 16:44 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-02-05 16:44 - 2021-02-05 16:44 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-02-05 16:44 - 2021-02-05 16:44 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-02-05 16:44 - 2021-02-05 16:44 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2021-02-05 16:44 - 2021-02-05 16:44 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-02-05 16:44 - 2021-02-05 16:44 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-02-05 16:44 - 2021-02-05 16:44 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-02-05 16:44 - 2021-02-05 16:44 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-02-05 16:44 - 2021-02-05 16:44 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-02-05 16:44 - 2021-02-05 16:44 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll
2021-02-05 16:43 - 2021-02-05 16:43 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2021-02-05 16:43 - 2021-02-05 16:43 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-05 16:43 - 2021-02-05 16:43 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-02-05 16:43 - 2021-02-05 16:43 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2021-02-05 16:43 - 2021-02-05 16:43 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2021-02-05 16:43 - 2021-02-05 16:43 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2021-02-05 16:43 - 2021-02-05 16:43 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-02-05 16:43 - 2021-02-05 16:43 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-02-05 16:43 - 2021-02-05 16:43 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-02-05 16:43 - 2021-02-05 16:43 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2021-02-05 16:43 - 2021-02-05 16:43 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-02-05 16:43 - 2021-02-05 16:43 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-02-05 16:43 - 2021-02-05 16:43 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2021-02-05 16:42 - 2021-02-05 16:42 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-02-05 16:42 - 2021-02-05 16:42 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-02-05 16:42 - 2021-02-05 16:42 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-02-05 16:42 - 2021-02-05 16:42 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-02-05 16:42 - 2021-02-05 16:42 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-02-05 16:42 - 2021-02-05 16:42 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2021-02-05 16:42 - 2021-02-05 16:42 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb
2021-02-05 16:42 - 2021-02-05 16:42 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll
2021-02-05 16:42 - 2021-02-05 16:42 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-02-05 16:41 - 2021-02-05 16:41 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-02-05 16:41 - 2021-02-05 16:41 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-02-05 16:41 - 2021-02-05 16:41 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2021-02-05 16:41 - 2021-02-05 16:41 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2021-02-05 16:41 - 2021-02-05 16:41 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2021-02-05 16:41 - 2021-02-05 16:41 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2021-02-05 16:40 - 2021-02-05 16:40 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-02-05 16:40 - 2021-02-05 16:40 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-02-05 16:40 - 2021-02-05 16:40 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-02-05 16:40 - 2021-02-05 16:40 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2021-02-05 16:40 - 2021-02-05 16:40 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2021-02-05 16:39 - 2021-02-05 16:39 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-02-05 16:39 - 2021-02-05 16:39 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-02-05 16:39 - 2021-02-05 16:39 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-02-05 16:39 - 2021-02-05 16:39 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2021-02-05 16:39 - 2021-02-05 16:39 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-02-05 16:39 - 2021-02-05 16:39 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-02-05 16:39 - 2021-02-05 16:39 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb
2021-02-05 16:38 - 2021-02-05 16:38 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-02-05 16:38 - 2021-02-05 16:38 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-02-05 16:38 - 2021-02-05 16:38 - 000707544 _____ C:\WINDOWS\system32\TextShaping.dll
2021-02-05 16:38 - 2021-02-05 16:38 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-02-05 16:38 - 2021-02-05 16:38 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-02-05 16:38 - 2021-02-05 16:38 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2021-02-05 16:38 - 2021-02-05 16:38 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2021-02-05 16:37 - 2021-02-05 16:37 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-02-05 16:37 - 2021-02-05 16:37 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-02-05 16:37 - 2021-02-05 16:37 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-02-05 16:37 - 2021-02-05 16:37 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll
