Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

dotaz na zrušení 2.stupně varování

Moderátor: Moderátoři

Zamčeno
Zpráva
Autor
Fidolfo
Návštěvník
Návštěvník
Příspěvky: 46
Registrován: 16 srp 2006 12:57

dotaz na zrušení 2.stupně varování

#1 Příspěvek od Fidolfo »

Dobrý den,co mohu udelat pro to aby jsem u sveho nicku nemel tu ostudu za kterou se stydím...A to jest 2.stupen varování...... Jsem přesvědčen že jsem se poučil a již sekám latinu... Děkuji za odpověd

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113388
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: dotaz na zrušení 2.stupně varování

#2 Příspěvek od Rudy »

Zdravím!
Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=24&t=132509 . Uvidíme, zda jste se poučil.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Fidolfo
Návštěvník
Návštěvník
Příspěvky: 46
Registrován: 16 srp 2006 12:57

Re: dotaz na zrušení 2.stupně varování

#3 Příspěvek od Fidolfo »

už jsem založil dříve topik v preventivní kontrola logu a vložil jsem tam z RSIT...Bude to stačit? Pro jistotku jej dam i sem :-)

Logfile of random's system information tool 1.10 (written by random/random)
Run by Lidka at 2021-01-16 15:03:48
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 263 GB (43%) free of 609 GB
Total RAM: 4070 MB (52% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:04:27, on 16.1.2021
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19597)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files\trend micro\Lidka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL
O4 - HKLM\..\Run: [NUSB3MON] "c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [CCleaner] "C:\Program Files\CCleaner\CCleaner64.exe" /AUTOS
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Wargaming.net Game Center] "C:\ProgramData\Wargaming.net\GameCenter\wgc.exe" --background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [EEDSpeedLauncher] rundll32.exe C:\Windows\system32\eed_ec.dll,SpeedLauncher (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{56EA4774-6B7A-47C6-8E0C-B08DF749C1A5}: NameServer = 10.255.255.10,10.255.255.20
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agr64svc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\Avast Software\Avast\aswidsagent.exe
O23 - Service: Služba Avast Browser Update (avast) (avast) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Avast Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
O23 - Service: Služba Avast Browser Update (avastm) (avastm) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
O23 - Service: Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService) (AvastSecureBrowserElevationService) - AVAST Software - C:\Program Files (x86)\AVAST Software\Browser\Application\87.0.7480.89\elevation_service.exe
O23 - Service: Služba Poepnutí Bluetooth (BtSwitcherService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe
O23 - Service: Služba CSR Bluetooth Audio (CSRBtAudioService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe
O23 - Service: Služba CSR OBEX (CsrBtOBEXService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
O23 - Service: CSR služba Bluetooth (CsrBtService) - Cambridge Silicon Radio Limited - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Users\Lidka\AppData\Roaming\Hewlett-Packard\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Samsung Printer Dianostics Service - Unknown owner - C:\Windows\system32\\spdsvc.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Broadcom Corporation - C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12044 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE" "C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe"
C:\Windows\system32\WLANExt.exe 33047824
\??\C:\Windows\system32\conhost.exe "-1446574853-35018256173156944215634520064512421661339806322-2022478782148575981
C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe
"C:\Program Files\Avast Software\Avast\AvastSvc.exe" /runassvc
"C:\Program Files\Avast Software\Avast\aswToolsSvc.exe" /runassvc
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
"C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe"
"C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe"
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k bthaudiosvc
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
C:\Windows\SysWOW64\\spdsvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe"
"C:\Program Files\Avast Software\Avast\aswEngSrv.exe" /pipename="5A8AC919-2FA9-3603-0A55-CD3470990157" /binpath="C:\Program Files\Avast Software\Avast"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files\Avast Software\Avast\aswidsagent.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.EXE"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
AvastUI.exe /nogui
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe" -Embedding
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe"
"C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe"
"C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe"
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=7252,9528838416867048001,6450515213469356993,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\Lidka\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=MAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --use-gl=swiftshader-webgl --log-file="C:\Users\Lidka\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=7292 /prefetch:2
"C:\Program Files\Avast Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=7252,9528838416867048001,6450515213469356993,131072 --enable-features=CastMediaRouteProvider --disable-features=OutOfBlinkCors --lang=en-US --service-sandbox-type=network --no-sandbox --force-wave-audio --log-file="C:\Users\Lidka\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (20.10.2442)" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Lidka\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=7476 /prefetch:8
C:\Windows\system32\svchost.exe -k SDRSVC

"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7208.0.606395014\883620577" -parentBuildID 20210105180113 -prefsHandle 1148 -prefMapHandle 1140 -prefsLen 1 -prefMapSize 244367 -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 7208 "\\.\pipe\gecko-crash-server-pipe.7208" 1216 gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7208.6.1669601200\160649944" -childID 1 -isForBrowser -prefsHandle 2456 -prefMapHandle 2452 -prefsLen 264 -prefMapSize 244367 -parentBuildID 20210105180113 -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 7208 "\\.\pipe\gecko-crash-server-pipe.7208" 2468 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7208.13.1524578385\576829356" -childID 2 -isForBrowser -prefsHandle 3656 -prefMapHandle 3604 -prefsLen 6650 -prefMapSize 244367 -parentBuildID 20210105180113 -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 7208 "\\.\pipe\gecko-crash-server-pipe.7208" 3580 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7208.27.2018003338\383888116" -childID 4 -isForBrowser -prefsHandle 3724 -prefMapHandle 3992 -prefsLen 6650 -prefMapSize 244367 -parentBuildID 20210105180113 -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 7208 "\\.\pipe\gecko-crash-server-pipe.7208" 3988 tab
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="7208.42.92768552\988244854" "C:\Users\Lidka\AppData\Roaming\Mozilla\Firefox\Profiles\vncrck8y.default-1467548706931-1556435501334\gmp-widevinecdm\4.10.1582.2" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 7208 "\\.\pipe\gecko-crash-server-pipe.7208" 3916 gmplugin
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7208.44.1355441909\1795506985" -parentBuildID 20210105180113 -prefsHandle 3952 -prefMapHandle 4428 -prefsLen 7541 -prefMapSize 244367 -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 7208 "\\.\pipe\gecko-crash-server-pipe.7208" 8576 rdd
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7208.55.415996869\2123281468" -childID 7 -isForBrowser -prefsHandle 3012 -prefMapHandle 4100 -prefsLen 7541 -prefMapSize 244367 -parentBuildID 20210105180113 -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 7208 "\\.\pipe\gecko-crash-server-pipe.7208" 3356 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7208.63.832026522\403024858" -childID 8 -isForBrowser -prefsHandle 7832 -prefMapHandle 7828 -prefsLen 7541 -prefMapSize 244367 -parentBuildID 20210105180113 -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" - 7208 "\\.\pipe\gecko-crash-server-pipe.7208" 7848 tab
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Users\Lidka\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Lidka\AppData\Roaming\Mozilla\Firefox\Profiles\vncrck8y.default-1467548706931-1556435501334

prefs.js - "browser.startup.homepage" - "www.seznam.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.465 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@update.avastbrowser.com/Avast Browser;version=3]
"Description"=Avast Browser
"Path"=C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@update.avastbrowser.com/Avast Browser;version=9]
"Description"=Avast Browser
"Path"=C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.465 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-12-14 210632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2020-12-11 984472]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-12-14 157904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2020-12-11 687512]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Broadcom Wireless Manager UI"=C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe [2016-03-02 7032320]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2000-01-01 1664000]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2014-09-08 464608]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2017-08-26 2833504]
"AvastUI.exe"=C:\Program Files\Avast Software\Avast\AvLaunch.exe [2021-01-10 117352]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner"=C:\Program Files\CCleaner\CCleaner64.exe [2021-01-06 32440376]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2018-08-10 729704]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2021-01-06 32440376]
"Wargaming.net Game Center"=C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2020-12-02 2481016]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Lidka\AppData\Roaming\uTorrent\uTorrent.exe [2021-01-01 1972952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Lidka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Poslat do aplikace OneNote.lnk]
C:\PROGRA~1\MICROS~2\root\Office16\ONENOTEM.EXE [2020-12-11 185672]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"=c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2011-09-16 115048]
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-04 767176]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoSimpleNetIDList"=1
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2021-01-16 15:03:48 ----D---- C:\rsit
2021-01-16 15:03:48 ----D---- C:\Program Files\trend micro
2021-01-11 22:40:38 ----D---- C:\Games
2021-01-11 22:40:25 ----D---- C:\Users\Lidka\AppData\Roaming\Wargaming.net
2021-01-11 22:39:34 ----D---- C:\ProgramData\Wargaming.net
2021-01-10 19:46:43 ----D---- C:\Windows\pss
2021-01-10 11:00:02 ----D---- C:\Program Files (x86)\Codemasters
2021-01-10 09:07:14 ----D---- C:\Program Files (x86)\AVAST Software
2021-01-10 09:03:54 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2021-01-10 09:03:54 ----A---- C:\Windows\system32\drivers\aswStm.sys
2021-01-10 09:03:54 ----A---- C:\Windows\system32\drivers\aswSP.sys
2021-01-10 09:03:54 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2021-01-10 09:03:54 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2021-01-10 09:03:54 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2021-01-10 09:03:54 ----A---- C:\Windows\system32\drivers\aswNetNd6.sys
2021-01-10 09:03:54 ----A---- C:\Windows\system32\drivers\aswNetHub.sys
2021-01-10 09:03:54 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2021-01-10 09:03:54 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2021-01-10 09:03:54 ----A---- C:\Windows\system32\drivers\aswbuniv.sys
2021-01-10 09:03:54 ----A---- C:\Windows\system32\drivers\aswbidsh.sys
2021-01-10 09:03:54 ----A---- C:\Windows\system32\drivers\aswbidsdriver.sys
2021-01-10 09:03:54 ----A---- C:\Windows\system32\drivers\aswArPot.sys
2021-01-10 09:03:54 ----A---- C:\Windows\system32\drivers\aswArDisk.sys
2021-01-10 09:03:54 ----A---- C:\Windows\system32\aswBoot.exe
2021-01-10 09:03:48 ----D---- C:\Program Files\Common Files\Avast Software
2021-01-10 09:02:57 ----D---- C:\Program Files\Avast Software
2020-12-24 18:40:52 ----D---- C:\Program Files (x86)\SimtSimulator_1-5-92