2021-02-05 16:37 - 2021-02-05 16:37 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2021-02-05 16:37 - 2021-02-05 16:37 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-02-05 16:22 - 2021-02-05 16:22 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-02-05 16:22 - 2021-02-05 16:22 - 000000000 ____D C:\Program Files\MSBuild
2021-02-05 16:22 - 2021-02-05 16:22 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-02-05 16:22 - 2021-02-05 16:22 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-02-05 16:21 - 2019-10-15 13:53 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2021-02-05 16:21 - 2019-04-18 18:49 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2021-02-05 16:14 - 2021-02-12 11:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Lenovo
2021-02-05 16:14 - 2021-02-12 11:38 - 000000000 ____D C:\WINDOWS\system32\Lenovo
2021-02-05 16:14 - 2021-02-05 16:14 - 000000000 ____D C:\Program Files\Synaptics
2021-02-05 16:12 - 2021-02-05 16:12 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-02-04 23:06 - 2021-02-17 15:34 - 000002147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-04 19:02 - 2021-02-04 19:21 - 000000000 ____D C:\KVRT_Data
2021-02-03 19:21 - 2021-02-18 16:31 - 000000000 ____D C:\FRST
2021-02-01 10:07 - 2021-02-01 10:07 - 002753606 _____ C:\Users\Seka\Downloads\Monitorovacia správa 1..pdf
2021-02-01 10:07 - 2021-02-01 10:07 - 002084967 _____ C:\Users\Seka\Downloads\Prílohy k monitorovacej správe 1.pdf
2021-02-01 10:07 - 2021-02-01 10:07 - 000615220 _____ C:\Users\Seka\Downloads\Personálna matica 2 - od 01.02.2021.pdf
2021-02-01 08:51 - 2021-02-01 08:51 - 000042228 _____ C:\Users\Seka\Downloads\Príloha 14_Personalna matica 4.xlsx
2021-02-01 07:25 - 2021-02-01 07:25 - 001559653 _____ C:\Users\Seka\Downloads\FW__ziadost_o_opravu_udajov_karta_ucastnika.zip
2021-02-01 07:25 - 2021-02-01 07:25 - 000049769 _____ C:\Users\Seka\Downloads\Zmeny v systéme finančného riadenia.pdf
2021-01-29 22:36 - 2021-01-29 22:36 - 000001332 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerXpress.lnk
2021-01-29 22:27 - 2021-02-18 16:21 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-29 06:39 - 2021-01-29 06:39 - 000020619 _____ C:\Users\Seka\Downloads\01-03-Veršíky-Jaro.odt
2021-01-28 15:44 - 2021-01-28 15:44 - 000000000 ___HD C:\$WinREAgent
2021-01-21 16:11 - 2021-01-21 16:30 - 000038400 _____ C:\Users\Seka\Documents\Priloha_c_2-Hlasenie-o-testovanych-osobach TABULKA_Sekulová.xls
2021-01-21 16:07 - 2021-01-21 16:07 - 000037888 _____ C:\Users\Seka\Downloads\Priloha_c_2-Hlasenie-o-testovanych-osobach TABULKA (3).xls
2021-01-21 15:43 - 2021-01-21 15:43 - 000037888 _____ C:\Users\Seka\Downloads\Priloha_c_2-Hlasenie-o-testovanych-osobach TABULKA (2).xls
2021-01-21 15:42 - 2021-01-21 15:42 - 000138583 _____ C:\Users\Seka\Downloads\POTVRDENIE AG TESTY (1).pdf
2021-01-21 15:40 - 2021-01-21 15:40 - 000037888 _____ C:\Users\Seka\Downloads\Priloha_c_2-Hlasenie-o-testovanych-osobach TABULKA (1).xls
2021-01-21 15:31 - 2021-01-21 15:31 - 000037888 _____ C:\Users\Seka\Downloads\Priloha_c_2-Hlasenie-o-testovanych-osobach TABULKA.xls
2021-01-21 15:29 - 2021-01-21 15:29 - 000138583 _____ C:\Users\Seka\Downloads\POTVRDENIE AG TESTY.pdf
2021-01-20 16:06 - 2020-11-11 03:54 - 000167280 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2021-01-19 17:31 - 2021-01-19 17:31 - 000188726 _____ C:\Users\Seka\Downloads\Orange_doklad_FR_202012_CN0308513803.pdf
2021-01-19 17:31 - 2021-01-19 17:31 - 000159410 _____ C:\Users\Seka\Downloads\Orange_doklad_FR_202011_CN0308513803 (1).pdf
2021-01-19 17:21 - 2021-01-19 17:21 - 000183865 _____ C:\Users\Seka\Downloads\Orange_doklad_FR_202006_CN0308513803.pdf
2021-01-19 17:17 - 2021-01-19 17:17 - 000187821 _____ C:\Users\Seka\Downloads\Orange_doklad_FR_202101_CN0308513803.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-18 16:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-02-18 16:28 - 2012-05-02 14:31 - 000000000 ____D C:\Users\Seka\Documents\zaloha ccleaner
2021-02-18 16:27 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-18 16:24 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-18 16:20 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-02-18 16:17 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-02-18 16:16 - 2016-11-12 09:40 - 000000000 ____D C:\Users\Seka\Downloads\XXX
2021-02-18 16:12 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-02-18 15:44 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-18 15:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-12 22:00 - 2016-10-26 19:53 - 000000000 ____D C:\Users\Seka\Documents\ZP 122 2016 2-i byt Kempelenova 11 K. Ves
2021-02-12 21:59 - 2012-07-02 17:29 - 000000000 ____D C:\Users\Seka\Documents\Zivotopis
2021-02-12 21:40 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-02-12 18:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-02-12 15:14 - 2012-07-12 17:32 - 000000000 ____D C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2021-02-12 14:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2021-02-12 11:15 - 2015-07-04 12:03 - 000000000 ____D C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-02-12 11:15 - 2015-07-04 12:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-02-09 19:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-09 19:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-09 19:48 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-09 19:47 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-09 18:42 - 2016-08-04 16:49 - 000000000 ___RD C:\Users\Seka\OneDrive
2021-02-06 04:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2021-02-05 19:49 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-02-05 18:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-02-05 18:06 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-02-05 17:48 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-05 17:48 - 2017-12-07 17:38 - 000000000 ___RD C:\Users\Seka\3D Objects
2021-02-05 17:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool
2021-02-05 17:42 - 2019-12-07 15:37 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2021-02-05 17:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-05 17:42 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2021-02-05 17:31 - 2019-06-21 16:47 - 000000000 ____D C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center
2021-02-05 17:31 - 2017-09-26 17:06 - 000000000 ___RD C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Azure Information Protection Viewer
2021-02-05 17:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-02-05 17:13 - 2016-08-04 16:12 - 000000000 ____D C:\AMD
2021-02-05 17:10 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-02-05 17:03 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-02-05 17:03 - 2019-03-13 18:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-02-05 17:03 - 2018-04-07 14:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Phone
2021-02-05 17:03 - 2015-10-30 15:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack 64bit
2021-02-05 17:03 - 2015-06-30 17:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2021-02-05 17:03 - 2015-06-10 20:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage
2021-02-05 17:03 - 2014-09-26 13:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Parhelia Tools
2021-02-05 17:03 - 2013-03-20 20:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2021-02-05 17:03 - 2012-05-14 16:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2021-02-05 17:03 - 2012-04-05 19:29 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2021-02-05 17:03 - 2012-04-05 19:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel
2021-02-05 17:03 - 2012-04-05 19:07 - 000000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
2021-02-05 17:01 - 2018-02-22 10:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2021-02-05 17:01 - 2017-09-21 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2021-02-05 17:01 - 2015-05-18 21:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bentley
2021-02-05 16:56 - 2019-12-07 15:39 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-02-05 16:56 - 2019-12-07 15:39 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-02-05 16:56 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-02-05 16:53 - 2019-12-07 15:39 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-02-05 16:53 - 2019-12-07 15:39 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2021-02-05 16:23 - 2019-12-07 15:38 - 000000000 ____D C:\WINDOWS\OCR
2021-02-05 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-02-05 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-02-05 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-02-05 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-02-05 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-02-05 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-02-05 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-02-05 16:20 - 2019-12-07 15:36 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2021-02-05 16:20 - 2019-12-07 15:36 - 000000000 ____D C:\WINDOWS\system32\WCN
2021-02-05 15:40 - 2012-04-27 14:27 - 000000000 ____D C:\Users\Seka\AppData\LocalLow\Adobe
2021-02-04 21:04 - 2017-09-21 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2021-02-04 17:14 - 2019-10-03 16:53 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2021-02-03 22:31 - 2012-09-12 18:08 - 000000000 ____D C:\Users\Seka\Documents\My Games
2021-02-03 21:52 - 2012-05-02 16:32 - 000000000 ____D C:\Users\Seka\Games
2021-02-03 18:57 - 2016-06-27 15:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-02-2021 01
Ran by Seka (18-02-2021 16:39:21)
Running from C:\Users\Seka\Desktop
Windows 10 Home Version 20H2 19042.804 (X64) (2021-02-05 16:42:25)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-4046335105-2706149465-2342894865-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4046335105-2706149465-2342894865-503 - Limited - Disabled)
Guest (S-1-5-21-4046335105-2706149465-2342894865-501 - Limited - Disabled)
Seka (S-1-5-21-4046335105-2706149465-2342894865-1000 - Administrator - Enabled) => C:\Users\Seka