======List of files/folders modified in the last 1 month======

2021-01-16 15:04:26 ----D---- C:\Windows\system32\drivers\etc
2021-01-16 15:04:01 ----D---- C:\Windows\Prefetch
2021-01-16 15:03:49 ----D---- C:\Windows\Temp
2021-01-16 15:03:48 ----D---- C:\Program Files
2021-01-16 14:53:31 ----D---- C:\ProgramData\Mozilla
2021-01-16 14:51:50 ----D---- C:\Windows\inf
2021-01-16 14:50:27 ----D---- C:\Program Files\CCleaner
2021-01-16 14:50:22 ----D---- C:\Windows\system32\Tasks
2021-01-16 14:01:25 ----D---- C:\Windows\system32\config
2021-01-16 10:32:59 ----D---- C:\Windows\SoftwareDistribution
2021-01-16 10:32:07 ----D---- C:\Windows
2021-01-16 10:31:38 ----D---- C:\ProgramData\AVAST Software
2021-01-16 10:28:37 ----D---- C:\ProgramData\PDFC
2021-01-15 20:45:04 ----SHD---- C:\System Volume Information
2021-01-13 13:18:16 ----D---- C:\Windows\debug
2021-01-13 01:18:01 ----D---- C:\Windows\system32\MRT
2021-01-13 00:55:05 ----AC---- C:\Windows\system32\MRT.exe
2021-01-11 22:39:34 ----HD---- C:\ProgramData
2021-01-10 19:44:22 ----D---- C:\Users\Lidka\AppData\Roaming\uTorrent
2021-01-10 19:39:12 ----D---- C:\Windows\Tasks
2021-01-10 19:39:12 ----D---- C:\Windows\system32\wfp
2021-01-10 19:39:08 ----D---- C:\Windows\system32\wbem
2021-01-10 19:38:26 ----D---- C:\Windows\system32\DriverStore
2021-01-10 19:38:25 ----D---- C:\Windows\system32\catroot2
2021-01-10 19:38:25 ----D---- C:\ProgramData\DAEMON Tools Lite
2021-01-10 19:38:18 ----D---- C:\Windows\registration
2021-01-10 19:38:14 ----RD---- C:\Program Files (x86)
2021-01-10 12:49:23 ----D---- C:\Windows\system32\LogFiles
2021-01-10 09:12:21 ----SHD---- C:\Windows\Installer
2021-01-10 09:12:21 ----SHD---- C:\Config.Msi
2021-01-10 09:05:56 ----D---- C:\Users\Lidka\AppData\Roaming\AVAST Software
2021-01-10 09:04:33 ----D---- C:\Windows\system32\drivers
2021-01-10 09:03:54 ----D---- C:\Windows\System32
2021-01-10 09:03:48 ----D---- C:\Program Files\Common Files
2021-01-10 08:04:55 ----D---- C:\Program Files\WinRAR
2021-01-08 21:54:09 ----D---- C:\Windows\SysWOW64
2021-01-08 17:00:09 ----D---- C:\Users\Lidka\AppData\Roaming\MPC-HC
2021-01-08 17:00:09 ----D---- C:\Program Files (x86)\Steam
2021-01-07 17:39:07 ----D---- C:\Program Files\Emergency 4
2021-01-07 17:33:40 ----D---- C:\Program Files (x86)\Mozilla Firefox
2020-12-24 19:09:03 ----D---- C:\Users\Lidka\AppData\Roaming\msihmdt

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswArDisk;aswArDisk; C:\Windows\system32\drivers\aswArDisk.sys [2021-01-10 36792]
R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsh.sys [2021-01-10 247888]
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniv.sys [2021-01-10 97360]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2021-01-10 84496]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2021-01-10 324904]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2014-06-15 31040]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R1 aswArPot;aswArPot; C:\Windows\system32\drivers\aswArPot.sys [2021-01-10 208672]
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriver.sys [2021-01-10 332880]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2021-01-10 42424]
R1 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2021-01-10 176384]
R1 aswNetHub;aswNetHub; C:\Windows\system32\drivers\aswNetHub.sys [2021-01-10 522480]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2021-01-10 108928]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2021-01-10 851256]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2021-01-10 468888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2018-02-02 27552]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-06-08 60416]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2021-01-10 214808]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2016-04-04 11576]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2014-06-15 43840]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2018-02-02 16752640]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2018-02-02 584192]
R3 aswNetNd6;Avast Firewall NDIS6 Helper; C:\Windows\system32\DRIVERS\aswNetNd6.sys [2021-01-10 38152]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2018-02-02 104976]
R3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys [2016-03-02 23760]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2018-02-02 7884536]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2019-07-30 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2017-07-06 119296]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2019-07-30 80384]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\Windows\system32\DRIVERS\dtlitescsibus.sys [2016-07-03 30264]
R3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\Windows\system32\DRIVERS\dtliteusbbus.sys [2016-07-03 47672]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\Windows\system32\DRIVERS\e1c62x64.sys [2014-11-13 495376]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2018-02-02 176880]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2016-04-04 190032]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2018-02-02 2595648]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2000-01-01 543744]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2017-08-26 572504]
R3 TPM;Čip TPM; C:\Windows\system32\drivers\tpm.sys [2016-02-05 147904]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2014-06-08 18432]
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\Windows\system32\DRIVERS\aswTap.sys [2016-03-03 44640]
S3 BthAudioHF;BthAudioHF Service; C:\Windows\system32\DRIVERS\BthAudioHF.sys [2009-12-21 52224]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2019-07-30 556032]
S3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys []
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys []
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys []
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys []
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys []
S3 cpuz143;cpuz143; \??\C:\Windows\temp\cpuz143\cpuz143_x64.sys []
S3 csr_bthav;Profil AV Bluetooth; C:\Windows\system32\drivers\csrbthav.sys [2012-03-22 99520]
S3 csravrcp;Profil AVRCP Bluetooth; C:\Windows\system32\DRIVERS\csravrcp.sys [2012-03-22 26304]
S3 CsrBtPort;Ovladač zařízení Bluetooth CSR; C:\Windows\system32\DRIVERS\CsrBtPort.sys [2012-03-22 2784968]
S3 csrhfgcc;Profil ovládání hovorů Bluetooth HFG; C:\Windows\system32\DRIVERS\csrhfgcc.sys [2012-03-22 38080]
S3 csrpan;Bluetooth Personal Area Network Device Driver; C:\Windows\system32\DRIVERS\csrpan.sys [2012-03-22 39616]
S3 csrserial;Ovladač zařízení SPP; C:\Windows\system32\DRIVERS\csrserial.sys [2012-03-22 61128]
S3 csrusb;CSR ovladač rozhraní USB pro hardwarový klíč Bluetooth; C:\Windows\System32\Drivers\csrusb.sys [2012-03-22 47296]
S3 csrusbfilter;CSR USB filter driver; C:\Windows\System32\Drivers\csrusbfilter.sys [2012-03-22 23752]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2020-04-24 136040]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ggflt;SOMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2016-03-31 16088]
S3 ggsomc;SOMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsomc.sys [2016-03-31 30424]
S3 johci;JMicron 1394 Filter Driver; C:\Windows\system32\DRIVERS\johci.sys [2012-07-16 26208]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2014-06-08 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2020-04-24 166760]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2019-01-28 25608]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2014-06-08 29696]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2014-06-08 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2014-06-08 29696]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2019-12-10 42496]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2020-11-03 170056]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2000-01-01 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2018-02-02 239616]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [2021-01-10 621728]
R2 avast! Tools;Avast Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [2021-01-10 351848]
R2 BtSwitcherService;Služba Pøepnutí Bluetooth; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe [2012-03-22 64216]
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2020-11-23 11137416]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2014-06-08 27136]
R2 CSRBtAudioService;Služba CSR Bluetooth Audio; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe [2012-03-22 465624]
R2 CsrBtOBEXService;Služba CSR OBEX; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe [2012-03-22 1041616]
R2 CsrBtService;CSR služba Bluetooth; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe [2012-03-22 825032]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-06-08 27136]
R2 HFGService;Handsfree Headset Service; C:\Windows\system32\svchost.exe [2014-06-08 27136]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2014-06-15 31040]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-05-06 1128952]
R2 Samsung Printer Dianostics Service;Samsung Printer Dianostics Service; C:\Windows\syswow64\\spdsvc.exe [2016-07-17 499000]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2000-01-01 327680]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [2021-01-10 8477080]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2018-08-10 3570792]
S2 avast;Služba Avast Browser Update (avast); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2021-01-10 194200]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2019-03-28 132792]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2019-03-28 158912]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-06-29 153168]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2020-12-13 335416]
S3 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agr64svc.exe [2009-12-04 28672]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2014-06-08 27136]
S3 avastm;Služba Avast Browser Update (avastm); C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2021-01-10 194200]
S3 AvastSecureBrowserElevationService;Avast Secure Browser Elevation Service (AvastSecureBrowserElevationService); C:\Program Files (x86)\AVAST Software\Browser\Application\87.0.7480.89\elevation_service.exe [2020-12-15 1409224]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\elevation_service.exe [2021-01-06 1431656]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-06-29 153168]
S3 hpqwmiex;HP Software Framework Service; C:\Users\Lidka\AppData\Roaming\Hewlett-Packard\hpqwmiex.exe [2016-03-02 793088]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-12-17 116224]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 263488]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2016-12-03 5132888]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2014-06-08 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2021-01-07 2073888]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2014-06-08 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2014-06-08 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2016-08-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-03-28 54912]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2019-11-14 242720]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]

-----------------EOF-----------------
Nahoru

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113388
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: dotaz na zrušení 2.stupně varování

#4 Příspěvek od Rudy »

Nebude. Potřebuji FRST. Viz výše.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Fidolfo
Návštěvník
Návštěvník
Příspěvky: 46
Registrován: 16 srp 2006 12:57

Re: dotaz na zrušení 2.stupně varování

#5 Příspěvek od Fidolfo »

rozumím...zde log

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-01-2021
Ran by Lidka (17-01-2021 00:25:46)
Running from C:\Users\Lidka\Downloads
Windows 7 Professional Service Pack 1 (X64) (2016-03-02 22:04:02)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-697796565-71972214-219725024-500 - Administrator - Disabled)
Guest (S-1-5-21-697796565-71972214-219725024-501 - Limited - Disabled)
Lidka (S-1-5-21-697796565-71972214-219725024-1000 - Administrator - Enabled) => C:\Users\Lidka

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

18 Wheels of Steel Pedal to the Metal (HKLM-x32\...\18 Wheels of Steel Pedal to the Metal) (Version: 1.0 - ValuSoft)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Audacity 1.3.12 (Unicode) (HKLM-x32\...\Audacity 1.3 Beta (Unicode)_is1) (Version: - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.10.2442 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 87.0.7480.89 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 5.100.82.148 - Broadcom Corporation)
Broadcom Wireless Utility (HKLM\...\Broadcom Wireless Utility) (Version: 5.100.82.148 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
CDex - Digital Audio CD Extractor and Converter (HKLM-x32\...\CDex) (Version: 2.23.0.2019 - CDex.mu)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
CSR Harmony Wireless Software Stack (HKLM\...\{17DEA095-8EE1-49A2-AC5A-9663DB098FA9}) (Version: 2.1.63.0 - Název společnosti:)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0544 - Disc Soft Ltd)
Emergency 4 (HKLM-x32\...\{652B48CA-165B-4671-9415-2B477B20CE82}_is1) (Version: 1.02 - US - ACTION, s.r.o.)
Emergency NE (HKLM-x32\...\Emergency NE_is1) (Version: 1.0 - Game shop, s.r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
HP ESU for Microsoft Windows 7 (HKLM-x32\...\{B841A88A-704B-4CC0-B06E-49B8D497FDC9}) (Version: 1.1.11.1 - Hewlett-Packard Company)
HP Webcam Driver (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.50060.0 - Sonix)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6433.0 - IDT)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.11.1193 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 15.4 - Intel)
Intel® Chipset Device Software (HKLM-x32\...\{fb610cea-ba50-4d4b-a717-cf025419035c}) (Version: 10.1.1.13 - Intel(R) Corporation) Hidden
IrfanView 4.56 (64-bit) (HKLM\...\IrfanView64) (Version: 4.56 - Irfan Skiljan)
JMicron 1394 Filter Driver (HKLM-x32\...\{13C96625-28E4-4c58-ADE0-CDAFC64752EB}) (Version: 1.00.25.03 - JMicron Technology Corp.)
Klasifikace 5.4 (HKLM-x32\...\{BE7E6DAC-7EAA-4546-BBDD-43ADDF49EA14}_is1) (Version: - JPH Software)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.100 - LSI Corporation)
Mafia (HKLM-x32\...\{C72D7008-266D-4DD8-BF3C-296B736127F6}) (Version: 1.02 - )
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.12527.21504 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProplusRetail - en-us) (Version: 16.0.12527.21504 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-697796565-71972214-219725024-1000\...\OneDriveSetup.exe) (Version: 20.219.1029.0005 - Microsoft Corporation)
Microsoft Project Professional 2016 - cs-cz (HKLM\...\ProjectProRetail - cs-cz) (Version: 16.0.12527.21504 - Microsoft Corporation)
Microsoft Project Professional 2016 - en-us (HKLM\...\ProjectProRetail - en-us) (Version: 16.0.12527.21504 - Microsoft Corporation)
Microsoft Visio Professional 2016 - cs-cz (HKLM\...\VisioProRetail - cs-cz) (Version: 16.0.12527.21504 - Microsoft Corporation)
Microsoft Visio Professional 2016 - en-us (HKLM\...\VisioProRetail - en-us) (Version: 16.0.12527.21504 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27027 (HKLM-x32\...\{39e28474-b67b-4209-af1b-e9ad0a83d8ca}) (Version: 14.16.27027.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 84.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 84.0.2 (x64 cs)) (Version: 84.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0 - Mozilla)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{29F5A1C9-0BC3-16E6-9384-3BC5D1CB7ACE}) (Version: 1.00.0000 - Název společnosti:) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12527.21504 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12527.21504 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.12527.21504 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.12527.21504 - Microsoft Corporation) Hidden
PDF Complete Special Edition (HKLM-x32\...\PDF Complete) (Version: 4.0.57 - PDF Complete, Inc)
PX Profile Update (HKLM-x32\...\{16068EAC-37DE-7509-66D8-E00CC6091818}) (Version: 1.00.1. - AMD) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation)
Samsung Easy Document Creator (HKLM-x32\...\Samsung Easy Document Creator) (Version: 1.06.46 (30.10.2014) - Samsung Electronics Co., Ltd.)
Samsung M2070 Series (HKLM-x32\...\Samsung M2070 Series) (Version: 1.25 (29.9.2016) - Samsung Electronics Co., Ltd.)
Samsung Printer Diagnostics (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.4.7.04 - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.28 - Samsung Electronics Co., Ltd.) Hidden
Simt Simulator verze 1.5.92 (HKLM-x32\...\{7C5E9B1D-F234-48CB-9F65-C4FB9A2DABFF}_is1) (Version: 1.5.92 - Tomas Faina)
SNS Upload for Easy Document Creator (HKLM-x32\...\{B6B5F07C-88D5-49D3-A1A7-A6D4BC37DCCC}) (Version: 1.0.0 - Samsung Electronics Co.,Ltd)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.25 - Synaptics Incorporated)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.50 - Ghisler Software GmbH)
Vypínač na dobrou noc verze 2.0 (HKLM-x32\...\Vypínač na dobrou noc_is1) (Version: - )
Wargaming.net Game Center (HKU\S-1-5-21-697796565-71972214-219725024-1000\...\Wargaming.net Game Center) (Version: 20.7.2.2851 - Wargaming.net)
WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-697796565-71972214-219725024-1000\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-01-10] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-01-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-01-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-08-10] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-01-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-08-10] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-01-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

2014-09-08 12:38 - 2014-09-08 12:38 - 000051200 _____ () [File not signed] C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2019-12-13 15:19 - 2019-12-13 15:19 - 000031232 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\A4.Foundation\72a69f04223d3a51cd1e1c5f88f4035c\A4.Foundation.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\743d56bc6320308e687648c996476ff3\AEM.Actions.CCAA.Shared.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\5f13361d6d66bafc5a31dc540f1b140e\AEM.Plugin.EEU.Shared.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\da9dd4bb89e5a088506717c9c461694c\AEM.Plugin.Hotkeys.Shared.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.54d8abe3#\d344deff2eda9b9f9a6383ea22e28c9c\AEM.Plugin.DPPE.Shared.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000281600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\1160b04d31651d764e0a716380e59579\AEM.Plugin.Source.Kit.Server.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\65c4f731cec6e1e77fa0eb78fadd2d3e\AEM.Plugin.WinMessages.Shared.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\96779eb9e9109c781928ee2d7f9f88f0\AEM.Plugin.REG.Shared.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\02be7dd34f76a378ce42f5e64d80c443\AEM.Plugin.GD.Shared.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\3c62043d6d92137e9668289a0dc7a48c\AEM.Server.Shared.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000267776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Server\8990a345e93f2a58de1518792a922fdb\AEM.Server.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000055808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\APM.Foundation\25dbe8a92cc0fa4c7f60fc8831df5fcd\APM.Foundation.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000122880 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\ATICCCom\0a861136cdeab1eaf4bfef3018b7cb76\ATICCCom.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000204288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\0e1eb42608545f61bdecf8a550e67b18\CCC.Implementation.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000154112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.21d2ac78#\3967942a28c1091bbf3abcf0604fbebc\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000128000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\3bb7d1aa2b163131b293ccb10e7514b7\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\11f48b2e33d24a0aa663636f084ef107\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\7bd44b81920bfab91c2c11d5c3ba13c0\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000107008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\5b680583245b43e90074118ef409a362\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000209920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4542c692#\220dfdb869ee53088454e654ac4f4332\CLI.Aspect.DeviceCRT.Graphics.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.46819220#\690486c07bb19fe3f79e52e051b94cac\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\78cfc301fdd4819048c6d5ef6b26a700\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\24068675d2f20ef698d023776260c416\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.59a12d95#\ee6a44f06af1cbc8d52488b052a1486b\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\7a1f2f87707fa18c85a7f3de30684473\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000365056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\9011811d2c649e869909b7593e7cfd73\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000064000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\1e17ba532ec9c721d9841d94573aa83c\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000745472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\0345e2e5eefdffce0e958051cabe1963\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000449024 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\fe22f59c36b9eb3d9c7ab40203d21584\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\0c500666373dc924102209da89c09449\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000158208 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a0ae52bc#\ebafd91888072345e5e5818235b7cc42\CLI.Aspect.DeviceLCD.Graphics.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\55d8aa5a8bc14e7f3edb716398ee4d42\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000082944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\cc52749ff8484ce3d6f880af0c42bd6c\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000462336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\064eb3af52efc8eae9d845178ae223b0\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000086528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ae5e117c#\d6b2c4237411fb41f5298845fc622f3a\CLI.Aspect.DisplaysColour2.Graphics.Shared.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000067072 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\83897d2fe301da04984eb02c28799f7b\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000340992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\f75fb18e795c5d10a596e95f6460ec86\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\9ad2bfb11a274355fa0d0b454a5b667f\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000276480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\1c0175423e463ea440f8d3a3ce657293\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 003312640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\fd7bd717896ad6778de5c9831fe4cdbe\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000240640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\ebe688cbae8eb5d1700e1d53e6feb1a7\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000047616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\15643147cb999afdfd88ff1937ebcbe7\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\cb53367dfb95bb06719c5318b9ad468b\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000051200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\74aa8baf36285ad9ae911c186fabeca2\CLI.Caste.A4.Runtime.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\b1c0caf7a9d344fba9219db8c201b5a8\CLI.Caste.A4.Shared.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\d9a316dfb352483de3312f70590e975e\CLI.Caste.A4.Dashboard.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\b3d0d2df7a3438fb8f6fa07230d04a30\CLI.Caste.Fuel.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000311296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\5c05a742a79387779b97c706b8e2cd68\CLI.Caste.Fuel.Runtime.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\049852be2a4a524a968e23e56dbb3a1b\CLI.Caste.Fuel.Dashboard.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\522c7e10cdac0e95e75f61cce90bde2b\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 001555456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\fcdc8dd841c386f93f52d38aa2f7d2fc\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000587776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\3cba3c15719874d6313df64964c46e3a\CLI.Caste.Graphics.Dashboard.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\9698ca502c64ef8a7fd1f75f91cc179c\CLI.Caste.HydraVision.Runtime.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\a902697939896a7e16921163641b7f9b\CLI.Caste.HydraVision.Shared.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\23467108a4b292427ceb8d9c620cee4c\CLI.Caste.HydraVision.Dashboard.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\083507b9eae35fb3487b36488224e586\CLI.Caste.Platform.Shared.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\fa67f8bb944d7ebd5f07b66cf530199d\CLI.Caste.Platform.Runtime.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\e49d2bee9c2a496e531d248f589715d2\CLI.Caste.Platform.Dashboard.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\4bca7d64b66b241f28aa0ae48b2e38c2\CLI.Component.Runtime.Shared.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000901632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\6716169d0e1201085398c0e165756e96\CLI.Component.Systemtray.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000173568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\83e4530d20e1b8742db64927e5996c75\CLI.Component.Dashboard.ProfileManager2.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\3e427f87f95d6024e43e02cf373cd6a2\CLI.Component.Runtime.Shared.Private.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\1b7fe6a514ec17abb1ec5b9dc0be173d\CLI.Component.Runtime.Extension.EEU.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 001609728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\e65af5b751c6781eff73df68bff7f3ef\CLI.Component.Dashboard.Shared.Private.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\fe742e6ec33a9589535bd774422c4d60\CLI.Component.Client.Shared.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\f43afa13aa4f639963d3f588838e9b54\CLI.Component.Dashboard.Shared.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000089600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\2dedba26cff8b1ca5b6b2c0104b968ec\CLI.Foundation.Private.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\4d32d7711cac36b142828518735fbfc0\CLI.Foundation.XManifest.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000091136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\57b888710a7771039b1fd68c6bf54156\CLI.Foundation.CoreAudioAPI.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 001079296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\f9c331c23c4f9cf9a59fd380e9341342\CLI.Foundation.Client.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\de53e9fce686857bcc3c774672aa3895\CLI.Foundation.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\56c8bd44eabab9ab432714111c865c9b\DEM.Foundation.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000115200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\b15546e9733fd6f37c068e4393fac2c9\DEM.Graphics.I0601.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\99064803e34a38e15ae09a58faee983f\DEM.Graphics.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\576a2bcbfadd04a3ebd0b5ed03cd6e4a\Fuel.Foundation.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000296960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\0086748bd9e8ad0e3d9943b4c6ae6c26\LOG.Foundation.Implementation.ni.dll
2019-12-13 15:19 - 2019-12-13 15:19 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\84ac2eed8c412d929e29f2b599399530\LOG.Foundation.Private.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\beb3f3206ba7bba2ad782d59481da02c\LOG.Foundation.Implementation.Private.ni.dll
2020-01-17 00:07 - 2020-01-17 00:07 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\cd609e5e2b4bd734fef5d5878d0a3cc9\LOG.Foundation.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\36471b56949ec9c0ebd1ed7d187bae4b\MOM.Foundation.ni.dll
2019-12-13 15:24 - 2019-12-13 15:24 - 000402944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\390ffd892fe49fcc401527474694ea60\MOM.Implementation.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\5fec3db2a1569b883fa155a3ae9fc133\NEWAEM.Foundation.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\9aa72c66dec4ba195a5b0e47e72aa2c9\ADL.Foundation.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000256000 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\APM.Server\70a87518074e00ba245af135964bfea0\APM.Server.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000298496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9b707b25#\40e508123e99234dcaad3944fecb6862\CLI.Aspect.DeviceProperty.Graphics.Runtime.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 001654272 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.aa59351a#\fbd72654ff50e3a3d04834527d6a6ae9\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 006336512 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e6d9f3a8#\a5e5c89c4de470ea62d3e245154170f3\CLI.Aspect.DeviceDFP.Graphics.Dashboard.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 008027648 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\98a75ebe848e8680b599591ce84129a7\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 001159680 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Combine7332395e#\6389a0ed7a2332535104e54c807579e4\CLI.Combined.Graphics.Aspects2.Runtime.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000136704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\88bbbb23a25b95510c08023e8af53dda\CLI.Component.Client.Shared.Private.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000234496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\e698aa63cefc546c9e957431c8cc48a8\CLI.Component.Runtime.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000929280 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\33ab951417e5761b22d476106cd3d131\CLI.Component.Dashboard.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0706\90684130b4e41b9c58df5b2b8fcaf922\DEM.Graphics.I0706.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000084480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\a7743f385fc4ed00cbfa09792f0be05d\DEM.Graphics.I0709.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000012288 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\b1c533dfb3ad253cc391c61bea99fdaf\DEM.Graphics.I0712.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000018432 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\0100f8987fdb5433efa9208bd96f630e\DEM.Graphics.I0804.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0805\a6a72949b04996e6292867b13f182278\DEM.Graphics.I0805.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0812\9f5190ecad27602d6ab04c07d306a276\DEM.Graphics.I0812.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0912\7a248ea5cb4c774eff22f119403cf073\DEM.Graphics.I0912.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000035840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\0047598bb2667d04c913685a79a0b39c\DEM.Graphics.I1010.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 001139200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\7262ef4b11f42019abf9463148985fb4\Localization.Foundation.Private.ni.dll
2020-01-17 00:10 - 2020-01-17 00:10 - 000244224 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\ddc921b6fa58aa889b90acadcc0df1b2\ResourceManagement.Foundation.Implementation.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\46186302c976d4f7334817c2b437496b\ResourceManagement.Foundation.Private.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000091648 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\0f99d6ce4d918ca1ddb635ffa48c98ba\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 002845696 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\c75406b172cf8a3cdedfc28e036f4837\CLI.Caste.Graphics.Shared.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 003268096 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\b77cf47eaf87bbfc5e608a80533753b8\CLI.Caste.Graphics.Runtime.ni.dll
2016-03-03 00:00 - 2016-03-02 23:57 - 002679808 _____ (Broadcom Corporation) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\bcmpeerapi.dll
2016-03-03 00:02 - 2016-03-03 00:02 - 000071680 _____ (Broadcom Corporation) [File not signed] C:\Windows\assembly\GAC_64\bcmwlrmt\5.100.82.0__6d6a20262490fcdc\bcmwlrmt.dll
2016-03-03 00:00 - 2016-03-02 23:57 - 000073216 _____ (Broadcom Corporation) [File not signed] C:\Windows\system32\wltrynt.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\MSVCP140.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\ucrtbase.DLL
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\VCRUNTIME140.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\VCRUNTIME140_1.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000335360 _____ (Microsoft) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\c199abe8e5a810042f93b2b2839d40e2\Microsoft.WindowsAPICodePack.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 002546688 _____ (Microsoft) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\c84aff6636efe990221bda796cfce443\Microsoft.WindowsAPICodePack.Shell.ni.dll
2016-04-04 11:03 - 2016-04-04 11:03 - 000123904 _____ (Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor64.dll
2017-02-24 11:36 - 2017-02-24 11:36 - 003695616 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\ScanFax2PC\CDAScan2PCMonitor64.dll
2016-03-03 00:00 - 2016-03-02 23:57 - 000342528 _____ (TODO: <Company name>) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\bcmfshapi.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-12-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-12-14] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2011-01-19] (Skype Technologies SA -> Skype Technologies)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2021-01-16 15:04 - 000000840 _____ C:\Windows\system32\drivers\etc\hosts