WDAGUtilityAccount (S-1-5-21-4046335105-2706149465-2342894865-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 21.001.20138 - Adobe Systems Incorporated)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
CCleaner (HKLM\...\CCleaner) (Version: 5.77 - Piriform)
Cisco Webex Meetings (HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\ActiveTouchMeetingClient) (Version: 41.2.4 - Cisco Webex LLC)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.32.27.0 - Conexant)
ESET Security (HKLM\...\{3B47BDC5-99BF-4F5C-A303-1F0F9DBC74F6}) (Version: 14.0.22.0 - ESET, spol. s r.o.)
Excel (HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 88.0.4324.182 - Google LLC)
Lenovo Power Management Driver (HKLM\...\Power Management Driver) (Version: 1.67.10.15 - Lenovo)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.68 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.141.59 - )
Microsoft Office 2016 Professional Plus - sk-sk (HKLM\...\ProPlusRetail - sk-sk) (Version: 16.0.13628.20380 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\OneDriveSetup.exe) (Version: 21.002.0104.0005 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{143E35D3-F0A4-4E90-96C9-B1B72F11343A}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13628.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13628.20380 - Microsoft Corporation) Hidden
PowerPoint (HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.16.0 - Synaptics Incorporated)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
WinRAR 6.00 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
Word (HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)
Packages:
=========
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-02-05] (Microsoft Studios) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-26] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm
ShortcutWithArgument: C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf
ShortcutWithArgument: C:\Users\Seka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi
==================== Loaded Modules (Whitelisted) =============
2021-02-11 17:00 - 2021-02-11 17:00 - 000031232 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\A4.Foundation\299bf2e4e23af02175445e6a26f183b3\A4.Foundation.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\a24c26eba4ea3ddce65e74fa4668e293\AEM.Actions.CCAA.Shared.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\b1c480fea6a1f23d52c3e56efa0e3568\AEM.Plugin.EEU.Shared.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\ab84ec371d67664b2b3835984aa2dce2\AEM.Plugin.Hotkeys.Shared.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.54d8abe3#\067d1b4cc2a05184c6e0a89aaee60af6\AEM.Plugin.DPPE.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000281600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\e6806d3dfa2372f274fedc400ecaea29\AEM.Plugin.Source.Kit.Server.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\20e43f89b55b6c6d58c04b22890cbbc3\AEM.Plugin.WinMessages.Shared.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\2cb21aaa54b1116e4ceda042a9d4ce1e\AEM.Plugin.REG.Shared.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\a0c3b8ce9c35481a6521f517227bbbe2\AEM.Plugin.GD.Shared.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\6cfd22563e0e2c727f094a3de46cf569\AEM.Server.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000267776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server\8e824043be59343847600763c50d6229\AEM.Server.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000055808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Foundation\8b0dfc591b480594610bbaa94430d4db\APM.Foundation.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000122880 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ATICCCom\4f9523253033d141734969c0866c932c\ATICCCom.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000204288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\af1df7a28635d8dc2019da4ad419ebaa\CCC.Implementation.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000154112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.21d2ac78#\d18e017d86840cf4e291065a203bf595\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000128000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\c473afacd64a10cb325e6c9ac524f824\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\1de0b258089f746ad04d1233cf969b29\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\dd5cc863637abdfb436e9ceaee87b61a\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000107008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\119e8f5a6e9313af4844f1cb23d04601\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.46819220#\bf72cdb8017728ac2915993a05842fee\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\ec62501776136c97cc7f8ede3f99c6d9\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\7ee8d68f2500cbf06d0e1339d0509d76\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.59a12d95#\ea99ad5efa6b77f631f17f3f6514113d\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\b25d1017d66178bbb77c5038da1e5327\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000365056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\e51ade072914adc16c9cc1a4eb929b0b\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000064000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\af53ba99fab78381ec29e55adfd889b7\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000678912 