2016-07-03 21:27 - 2016-07-03 21:28 - 000000375 _____ C:\Windows\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\PROGRAM FILES (X86)\NVIDIA CORPORATION\PHYSX\COMMON;C:\PROGRAM FILES\BROADCOM\BROADCOM 802.11;%SYSTEMROOT%\SYSTEM32;%SYSTEMROOT%;%SYSTEMROOT%\SYSTEM32\WBEM;%SYSTEMROOT%\SYSTEM32\WINDOWSPOWERSHELL\V1.0\;C:\PROGRAM FILES (X86)\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC;;C:\PROGRAM FILES (X86)\AMD\ATI.ACE\CORE-STATIC
HKU\S-1-5-21-697796565-71972214-219725024-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lidka\AppData\Roaming\IrfanView\IrfanView_Wallpaper.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupfolder: C:^Users^Lidka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Poslat do aplikace OneNote.lnk => C:\Windows\pss\Poslat do aplikace OneNote.lnk.Startup
MSCONFIG\startupreg: uTorrent => "C:\Users\Lidka\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{2923CBCD-3F2C-4EC3-B0BB-C4108CFBB441}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{2A571E04-BCA1-49CF-8BF5-1E4D76CBE96C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{7C3014AD-40CC-4861-8913-C058D80F4A2B}C:\topcd\emergency ne\bin.x86\em2012.exe] => (Allow) C:\topcd\emergency ne\bin.x86\em2012.exe () [File not signed]
FirewallRules: [UDP Query User{F8F49074-F053-414E-93CA-AB596C67A708}C:\topcd\emergency ne\bin.x86\em2012.exe] => (Allow) C:\topcd\emergency ne\bin.x86\em2012.exe () [File not signed]
FirewallRules: [{19EFE057-6AA1-4512-B9FE-2796997BBB26}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{75F5B337-AB78-48A8-84C5-299951D0CE13}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{00E4CE96-10FB-4C6C-81A9-144257706669}] => (Allow) C:\Users\Lidka\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F02EDE41-9E58-49E4-A10E-5EAF6E91CD75}] => (Allow) C:\Users\Lidka\AppData\Roaming\uTorrent\uTorrent.exe => No File
FirewallRules: [{89E2EDB8-758B-4D8B-8A17-F9FACCD16061}] => (Allow) C:\Users\Lidka\AppData\Roaming\uTorrent\uTorrent.exe => No File
FirewallRules: [{92659D2A-3711-4395-948D-19019120F9FD}] => (Allow) C:\Windows\twain_32\Samsung\SLM2070\ScanCDLM\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{CA69EE67-BD6C-48AB-82AE-5F8E9F5F86CC}] => (Allow) C:\Windows\twain_32\Samsung\SLM2070\ScanCDLM\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{66697439-42D2-4810-B568-CD1D0E93B336}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{85F6A0AB-34B8-42FB-B098-19D3A7C7E5C8}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{926DDB76-CE17-4E8A-A1E4-2DEBB90A1E2D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EasyPrinterManagerV2.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{4B72C18F-2FBD-4698-BE9D-1C7162F0B157}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics)
FirewallRules: [{2616065D-EE8C-4A21-B258-E1B43D184153}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2AlertList.exe (Samsung Electronics CO., LTD. -> Samsung Electronics)
FirewallRules: [{9E9385DD-8D0F-490E-B26C-0450B700AAA9}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2Migrator.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{7E2AAB97-04B2-453A-B5D1-188AF2980E4B}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{3E084BB8-9A3A-451D-97D9-FC8835CA8829}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{A5D1B4A7-62BF-4DEB-81D1-0833BF709571}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{04689CCE-0F1B-4C98-871C-202832E0B2D6}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [TCP Query User{680AF2F2-6827-485C-A6AC-AA7AFF8AE246}C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe] => (Block) C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [UDP Query User{E58B5B83-E5C3-4C73-BC6B-575D7B67B19E}C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe] => (Block) C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{613A2E2C-5A9A-4783-A503-788ABDC4AFFA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{101A755F-F2D3-4C74-B81C-A2166354E811}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EE6B5F20-1B9A-4FE1-92EB-7BEA577DDB8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager Touch 2018\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [{B6522A40-B42E-423F-AC2A-ACF9F17BC671}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager Touch 2018\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [{CC156B25-AF6C-482A-ADD1-DAE3878311AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2018\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [{47147BB6-0CEF-49D7-BA5C-5FAF95BD7EDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2018\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [{68CEF7DB-14A1-431D-934A-BA62CC15B898}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{8E6D18F3-7159-4555-9E67-2FBF84342A37}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{D37EBC83-65F4-47F9-9B3F-54D6E0360E3F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{9B729FE1-C6D7-4E75-B7B1-EE6E33B21B74}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{252B51CC-26BA-4351-B30B-0A330F99AE57}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{C3D6A707-0D15-4996-B180-3CB762EC8F42}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{976BB2C6-9E9F-4F21-A273-DF15F8BDEA03}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{B55D6D5E-6A1D-4343-82F5-01209C31BD49}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{AA5D842E-52CC-4245-BCB5-37F03287CCFA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{0A478C7B-AFBB-48A4-B9FE-1A4488B8B3C6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{1FA0BB2B-BD85-4DF9-AC84-662C068D18BE}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{CCE0BB72-F5A7-40EA-A37C-5FCEC0B9A232}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E22B32F8-1C9E-4A3D-9901-32425CB42510}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A23A7E70-5C54-414D-AEC7-E61888DF0638}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{347E60F0-3871-4AC8-8FF1-21B9677F9A08}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{15A472F1-30EB-462E-BDB2-292347A21B3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{96EC5BB7-54F8-4945-966E-7DB29435055A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{27B12396-8A59-4EC5-A96B-BC43AE95EDA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{3AE0DDB1-32F3-47BA-A939-569F5CBB9C87}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{615BA4BE-0406-40EE-B4E8-83D3F74B7F7F}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{2EF4355F-5910-42C6-9F1F-AA78F951FDD3}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{15F7EB0C-33DE-47A0-A180-8F33F05854F1}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{5C97EAFA-C9AE-4FBB-BF31-662C3CA19F07}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{E0ED93F5-2F48-4647-A0E1-C4DE1C21D8F7}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)

==================== Restore Points =========================

15-01-2021 20:44:41 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/16/2021 09:53:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/16/2021 02:52:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LogonUI.exe, verze: 6.1.7601.17514, časové razítko: 0x4ce79f70
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24545, časové razítko: 0x5e0eb67f
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000bf262
ID chybujícího procesu: 0x1fac
Čas spuštění chybující aplikace: 0x01d6ec0ecbade577
Cesta k chybující aplikaci: C:\Windows\system32\LogonUI.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: 0c8886f5-5802-11eb-93f7-cc52afeb871e

Error: (01/16/2021 10:28:54 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/16/2021 12:26:46 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Název chybujícího modulu: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000006f58
ID chybujícího procesu: 0x894
Čas spuštění chybující aplikace: 0x01d6eb458957c281
Cesta k chybující aplikaci: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
Cesta k chybujícímu modulu: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
ID zprávy: 21ea5ef0-5789-11eb-9126-cc52afeb871e

Error: (01/15/2021 02:52:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/15/2021 12:51:13 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Název chybujícího modulu: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000006f58
ID chybujícího procesu: 0x8c8
Čas spuštění chybující aplikace: 0x01d6ea8b94026d55
Cesta k chybující aplikaci: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
Cesta k chybujícímu modulu: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
ID zprávy: 62162c22-56c3-11eb-89c4-cc52afeb871e

Error: (01/14/2021 04:41:25 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/14/2021 04:41:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LogonUI.exe, verze: 6.1.7601.17514, časové razítko: 0x4ce79f70
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24545, časové razítko: 0x5e0eb67f
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000bf262
ID chybujícího procesu: 0x3dc
Čas spuštění chybující aplikace: 0x01d6ea8b800bc2e9
Cesta k chybující aplikaci: C:\Windows\system32\LogonUI.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: e9d4cddd-567e-11eb-89c4-cc52afeb871e


System errors:
=============
Error: (01/16/2021 12:27:38 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BFF6845D-E49A-4A99-9609-418ED36F1C54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/16/2021 12:27:01 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Služba CSR OBEX byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/15/2021 12:51:26 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Služba CSR OBEX byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/14/2021 09:58:42 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error: (01/14/2021 04:43:05 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Služba DCOM zjistila chybu %%1053 = Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas. při pokusu o spuštění služby Disc Soft Lite Bus Service s argumenty za účelem spuštění serveru:
{1BB2CAF7-8881-4CE8-B16A-3CA37C7C6F33}

Error: (01/14/2021 04:43:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Disc Soft Lite Bus Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (01/14/2021 04:43:05 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Disc Soft Lite Bus Service bylo dosaženo časového limitu (30000 ms).

Error: (01/14/2021 12:18:46 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BFF6845D-E49A-4A99-9609-418ED36F1C54} se v daném časovém limitu neregistroval u služby DCOM.


CodeIntegrity:
===================================

Date: 2021-01-17 00:27:13.730
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-17 00:27:11.720
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-17 00:19:28.718
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-17 00:15:52.799
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-17 00:14:52.581
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-17 00:03:50.324
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-17 00:02:13.144
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-17 00:02:11.352
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: Hewlett-Packard 68SCE Ver. F.61 06/11/2015
Motherboard: Hewlett-Packard 1619
Processor: Intel(R) Core(TM) i5-2450M CPU @ 2.50GHz
Percentage of memory in use: 81%
Total physical RAM: 4070.35 MB
Available physical RAM: 771.92 MB
Total Virtual: 8138.85 MB
Available Virtual: 3186.42 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:594.95 GB) (Free:254.24 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (HP_RECOVERY) (Fixed) (Total:98.39 GB) (Free:98.28 GB) NTFS
Drive e: (HP_TOOLS) (Fixed) (Total:4.98 GB) (Free:2.12 GB) FAT32

\\?\Volume{5094b845-e0be-11e5-8af6-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.25 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 47CAA2A8)
Partition 1: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=594.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=98.4 GB) - (Type=0F Extended)
Partition 4: (Not Active) - (Size=5 GB) - (Type=0C)

==================== End of Addition.txt =======================
Naposledy upravil(a) Fidolfo dne 17 led 2021 00:31, celkem upraveno 1 x.