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.846fa813#\1946be912a1389e3b2e8e684bdb2c6fa\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000745472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\528e8766b99ec47ea476e036a210492b\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000449536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\b3107cf758db9f29066e5548859e950a\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\6d4486fb59307bec3ac8923aebc72ef1\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\ebccb64be88b1b07b48f2652531555a7\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000082944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\e7f1c1a772858f2bc0d52f6c35e98cf6\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000462336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\59f37443a686efbf0c52772f1db24e0e\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000067072 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\12c979ab0dac8ba20586fa52ec4c5cef\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000340992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\3e009bed5e4d5046f36f132a1b75aa95\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\e62039c5f426da0d2aa0415ba6806c9e\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000096256 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.d4f2f79c#\73b0f1411d421cf80be838629e17ed37\CLI.Aspect.CrossFireX.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000276480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\b0e1ae0abff9a1471337ff4e5cb5f5f6\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 003312640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\4c50ca884ddb173946e52d51eeb28571\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000240640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\44b63310c195cfc86fdc7b385b24d1af\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000047616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\2597fa5cfc6bbd186558dd3ddb3875f3\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\0e5e46fe8262765fc01f531393cea826\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000051200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\1b793612380f60d287e5c5f86122e89c\CLI.Caste.A4.Runtime.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\0f047cf9e2239851a811b935d7b109d0\CLI.Caste.A4.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\ad42a31ed395b0ecbe316f65491d24af\CLI.Caste.A4.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\756be47d421c14309af0c8d9dddc6a29\CLI.Caste.Fuel.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000311296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\237f6779fe63e0a2c1d282dcaae5138d\CLI.Caste.Fuel.Runtime.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\9da73010c1ac2627c98cd659770a1f1e\CLI.Caste.Fuel.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\a5e2e36025e5e42aeff913bbda1aa6d6\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 001555456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\d9023f90cb9c233a1ef9d29afe619a5d\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000587776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\2c859919bad3bef7b22e820c8331e258\CLI.Caste.Graphics.Dashboard.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\67666baee565c9b0f6a67df38462c2f3\CLI.Caste.HydraVision.Runtime.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\be62787dd2bab6bbe758bb473b72c8e4\CLI.Caste.HydraVision.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\c0e53f1337994c1667cf8986471b8253\CLI.Caste.HydraVision.Dashboard.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\0552c276520bab46992e3d931c858708\CLI.Caste.Platform.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\753c0337e60bbef84ae2e4d415b423f7\CLI.Caste.Platform.Runtime.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\8cc70011780cd7107d94671bcc46c204\CLI.Caste.Platform.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\0619ae2c3e8cc53377fbecef51f243ed\CLI.Component.Runtime.Shared.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000901632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\dfff39149c8e27593d1a824546fc918b\CLI.Component.Systemtray.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000173568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\197bf5cf7fb1b4891e579ec04e9eef33\CLI.Component.Dashboard.ProfileManager2.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\780c8bd8339ff2def14b0207cd808a3b\CLI.Component.Runtime.Shared.Private.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\c2b5ee81f835f248ac92e192a11b37f2\CLI.Component.Runtime.Extension.EEU.