Fidolfo
Návštěvník
Návštěvník
Příspěvky: 46
Registrován: 16 srp 2006 12:57

Re: dotaz na zrušení 2.stupně varování

#6 Příspěvek od Fidolfo »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-01-2021
Ran by Lidka (administrator) on LIDKA-PC (Hewlett-Packard HP ProBook 6560b) (17-01-2021 00:23:28)
Running from C:\Users\Lidka\Downloads
Loaded Profiles: Lidka
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Andrea Electronics Corporation) [File not signed] C:\Program Files\IDT\WDM\AESTSr64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <3>
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Broadcom Corporation) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\BCMWLTRY.EXE
(Broadcom Corporation) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.EXE
(Broadcom Corporation) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\stacsv64.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\sttray64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Temp\OfficeClickToRun.exe.bak
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <8>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
(PDF Complete -> PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Samsung Electronics CO., LTD. -> ) C:\Windows\SysWOW64\spdsvc.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe [7032320 2016-03-02] (Broadcom Corporation) [File not signed]
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2000-01-01] (IDT, Inc.) [File not signed]
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [464608 2014-09-08] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [117352 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [NUSB3MON] => c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [729704 2018-08-10] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2481016 2020-12-02] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {1f05a039-2abb-11e7-bf1c-cc52afeb871e} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {9dffb4e6-5319-11eb-8f11-cc52afeb871e} - G:\autorun.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {bc645c11-4158-11e6-a9c7-ac81127a3ef3} - H:\Setup.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {c130a406-a503-11e8-88ef-e4115bf6b0fe} - H:\setup.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {fef1731c-d03e-11e6-b7bd-e4115bf6b0fe} - H:\HiSuiteDownLoader.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {fef17365-d03e-11e6-b7bd-e4115bf6b0fe} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-18\...\Run: [EEDSpeedLauncher] => C:\Windows\system32\eed_ec.dll [1857048 2016-09-28] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Windows x64\Print Processors\ssm4mPC: C:\Windows\System32\spool\prtprocs\x64\ssm4mpc.dll [52248 2016-09-28] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\HCR Client Port Monitor: C:\Windows\SYSTEM32\csrportmon.dll [73416 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\...\Print\Monitors\PDFC: C:\Windows\SYSTEM32\pdfc_port.dll [20968 2011-05-06] (PDF Complete -> PDF Complete, Inc.)
HKLM\...\Print\Monitors\ssm4m Langmon: C:\Windows\SYSTEM32\ssm4mlm.dll [31248 2016-09-28] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-07] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\87.0.7480.89\Installer\chrmstp.exe [2021-01-14] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2020-06-29] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{5355DA8C-FE32-49b4-A567-A67535C86592}] -> C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BLEtokenCredentialProvider.dll [2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01CCE1E8-64EC-4C05-889D-AB87BE6EB6C9} - System32\Tasks\{08E2DB35-1575-465E-978F-6A5475427A99} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {023AC150-6621-4E2E-BE60-FD00C78B962A} - System32\Tasks\{3B5BE5EE-48C4-4C14-A911-625C4FDA8FE1} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {02CA40F3-ADE9-4FCA-AADF-92180D9EB065} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158768 2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {039CE4DB-DB58-41D1-8375-1BA2BED447D3} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
Task: {0578017F-EF8E-4CE4-81D4-82D94162375C} - System32\Tasks\{CA3AF45C-D39B-4D07-8C8E-C6C417F9BB08} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {07D895C7-3E70-434E-A4F9-0DF776DF3F71} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4621920 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
Task: {0BE820D4-A596-4D15-A191-9C34C2D91DBC} - System32\Tasks\{7D875000-4162-43DC-ACA3-79BB57676532} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {1489D830-2972-4CB1-B30B-CB1BED46D4C1} - System32\Tasks\{B7E809B5-13E8-4506-A5D0-664BF4DD9CE4} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\Emergency 4\ModInstaller.exe" -d "C:\Program Files\Emergency 4"
Task: {19B48AA6-88D9-40BF-9970-3BE5C980378B} - System32\Tasks\{EC0AA2AA-4A16-40AE-802B-34C1C36832FC} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {19B49F9E-FC8C-4B0B-BB5E-A0F65957E30B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612232 2021-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {1B297EB7-5A83-46DA-8C12-CA4546AB80A7} - System32\Tasks\{9160F722-0D1F-45ED-A5D1-8D13FF85B3D5} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {1BF90836-80CE-4136-B198-ABC7FFACCECA} - System32\Tasks\{C6591B17-64C3-425A-90C1-233043D18302} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {2003EF0D-BFBF-4DF2-A7D9-D582329A32B3} - System32\Tasks\{6B27291E-9679-4302-9388-E701110699F4} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {268BBE35-8DF4-4691-81B2-E06B6BC344CB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24612232 2021-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {26BA8D28-56F8-4C0B-B695-ABCB82593827} - System32\Tasks\{CC3D14AA-7D8C-4276-A890-694AE308D49D} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {2E189F6F-D736-4376-830F-7F04220D2431} - System32\Tasks\{45F7A97D-F26E-4585-8BFC-C48DFFCC04A8} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {381D390A-0F21-4B16-9105-1DF214CC2F59} - System32\Tasks\{0948A692-5C95-4789-A9BE-B7D965AB7B97} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {3B979D04-D711-40FD-9BDA-6C68B1AA1D87} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [1338664 2017-02-24] (Samsung Electronics CO., LTD. -> )
Task: {3F31F837-D014-4973-9E84-346177486544} - System32\Tasks\{5213A586-AA3B-4D66-AA16-49FC6276EA68} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {43ECE3A0-5A07-4E33-A821-848844135F4C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {450137B1-FCA5-4FCC-9094-4C054D4EAA2F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {45C974BC-3F1E-41FA-8532-800049369DE0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-29] (Google Inc -> Google Inc.)
Task: {46059FA5-C096-463F-89B4-E99E24278D4A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2021-01-10] (Avast Software s.r.o. -> Avast Software)
Task: {5047C7D8-8017-4E95-BD20-806035C8B443} - System32\Tasks\{45456ACB-1DF6-4EFE-BFAE-330169182258} => C:\Windows\system32\pcalua.exe -a C:\Users\Lidka\Desktop\irfanview_lang_czech.exe -d C:\Users\Lidka\Desktop
Task: {53F8533A-9CE0-4171-9544-188BD3E4C732} - System32\Tasks\{2172B480-E77F-4682-949C-E32E022861A5} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {545BF6B9-0DEF-451E-81F1-F253E149995D} - System32\Tasks\{F47DEC21-A11C-4FAF-A32F-C444CEB8F930} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {57902410-F9D6-42FD-A79B-D493EDEE5C63} - System32\Tasks\{971BB844-CE74-4DFD-8454-2A53687CCF28} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {60243139-2739-4D4D-937D-D78475C7B455} - System32\Tasks\GoogleUpdateTaskMachineUA1d6a3092b23dd6c => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-29] (Google Inc -> Google Inc.)
Task: {65E5787A-333D-4A4E-A928-04099C298633} - System32\Tasks\{198AE8F3-2ED0-4808-9E9C-28D7929E7A21} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {68A7D876-F089-488B-8E01-BA3FF65014D0} - System32\Tasks\{891B5445-8F19-4C14-9592-C0F002974879} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {6C27EB2C-5FF5-4786-B443-9F782F28E0B5} - System32\Tasks\{E29C1DDA-3EC9-4821-8EA9-F2E6310875DE} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {70445CF7-9767-41AE-8538-1291E79099A2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {7A4C74BE-C321-4F51-A502-B364C0840BD2} - System32\Tasks\{EF54A693-5CDF-4A7C-89D3-8FA865CD1B5A} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {7EFC21C5-712C-45F0-A63F-0382D3C01896} - System32\Tasks\{54AF4C10-152D-491A-98F3-B88E33461AB6} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {81BC1EF2-D449-4BDA-ADB0-1B588C054C23} - System32\Tasks\Driver Booster SkipUAC (Lidka) => C:\Program Files (x86)\IObit\Driver Booster\5.2.0\DriverBooster.exe
Task: {81F2CD7F-FEF5-4223-8616-1D019C2AB75A} - System32\Tasks\{231D30C3-E7F9-4767-AF29-32EC8BB38816} => C:\Windows\system32\pcalua.exe -a C:\Users\Lidka\Desktop\setup.exe -d C:\Users\Lidka\Desktop
Task: {857ADB4C-6FBA-46E7-BB03-40256304A4B5} - System32\Tasks\{76AD06B1-43A8-4683-B9B1-338ADA4145CF} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {85B4D72D-9F8C-4B91-8C3D-D322B57B5C24} - System32\Tasks\{B6E8B7E6-93C0-4F05-9E04-008FF32DF248} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {85E618CA-5CC4-4B02-9C60-0DB0C95C3CE5} - System32\Tasks\{C02E121F-5B68-4DA9-8F2C-8C466E1BBF9A} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {86BE2032-0C1A-49AA-ACBA-079E096B12F9} - System32\Tasks\{89243F10-0F70-49C4-BD9C-EEBE75FB0EF2} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {8DC95AF6-D56A-4BE0-9DF6-ED2F4906E66D} - System32\Tasks\{7C512077-F09A-4134-88E3-47329269B550} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2871344 2020-12-07] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {948F12BC-14A5-47A3-AD28-6A75DABCD027} - System32\Tasks\{3DF9F667-8B0B-4FFD-8ED5-C2877B281066} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {95AC99AD-ECE6-4A4B-BDE3-CE296F7A8DD9} - System32\Tasks\{8D57D230-4E84-48D4-BAD9-77C2D49E312F} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2871344 2020-12-07] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {9873E8E3-F18F-4EF9-8543-92462DCD3A89} - System32\Tasks\{E4E33D5F-8F14-49CD-A1B2-48F137DC825A} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9A4C37BA-4E93-40C6-84CA-1269FCA8C88C} - System32\Tasks\{DD240587-A966-479C-B89D-354347209E81} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {A016A725-2306-4C1E-A2AD-A0BFAF956C06} - System32\Tasks\{440A4EC1-775D-4EC2-A96A-C6E63239C5D9} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {A14AB979-0E03-4C07-8B1F-0A1CB1E1965E} - System32\Tasks\{B2806B3A-3944-47F6-94C5-A48A24E35412} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {A310A4F9-E489-44E8-9C17-D896316DC142} - System32\Tasks\{DCA60458-AEBF-4156-A835-490E413DD838} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A6156C3B-7353-4748-B18D-B2DE2B09FA4B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AD378446-0815-4A8B-8521-8AE37ECE332D} - System32\Tasks\{8306DA0A-3EF4-4F1E-822A-0494C991D1B2} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\EPM Preload" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA1d6a3092b23dd6c" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-697796565-71972214-219725024-1000" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\{00F0EDE8-FEA5-42DC-8563-A93C2EF34D97}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\{08E2DB35-1575-465E-978F-6A5475427A99}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\{0948A692-5C95-4789-A9BE-B7D965AB7B97}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\{2C2B698E-7C58-4E5F-BDEC-EED681A0B052}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\{45F7A97D-F26E-4585-8BFC-C48DFFCC04A8}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\{5213A586-AA3B-4D66-AA16-49FC6276EA68}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\{54AF4C10-152D-491A-98F3-B88E33461AB6}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\{6B27291E-9679-4302-9388-E701110699F4}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\{7C512077-F09A-4134-88E3-47329269B550}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\{8D57D230-4E84-48D4-BAD9-77C2D49E312F}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(18): schtasks.exe -> /Change /TN "\{90CE91E2-A2F0-4575-B1A4-64B32B9D0E72}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(19): schtasks.exe -> /Change /TN "\{A8466D5F-2209-40C4-8FC8-5FDD69A0D724}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(20): schtasks.exe -> /Change /TN "\{C22BDC46-FBF3-4B19-AE19-71A5CAE0D3BA}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(21): schtasks.exe -> /Change /TN "\{CA3AF45C-D39B-4D07-8C8E-C6C417F9BB08}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(22): schtasks.exe -> /Change /TN "\{D8644986-5423-4474-973B-8E3CBF59BBBD}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(23): schtasks.exe -> /Change /TN "\{DCA60458-AEBF-4156-A835-490E413DD838}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(24): schtasks.exe -> /Change /TN "\{E29C1DDA-3EC9-4821-8EA9-F2E6310875DE}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(25): schtasks.exe -> /Change /TN "\{E4E33D5F-8F14-49CD-A1B2-48F137DC825A}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(26): schtasks.exe -> /Change /TN "\{E576414B-2ACA-4269-BD52-07DC7BDE5328}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(27): schtasks.exe -> /Change /TN "\{EDF091B3-E320-4C00-AC8F-72C98D51ACEC}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(28): schtasks.exe -> /Change /TN "\{F47DEC21-A11C-4FAF-A32F-C444CEB8F930}" /ENABLE
Task: {AFCC2520-B882-425C-B08B-2AE252F4031B} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(29): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {B782152E-113C-493A-8507-E57CAE359874} - System32\Tasks\{93FB9C59-42F5-47B3-8292-66F9358C5F81} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {B9892D1A-079E-4A1F-AC04-2992DA042DF8} - System32\Tasks\{F8C56C7F-F855-47C7-99CA-8953FE2F7EAF} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {BB760C54-FA43-4270-96C2-2CABE97D0609} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-13] (Adobe Inc. -> Adobe)
Task: {BD44B243-6A5A-454C-8A42-86059FFC27A4} - System32\Tasks\{E6F0D19E-4FD2-4131-8FED-DE718203CB17} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {BD656BA8-89AF-4925-8AD8-1323923E6C1A} - System32\Tasks\{B57FC8AF-5548-4878-9E76-B2920500AA02} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {C6D0B2F9-6064-43E7-8D81-88635878DCA5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158768 2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7469FB8-484E-41E2-B1DD-CAFED2AA3305} - System32\Tasks\{613C3113-02D8-4887-9F6E-322084E2CA65} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {C85792B0-75BE-4175-9D31-A9DC08700DFD} - System32\Tasks\{90CE91E2-A2F0-4575-B1A4-64B32B9D0E72} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CA65FCDF-7B5F-4A98-A1DD-FB1FD312443B} - System32\Tasks\{D8644986-5423-4474-973B-8E3CBF59BBBD} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CCD661BA-1F13-43FB-A025-395134F2A1FC} - System32\Tasks\{EA83C162-F6BE-44D8-A27F-23B9F6F8A31B} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {D63E08C1-1D8E-432E-8738-5737673F772A} - System32\Tasks\{F2F4AF62-5825-4ED9-A53D-8C214EDEB728} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {DB2C4D17-09AC-4D56-88D3-3DAB9C3755DD} - System32\Tasks\{249B6BC6-7B88-4B39-A781-BEF1F0C9AF9C} => C:\Windows\system32\pcalua.exe -a C:\Users\Lidka\Desktop\iview451_plugins_setup.exe -d C:\Users\Lidka\Desktop
Task: {DCD69730-3D93-4FEF-857D-17371935A652} - System32\Tasks\{E576414B-2ACA-4269-BD52-07DC7BDE5328} => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe [2871344 2020-12-07] (Adobe Inc. -> Adobe Systems Incorporated)
Task: {DEB560BC-03A4-4F9E-B8D9-7120A8CCDFBE} - System32\Tasks\{00F0EDE8-FEA5-42DC-8563-A93C2EF34D97} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {DF7D47C8-E79A-49B2-9683-06FD935402C4} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2175216 2020-12-15] (Avast Software s.r.o. -> AVAST Software)
Task: {E1C90753-D242-4571-8841-ACE0DC28210F} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
Task: {E2041282-6E6A-48C1-8774-7130FDE00D12} - System32\Tasks\{2ADAFDBE-3D20-4631-A19A-B37F4172614A} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {E25C2015-74CF-4ADC-AE87-B51A7398CF7F} - System32\Tasks\{A8466D5F-2209-40C4-8FC8-5FDD69A0D724} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E2F03566-5553-4574-A749-7D069C2D67A9} - System32\Tasks\{EDF091B3-E320-4C00-AC8F-72C98D51ACEC} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E32D2C1D-AAA6-4B72-8CF3-CCCA33A27B4C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158568 2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {E56B2611-AFEB-48C3-B010-A9617B931D42} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-13] (Adobe Inc. -> Adobe)
Task: {E57497A0-3126-4E43-8255-EAB1C75016DF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-29] (Google Inc -> Google Inc.)
Task: {E5D1824F-CA2F-49BE-9082-D7DAA700F3F0} - System32\Tasks\{FEE23EE2-CC68-42D7-86C4-2ED3CFEAA162} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {E8ED2C34-998E-4867-BE77-E69DDFA22EB1} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_130_pepper.exe [1286144 2017-09-13] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {E90A3F44-C6E6-40C8-A38C-339B0B1B8B6F} - System32\Tasks\{B7354949-1E23-4723-B4BB-0DF5237079A5} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {EAE411BE-9D4E-479B-80A7-FB6B13FBA2B1} - System32\Tasks\{FF4B0794-C7D5-4B9B-B13D-BD4551C3104B} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {EBE5B270-E08A-432E-89BE-35A86BDC9D1B} - System32\Tasks\{156F829F-7358-4324-B93A-02F460D65CEC} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {ECDFF97E-9680-4473-92B8-AB21888AE228} - System32\Tasks\{2C2B698E-7C58-4E5F-BDEC-EED681A0B052} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {EFF18D55-B0B3-42F0-BB9A-E013FAD84486} - System32\Tasks\{87DABCD7-FF80-4439-8E47-EF868143208D} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {F5EB69F5-453F-4574-8FF0-7E990C6300B1} - System32\Tasks\{FD93BDAC-BF2F-467A-B121-8EAC51A8B541} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {FA0B8A8F-F4E8-48DC-B5AE-A1FD9A4A5476} - System32\Tasks\{338BC1D6-715A-4245-AD5B-6CE9C7F28DDE} => C:\Program Files\Emergency 4\Em4.exe [6701056 2006-10-30] () [File not signed]
Task: {FD2254B5-B042-4809-B287-6A3E2AF4C6D4} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [2175216 2020-12-15] (Avast Software s.r.o. -> AVAST Software)
Task: {FF6B7EB9-F36C-4AF9-925E-EDB7DFDB217F} - System32\Tasks\{C22BDC46-FBF3-4B19-AE19-71A5CAE0D3BA} => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{256B2EB5-4318-4F07-A5C0-65D3302650C6}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{56EA4774-6B7A-47C6-8E0C-B08DF749C1A5}: [NameServer] 10.255.255.10,10.255.255.20
HKLM\System\...\Parameters\PersistentRoutes: [0.0.0.0,0.0.0.0,10.4.140.149,-1]

FireFox:
========
FF DefaultProfile: vncrck8y.default-1467548706931-1556435501334
FF ProfilePath: C:\Users\Lidka\AppData\Roaming\Mozilla\Firefox\Profiles\vncrck8y.default-1467548706931-1556435501334 [2021-01-17]
FF user.js: detected! => C:\Users\Lidka\AppData\Roaming\Mozilla\Firefox\Profiles\vncrck8y.default-1467548706931-1556435501334\user.js [2019-09-15]
FF Homepage: Mozilla\Firefox\Profiles\vncrck8y.default-1467548706931-1556435501334 -> www.seznam.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-13] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-12-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-13] (Adobe Inc. -> )
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-11-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-12-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-01-10] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2021-01-10] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default [2021-01-16]
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Extension: (Prezentace) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Just Black) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2020-08-02]
CHR Extension: (Dokumenty) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-27]
CHR Extension: (YouTube) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-03]
CHR Extension: (Avast Passwords) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2020-02-11]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-11-09]
CHR Extension: (Tabulky) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-04-10]
CHR Extension: (Gmail) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-18]
CHR Profile: C:\Users\Lidka\AppData\Local\Google\Chrome\User Data\System Profile [2021-01-16]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-13] (Adobe Inc. -> Adobe)
R2 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2000-01-01] (Andrea Electronics Corporation) [File not signed]
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8477080 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [621728 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [351848 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\87.0.7480.89\elevation_service.exe [1409224 2020-12-15] (Avast Software s.r.o. -> AVAST Software)
R2 BtSwitcherService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe [64216 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11137416 2021-01-07] (Microsoft Corporation -> Microsoft Corporation)
R2 CSRBtAudioService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe [465624 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R2 CsrBtOBEXService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe [1041616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R2 CsrBtService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe [825032 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3570792 2018-08-10] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 HFGService; C:\Windows\System32\HFGService.dll [535552 2009-12-21] (Microsoft Windows Hardware Compatibility Publisher -> CSR, plc)
S3 hpqwmiex; C:\Users\Lidka\AppData\Roaming\Hewlett-Packard\hpqwmiex.exe [793088 2016-03-02] (Hewlett-Packard Company) [File not signed]
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1128952 2011-05-06] (PDF Complete -> PDF Complete Inc)
R2 Samsung Printer Dianostics Service; C:\Windows\SysWOW64\\spdsvc.exe [499000 2016-07-17] (Samsung Electronics CO., LTD. -> )
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2000-01-01] (IDT, Inc.) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-06-08] (Microsoft Windows -> Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe [5878272 2016-03-02] (Broadcom Corporation) [File not signed]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [36792 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [208672 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [332880 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [247888 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [97360 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42424 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [176384 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [522480 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2021-01-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [108928 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84496 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851256 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [468888 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [214808 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [44640 2016-03-03] (AVAST Software a.s. -> The OpenVPN Project)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [324904 2021-01-10] (Avast Software s.r.o. -> AVAST Software)
S3 BthAudioHF; C:\Windows\System32\DRIVERS\BthAudioHF.sys [52224 2009-12-21] (Microsoft Windows Hardware Compatibility Publisher -> CSR, plc)
S3 csravrcp; C:\Windows\System32\DRIVERS\csravrcp.sys [26304 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 CsrBtPort; C:\Windows\System32\DRIVERS\CsrBtPort.sys [2784968 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrhfgcc; C:\Windows\System32\DRIVERS\csrhfgcc.sys [38080 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrpan; C:\Windows\System32\DRIVERS\csrpan.sys [39616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrserial; C:\Windows\System32\DRIVERS\csrserial.sys [61128 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrusb; C:\Windows\System32\Drivers\csrusb.sys [47296 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrusbfilter; C:\Windows\System32\Drivers\csrusbfilter.sys [23752 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csr_bthav; C:\Windows\System32\drivers\csrbthav.sys [99520 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-07-03] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-07-03] (Disc Soft Ltd -> Disc Soft Ltd)
S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [30424 2016-03-31] (Sony Mobile Communications AB -> Sony Mobile Communications)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-02-02] (Martin Malik - REALiX -> REALiX(tm))
S3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2012-07-16] (JMicron Technology Corp. -> JMicron Technology Corp.)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [2595648 2018-02-02] (Sonix Technology CO., LTD -> Sonix Tech. Co., Ltd.)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166760 2020-04-24] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [543744 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [25608 2019-01-28] (AVG Technologies CZ, s.r.o. -> SlimWare Utilities, Inc.)
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
S3 btwampfl; \??\C:\Windows\system32\drivers\btwampfl.sys [X]
S3 btwaudio; system32\drivers\btwaudio.sys [X]
S3 btwavdt; system32\DRIVERS\btwavdt.sys [X]
S3 btwl2cap; system32\DRIVERS\btwl2cap.sys [X]
S3 btwrchid; system32\DRIVERS\btwrchid.sys [X]
S3 cpuz143; \??\C:\Windows\temp\cpuz143\cpuz143_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-16 23:20 - 2021-01-16 23:23 - 000072552 _____ C:\Users\Lidka\Downloads\Addition.txt
2021-01-16 23:15 - 2021-01-17 00:25 - 000046702 _____ C:\Users\Lidka\Downloads\FRST.txt
2021-01-16 23:13 - 2021-01-17 00:24 - 000000000 ____D C:\FRST
2021-01-16 23:11 - 2021-01-16 23:11 - 002294784 _____ (Farbar) C:\Users\Lidka\Downloads\FRST64.exe
2021-01-16 19:51 - 2021-01-16 19:51 - 000269459 _____ C:\Users\Lidka\Desktop\operacní system.pdf
2021-01-16 15:11 - 2021-01-16 15:11 - 000025054 _____ C:\Users\Lidka\Desktop\info.txt
2021-01-16 15:03 - 2021-01-16 15:04 - 000000000 ____D C:\rsit
2021-01-16 15:03 - 2021-01-16 15:04 - 000000000 ____D C:\Program Files\trend micro
2021-01-16 15:03 - 2021-01-16 15:03 - 001222144 _____ C:\Users\Lidka\Desktop\RSITx64.exe
2021-01-11 22:40 - 2021-01-13 00:25 - 000000000 ____D C:\Users\Lidka\AppData\Roaming\Wargaming.net
2021-01-11 22:40 - 2021-01-11 22:40 - 000001847 _____ C:\Users\Lidka\Desktop\Game Center.lnk
2021-01-11 22:40 - 2021-01-11 22:40 - 000001616 _____ C:\Users\Lidka\Desktop\World of Tanks EU.lnk
2021-01-11 22:40 - 2021-01-11 22:40 - 000000000 ____D C:\Users\Lidka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2021-01-11 22:40 - 2021-01-11 22:40 - 000000000 ____D C:\Games
2021-01-11 22:39 - 2021-01-11 22:39 - 000000000 ____D C:\ProgramData\Wargaming.net
2021-01-10 22:26 - 2021-01-10 22:26 - 004261376 _____ C:\Users\Lidka\Downloads\Kopie - ceník2019-1.xls
2021-01-10 19:46 - 2021-01-10 19:46 - 000000000 ____D C:\Windows\pss
2021-01-10 11:00 - 2021-01-10 11:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Codemasters
2021-01-10 11:00 - 2021-01-10 11:00 - 000000000 ____D C:\Program Files (x86)\Codemasters
2021-01-10 09:08 - 2021-01-14 22:18 - 000003732 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Hourly)
2021-01-10 09:08 - 2021-01-14 22:18 - 000002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2021-01-10 09:08 - 2021-01-14 22:18 - 000002386 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2021-01-10 09:08 - 2021-01-14 22:18 - 000002386 _____ C:\ProgramData\Desktop\Avast Secure Browser.lnk
2021-01-10 09:08 - 2021-01-10 09:08 - 000003150 _____ C:\Windows\system32\Tasks\Avast Secure Browser Heartbeat Task (Logon)
2021-01-10 09:07 - 2021-01-10 09:07 - 000003426 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineUA
2021-01-10 09:07 - 2021-01-10 09:07 - 000003298 _____ C:\Windows\system32\Tasks\AvastUpdateTaskMachineCore
2021-01-10 09:07 - 2021-01-10 09:07 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2021-01-10 09:05 - 2021-01-10 09:05 - 000002031 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2021-01-10 09:05 - 2021-01-10 09:05 - 000002031 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2021-01-10 09:05 - 2021-01-10 09:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2021-01-10 09:04 - 2021-01-16 17:25 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2021-01-10 09:04 - 2021-01-10 19:36 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-01-10 09:03 - 2021-01-10 09:04 - 000468888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2021-01-10 09:03 - 2021-01-10 09:04 - 000324904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2021-01-10 09:03 - 2021-01-10 09:04 - 000214808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000851256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000522480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000340576 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2021-01-10 09:03 - 2021-01-10 09:03 - 000332880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000247888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000208672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000176384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000108928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000097360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000084496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000042424 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000038152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000036792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2021-01-10 09:02 - 2021-01-10 09:02 - 000000000 ____D C:\Program Files\Avast Software
2020-12-24 18:48 - 2020-12-24 18:48 - 000001124 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Simt Simulator.lnk
2020-12-24 18:48 - 2020-12-24 18:48 - 000001112 _____ C:\Users\Public\Desktop\Simt Simulator.lnk
2020-12-24 18:48 - 2020-12-24 18:48 - 000001112 _____ C:\ProgramData\Desktop\Simt Simulator.lnk
2020-12-24 18:40 - 2020-12-26 21:20 - 000000000 ____D C:\Program Files (x86)\SimtSimulator_1-5-92