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 001609728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\e0ac251c51c9ce70532e3b80d17036b1\CLI.Component.Dashboard.Shared.Private.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\5627e1355102d34ea0fb784888ab8e34\CLI.Component.Client.Shared.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\007e57a69242e84ff334564a788165c0\CLI.Component.Dashboard.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000495104 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Component.Eeu\729b0074739149770459424c54b32cfe\CLI.Component.Eeu.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000089600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\a0a2b615cdc294c7d3af29f42d6f3369\CLI.Foundation.Private.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\4e50f43f222133081bca51d4ec374497\CLI.Foundation.XManifest.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000091136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\bcdee5c6fe25466f8c29767f6b2b1294\CLI.Foundation.CoreAudioAPI.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 001079808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\e71d9ac8050ddbc61de0d405425ffb71\CLI.Foundation.Client.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\f427fb4249819cdad708ab341925f176\CLI.Foundation.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\5d12a5ba7cfcf92e2bdedb9c65064c74\DEM.Foundation.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000115200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\5658790b6d8ee4f840d1ca57866316ce\DEM.Graphics.I0601.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\dfa1099aca23fc47444238db01432d1e\DEM.Graphics.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\7224c4f48b25b446a37e68bf70496628\Fuel.Foundation.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000296960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\e8caa0b0ef82e5f8b64cc8d85740b649\LOG.Foundation.Implementation.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\bb140c3f749aad3e194c37b732486584\LOG.Foundation.Private.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\941a6700366b94ec64b62cc506f95d74\LOG.Foundation.Implementation.Private.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\14a13de1f3708f74c0de29e5d486a6de\LOG.Foundation.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\c718fcd8c25b703ccad4cb802f9c7dca\MOM.Foundation.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000402944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\942416935b21cacc907f56d100506704\MOM.Implementation.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\ae9a13269043d55e4140d5868270661d\NEWAEM.Foundation.ni.dll
2021-02-11 17:00 - 2021-02-11 17:00 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\79c00831b1c30bf18fb586d85535361d\ADL.Foundation.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000256000 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Server\11725f354a5e8c6ce052906bd4a8e5e8\APM.Server.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000783872 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.79734f7a#\ee4275611386e7caa8525721f42d22b6\CLI.Aspect.PowerXpress.Graphics.Runtime.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000357888 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b3da5a8f#\8115c9f4be5c153a71dc876fbb8dd313\CLI.Aspect.PowerXpress.Graphics.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000595456 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.d4846ba2#\4b2f4a30c7c2dd195fd6e39df3e80028\CLI.Aspect.PowerXpress.Graphics.Dashboard.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 008027648 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\9290d5fffa3771fc564d5a494bbaef80\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000136704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\4a1483e26ec981cde398a218ac363ad1\CLI.Component.Client.Shared.Private.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000234496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\e6ebbe99ad169505a7b1614029784799\CLI.Component.Runtime.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000929280 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\de0138b3d17f3b789606957fedfe666f\CLI.Component.Dashboard.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000011264 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0702\b412bf450c79457c9c6e02719fef3a99\DEM.Graphics.I0702.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000084480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\5252f14189e3677767b454164fb541cf\DEM.Graphics.I0709.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000009728 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0710\8eeed39b8e461125c3b64ec004190ba5\DEM.Graphics.I0710.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000012288 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\5e93aedbce33eb9d7f84de52de38623c\DEM.Graphics.I0712.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000018432 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\aa9984e9a16523bb1fd71b855c687aa6\DEM.Graphics.I0804.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000009728 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0901\2fe32ec8719bc5e139d20434f117fd6f\DEM.Graphics.I0901.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0906\58c6e0a82fa1629f5583fd56b7323d3c\DEM.Graphics.I0906.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 000035840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\4fe945ea0f126bb4dccba474e3ee74dd\DEM.Graphics.I1010.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 001139200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\850f9ba397907bdd65f8b39b38d30802\Localization.Foundation.Private.ni.dll
2021-02-11 17:26 - 2021-02-11 17:26 - 000244736 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\728cdf3754ae85033dd79ad186800036\ResourceManagement.Foundation.Implementation.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\1c70dcc4229d6020dee4a1dec7d82013\ResourceManagement.Foundation.Private.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000091648 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\cf90b853c4e28581c7cc59c5383c17ba\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 002845696 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\279fe6e0d04379447e1fe91e00e0f1ab\CLI.Caste.Graphics.Shared.ni.dll
2021-02-11 17:02 - 2021-02-11 17:02 - 003268096 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\38fb846f3a344f93b10dfd7394da66e1\CLI.Caste.Graphics.Runtime.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 000335360 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\4f0fd874313da401477c46c3cec85dc9\Microsoft.WindowsAPICodePack.ni.dll
2021-02-11 17:01 - 2021-02-11 17:01 - 002546688 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\a8c5a476b51666456f23a36508ee97da\Microsoft.WindowsAPICodePack.Shell.ni.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-02-12] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\Control Panel\Desktop\\Wallpaper -> c:\users\seka\pictures\black-hole-space-4k.jpg
DNS Servers: 192.168.100.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-4046335105-2706149465-2342894865-1000\...\StartupApproved\Run: => "CiscoMeetingDaemon"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{6765EB1E-74DF-4E8B-86D1-2E6ECE106E8D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{12102B25-2467-499E-963D-976739FBF789}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7FC152BE-DAE9-45B6-A9D3-B9B1C6C0D1A0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{20589F5B-F5A0-4177-9D25-B55E3CFEE62D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BE50319F-CAB1-44D8-A462-CF0D7C3E1FDD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9F4D7D38-54F1-442A-A2F0-15CEE432B227}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4B7C58CF-D505-4139-9BC4-BE8EADC827CB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FEC12BE6-D5F2-4466-8904-88AC70CB3B60}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E3DB89A9-39C9-4286-AB5C-A964D4AC9C5B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DBA6FB0A-45D2-4F46-9482-F014118A3B3E}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
System errors:
=============
Error: (02/18/2021 04:22:32 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.
Error: (02/18/2021 04:21:09 PM) (Source: Microsoft-Windows-Directory-Services-SAM) (EventID: 16953) (User: NT AUTHORITY)
Description: The password notification DLL C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll failed to load with error 126. Please verify that the notification DLL path defined in the registry, HKLM\System\CurrentControlSet\Control\Lsa\Notification Packages, refers to a correct and absolute path (<drive>:\<path>\<filename>.<ext>) and not a relative or invalid path. If the DLL path is correct, please validate that any supporting files are located in the same directory, and that the system account has read access to both the DLL path and any supporting files. Contact the provider of the notification DLL for additional support. Further details can be found on the web at http://go.microsoft.com/fwlink/?LinkId=245898.
Error: (02/18/2021 04:20:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Windows Search zlyhalo kvôli nasledujúcej chybe:
The service did not start due to a logon failure.
Error: (02/18/2021 04:20:15 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Službe WSearch sa nepodarilo s aktuálne nakonfigurovaným heslom prihlásiť ako NT AUTHORITY\SYSTEM kvôli nasledujúcej chybe:
The request is not supported.
Ak chcete zabezpečiť správne nakonfigurovanie služby, použite modul Služby konzoly MMC (Microsoft Management Console).
Error: (02/18/2021 04:19:56 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Lenovo PM Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.
Error: (02/18/2021 04:19:45 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office Klikni a spusti sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 2 krát. O 0 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.
Error: (02/18/2021 04:19:45 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1 krát. O 30000 ms bude vykonaná nasledujúca opravná akcia: Reštartovať službu.
Error: (02/18/2021 04:17:43 PM) (Source: DCOM) (EventID: 10000) (User: SEKA-THINK)
Description: Unable to start a DCOM Server: {0358B920-0AC7-461F-98F4-58E32CD89148}. The error:
"2147942767"
Happened while starting this command:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Windows Defender:
===============
Date: 2021-02-12 15:12:53
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: App:Utorrent
ID: 268641
Severity: Nízka
Category: Potenciálne nežiaduci softvér
Path: file:_C:\Users\Seka\Downloads\uTorrent (1).exe; file:_C:\Users\Seka\Downloads\uTorrent.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Windows\explorer.exe
Security intelligence Version: AV: 1.331.830.0, AS: 1.331.830.0, NIS: 1.331.830.0
Engine Version: AM: 1.1.17800.5, NIS: 1.1.17800.5
Date: 2021-02-12 15:12:40
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: App:Utorrent
ID: 268641
Severity: Nízka
Category: Potenciálne nežiaduci softvér
Path: file:_C:\Users\Seka\Downloads\uTorrent.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Windows\explorer.exe
Security intelligence Version: AV: 1.331.830.0, AS: 1.331.830.0, NIS: 1.331.830.0
Engine Version: AM: 1.1.17800.5, NIS: 1.1.17800.5
Date: 2021-02-12 12:03:25
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: App:Utorrent
ID: 268641
Severity: Nízka
Category: Potenciálne nežiaduci softvér
Path: file:_C:\Users\Seka\Downloads\uTorrent.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Windows\explorer.exe
Security intelligence Version: AV: 1.331.815.0, AS: 1.331.815.0, NIS: 1.331.815.0
Engine Version: AM: 1.1.17800.5, NIS: 1.1.17800.5
Date: 2021-02-12 12:02:07
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: PUA:Win32/CandyOpen
ID: 213956
Severity: Nízka
Category: Potenciálne nežiaduci softvér
Path: containerfile:_C:\Users\Seka\Downloads\uTorrent.exe; file:_C:\Users\Seka\Downloads\uTorrent.exe->(UPX)
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Users\Seka\Desktop\FRST64.exe
Security intelligence Version: AV: 1.331.815.0, AS: 1.331.815.0, NIS: 1.331.815.0
Engine Version: AM: 1.1.17800.5, NIS: 1.1.17800.5
Date: 2021-02-12 11:24:48
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: PUA:Win32/LittleRegClean
ID: 227480
Severity: Nízka
Category: Potenciálne nežiaduci softvér
Path: file:_C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe; file:_C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Program Files\CCleaner\CCleaner64.exe
Security intelligence Version: AV: 1.331.815.0, AS: 1.331.815.0, NIS: 1.331.815.0
Engine Version: AM: 1.1.17800.5, NIS: 1.1.17800.5
Event[0]:
Date: 2021-02-07 10:58:05
Description:
Microsoft Defender Antivirus has encountered an error trying to load security intelligence and will attempt reverting back to a known-good version.
Security intelligence Attempted: Backup
Error Code: 0x80004004
Error description: Operation aborted
Security intelligence version: 1.331.374.0;1.331.374.0
Engine version: 1.1.17800.5
Date: 2021-02-07 10:58:02
Description:
Microsoft Defender Antivirus has encountered an error trying to load security intelligence and will attempt reverting back to a known-good version.
Security intelligence Attempted: Current
Error Code: 0x80004004
Error description: Operation aborted
Security intelligence version: 1.331.384.0;1.331.384.0
Engine version: 1.1.17800.5
CodeIntegrity:
===============
Date: 2021-02-18 16:24:49
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: LENOVO LENOVO - 125 03/01/2013
Motherboard: LENOVO 1143K4G
Processor: Intel(R) Core(TM) i3-2350M CPU @ 2.30GHz
Percentage of memory in use: 84%
Total physical RAM: 4007.23 MB
Available physical RAM: 640.31 MB
Total Virtual: 4711.23 MB
Available Virtual: 1216.01 MB
==================== Drives ================================
Drive c: (Windows7_OS) (Fixed) (Total:447.85 GB) (Free:239.68 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive q: (Lenovo_Recovery) (Fixed) (Total:15.62 GB) (Free:4.24 GB) NTFS
\\?\Volume{0751cdc4-7f48-11e1-b9a7-806e6f6e6963}\ (SYSTEM_DRV) (Fixed) (Total:1.46 GB) (Free:1.12 GB) NTFS
\\?\Volume{ccd2e061-0000-0000-0000-005470000000}\ () (Fixed) (Total:0.82 GB) (Free:0.27 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: CCD2E061)
Partition 1: (Active) - (Size=1.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=447.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=842 MB) - (Type=27)
Partition 4: (Not Active) - (Size=15.6 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Áno, je tam určité zlepšenie. Snáď to vydrží.
Ďakujem pekne sa pomoc.
Ďakujem pekne sa pomoc.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?