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-16 23:30 - 2017-10-25 23:14 - 000000000 ____D C:\Program Files\CCleaner
2021-01-16 21:52 - 2016-12-19 01:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-16 21:52 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2021-01-16 21:51 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2021-01-16 21:49 - 2016-12-19 00:27 - 000000000 ____D C:\Program Files\Microsoft Office
2021-01-16 18:05 - 2009-07-14 05:45 - 000034832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2021-01-16 18:05 - 2009-07-14 05:45 - 000034832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2021-01-16 17:25 - 2020-10-15 16:38 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d6a3092b23dd6c
2021-01-16 17:25 - 2019-04-09 10:26 - 000003000 _____ C:\Windows\system32\Tasks\{E576414B-2ACA-4269-BD52-07DC7BDE5328}
2021-01-16 17:25 - 2019-04-09 10:25 - 000003000 _____ C:\Windows\system32\Tasks\{8D57D230-4E84-48D4-BAD9-77C2D49E312F}
2021-01-16 17:25 - 2019-04-09 10:24 - 000003000 _____ C:\Windows\system32\Tasks\{7C512077-F09A-4134-88E3-47329269B550}
2021-01-16 17:25 - 2017-10-25 23:14 - 000003872 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-01-16 17:25 - 2017-10-25 23:14 - 000002792 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2021-01-16 17:25 - 2017-10-25 23:11 - 000002948 _____ C:\Windows\system32\Tasks\{54AF4C10-152D-491A-98F3-B88E33461AB6}
2021-01-16 17:25 - 2017-10-25 23:10 - 000002948 _____ C:\Windows\system32\Tasks\{F47DEC21-A11C-4FAF-A32F-C444CEB8F930}
2021-01-16 17:25 - 2017-10-25 23:10 - 000002948 _____ C:\Windows\system32\Tasks\{08E2DB35-1575-465E-978F-6A5475427A99}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{EDF091B3-E320-4C00-AC8F-72C98D51ACEC}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{E4E33D5F-8F14-49CD-A1B2-48F137DC825A}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{E29C1DDA-3EC9-4821-8EA9-F2E6310875DE}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{DCA60458-AEBF-4156-A835-490E413DD838}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{D8644986-5423-4474-973B-8E3CBF59BBBD}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{CA3AF45C-D39B-4D07-8C8E-C6C417F9BB08}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{C22BDC46-FBF3-4B19-AE19-71A5CAE0D3BA}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{A8466D5F-2209-40C4-8FC8-5FDD69A0D724}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{90CE91E2-A2F0-4575-B1A4-64B32B9D0E72}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{6B27291E-9679-4302-9388-E701110699F4}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{5213A586-AA3B-4D66-AA16-49FC6276EA68}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{45F7A97D-F26E-4585-8BFC-C48DFFCC04A8}
2021-01-16 17:25 - 2017-10-20 23:05 - 000002948 _____ C:\Windows\system32\Tasks\{2C2B698E-7C58-4E5F-BDEC-EED681A0B052}
2021-01-16 17:25 - 2017-09-20 16:20 - 000003438 _____ C:\Windows\system32\Tasks\EPM Preload
2021-01-16 17:25 - 2017-07-19 15:34 - 000002940 _____ C:\Windows\system32\Tasks\{0948A692-5C95-4789-A9BE-B7D965AB7B97}
2021-01-16 17:25 - 2017-06-30 11:30 - 000003176 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-697796565-71972214-219725024-1000
2021-01-16 17:25 - 2017-06-29 10:59 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-16 17:25 - 2016-08-31 22:11 - 000004478 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-01-16 17:25 - 2016-07-05 20:01 - 000002940 _____ C:\Windows\system32\Tasks\{00F0EDE8-FEA5-42DC-8563-A93C2EF34D97}
2021-01-16 14:53 - 2019-02-09 22:40 - 000000000 ____D C:\ProgramData\Mozilla
2021-01-16 14:52 - 2016-11-30 23:09 - 000000000 ____D C:\Users\Lidka\AppData\LocalLow\Mozilla
2021-01-16 10:31 - 2016-03-03 12:36 - 000000000 ____D C:\ProgramData\AVAST Software
2021-01-16 10:28 - 2016-03-02 23:32 - 000000000 ____D C:\ProgramData\PDFC
2021-01-16 10:28 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-01-13 13:15 - 2009-07-14 06:08 - 000032638 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2021-01-13 01:18 - 2016-08-23 09:41 - 000000000 ____D C:\Windows\system32\MRT
2021-01-13 00:55 - 2016-08-23 09:40 - 135062968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-01-11 22:41 - 2017-11-07 23:18 - 000000000 ____D C:\Users\Lidka\Desktop\Futsal Rudolfov a Teplice
2021-01-11 22:39 - 2016-11-29 22:46 - 000000000 ____D C:\Users\Lidka\Desktop\Filmy
2021-01-10 22:54 - 2019-09-01 16:11 - 004264448 _____ C:\Users\Lidka\Desktop\Kopie - ceník2019-1.xls
2021-01-10 19:58 - 2017-01-05 22:20 - 000000000 ____D C:\Users\Lidka\AppData\Local\ElevatedDiagnostics
2021-01-10 19:41 - 2019-02-26 09:15 - 000000000 ____D C:\Users\Lidka\AppData\Local\BitTorrentHelper
2021-01-10 19:40 - 2016-03-02 23:04 - 000000000 ____D C:\Users\Lidka
2021-01-10 19:38 - 2016-12-19 00:30 - 000000000 ____D C:\Windows\system32\Tasks\OfficeSoftwareProtectionPlatform
2021-01-10 19:38 - 2016-07-03 15:57 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2021-01-10 19:38 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\registration
2021-01-10 09:22 - 2017-10-22 22:09 - 000000000 ____D C:\Users\Lidka\AppData\Local\AVAST Software
2021-01-10 09:05 - 2016-03-03 12:38 - 000000000 ____D C:\Users\Lidka\AppData\Roaming\AVAST Software
2021-01-10 08:04 - 2018-06-29 18:44 - 000001088 _____ C:\Users\Public\Desktop\WinRAR.lnk
2021-01-10 08:04 - 2018-06-29 18:44 - 000001088 _____ C:\ProgramData\Desktop\WinRAR.lnk
2021-01-10 08:04 - 2016-07-09 18:22 - 000000000 ____D C:\Users\Lidka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-01-10 08:04 - 2016-07-09 18:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2021-01-10 08:04 - 2016-07-09 18:22 - 000000000 ____D C:\Program Files\WinRAR
2021-01-08 23:15 - 2016-12-30 21:04 - 000000000 ____D C:\Users\Lidka\Desktop\počítač 2.foto video
2021-01-08 17:00 - 2017-12-30 18:21 - 000000000 ____D C:\Program Files (x86)\Steam
2021-01-08 17:00 - 2016-07-05 17:18 - 000000000 ____D C:\Users\Lidka\AppData\Roaming\MPC-HC
2021-01-07 18:01 - 2017-06-29 11:00 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-07 17:39 - 2016-11-20 13:49 - 000000000 ____D C:\Program Files\Emergency 4
2021-01-07 17:33 - 2019-11-14 12:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-12-24 19:09 - 2019-10-19 13:26 - 000000000 ____D C:\Users\Lidka\AppData\Roaming\msihmdt
2020-12-24 18:49 - 2018-07-25 19:32 - 000000782 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-12-24 18:49 - 2018-07-25 19:32 - 000000782 _____ C:\ProgramData\Desktop\CCleaner.lnk

==================== Files in the root of some directories ========

2020-08-06 08:49 - 2020-08-06 08:49 - 000003584 _____ () C:\Users\Lidka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-09-23 21:16 - 2019-01-18 17:49 - 000007597 _____ () C:\Users\Lidka\AppData\Local\Resmon.ResmonCfg
2017-01-27 23:25 - 2017-01-27 23:25 - 000000000 _____ () C:\Users\Lidka\AppData\Local\{F08CFAF0-8991-4314-ABD9-2534CE67257F}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2021-01-12 23:05
==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113388
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: dotaz na zrušení 2.stupně varování

#7 Příspěvek od Rudy »

OK. Zruším vám varování. Doufám že budete i nadále dodržovat pravidla fóra.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Fidolfo
Návštěvník
Návštěvník
Příspěvky: 46
Registrován: 16 srp 2006 12:57

Re: dotaz na zrušení 2.stupně varování

#8 Příspěvek od Fidolfo »

Diky moc,Určitě budu dodržovat...Tehdá jsem byl jelito... Ted jsem si pořídil nový ntb a vše legal a i na tomto tchánovo ntb který jsme zdědili :-( je to totéž...Moc si vážím vaší práce nerad bych ji tímto znevažoval...S propo log je v pořádku? Ntb je krapet pomalejší tak bych rád vědel že je ok? Dekuji za odpověd a kdyžtak :offtopic:

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113388
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: dotaz na zrušení 2.stupně varování

#9 Příspěvek od Rudy »

Tak k něku přidejte ještě log Addition, ať je to kompletní. Díky.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Fidolfo
Návštěvník
Návštěvník
Příspěvky: 46
Registrován: 16 srp 2006 12:57

Re: dotaz na zrušení 2.stupně varování

#10 Příspěvek od Fidolfo »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-01-2021
Ran by Lidka (17-01-2021 00:25:46)
Running from C:\Users\Lidka\Downloads
Windows 7 Professional Service Pack 1 (X64) (2016-03-02 22:04:02)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-697796565-71972214-219725024-500 - Administrator - Disabled)
Guest (S-1-5-21-697796565-71972214-219725024-501 - Limited - Disabled)
Lidka (S-1-5-21-697796565-71972214-219725024-1000 - Administrator - Enabled) => C:\Users\Lidka

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

18 Wheels of Steel Pedal to the Metal (HKLM-x32\...\18 Wheels of Steel Pedal to the Metal) (Version: 1.0 - ValuSoft)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Audacity 1.3.12 (Unicode) (HKLM-x32\...\Audacity 1.3 Beta (Unicode)_is1) (Version: - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.10.2442 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 87.0.7480.89 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 5.100.82.148 - Broadcom Corporation)
Broadcom Wireless Utility (HKLM\...\Broadcom Wireless Utility) (Version: 5.100.82.148 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
CDex - Digital Audio CD Extractor and Converter (HKLM-x32\...\CDex) (Version: 2.23.0.2019 - CDex.mu)
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
CSR Harmony Wireless Software Stack (HKLM\...\{17DEA095-8EE1-49A2-AC5A-9663DB098FA9}) (Version: 2.1.63.0 - Název společnosti:)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0544 - Disc Soft Ltd)
Emergency 4 (HKLM-x32\...\{652B48CA-165B-4671-9415-2B477B20CE82}_is1) (Version: 1.02 - US - ACTION, s.r.o.)
Emergency NE (HKLM-x32\...\Emergency NE_is1) (Version: 1.0 - Game shop, s.r.o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
HP ESU for Microsoft Windows 7 (HKLM-x32\...\{B841A88A-704B-4CC0-B06E-49B8D497FDC9}) (Version: 1.1.11.1 - Hewlett-Packard Company)
HP Webcam Driver (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.50060.0 - Sonix)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6433.0 - IDT)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.11.1193 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 15.4 - Intel)
Intel® Chipset Device Software (HKLM-x32\...\{fb610cea-ba50-4d4b-a717-cf025419035c}) (Version: 10.1.1.13 - Intel(R) Corporation) Hidden
IrfanView 4.56 (64-bit) (HKLM\...\IrfanView64) (Version: 4.56 - Irfan Skiljan)
JMicron 1394 Filter Driver (HKLM-x32\...\{13C96625-28E4-4c58-ADE0-CDAFC64752EB}) (Version: 1.00.25.03 - JMicron Technology Corp.)
Klasifikace 5.4 (HKLM-x32\...\{BE7E6DAC-7EAA-4546-BBDD-43ADDF49EA14}_is1) (Version: - JPH Software)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.100 - LSI Corporation)
Mafia (HKLM-x32\...\{C72D7008-266D-4DD8-BF3C-296B736127F6}) (Version: 1.02 - )
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.12527.21504 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProplusRetail - en-us) (Version: 16.0.12527.21504 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-697796565-71972214-219725024-1000\...\OneDriveSetup.exe) (Version: 20.219.1029.0005 - Microsoft Corporation)
Microsoft Project Professional 2016 - cs-cz (HKLM\...\ProjectProRetail - cs-cz) (Version: 16.0.12527.21504 - Microsoft Corporation)
Microsoft Project Professional 2016 - en-us (HKLM\...\ProjectProRetail - en-us) (Version: 16.0.12527.21504 - Microsoft Corporation)
Microsoft Visio Professional 2016 - cs-cz (HKLM\...\VisioProRetail - cs-cz) (Version: 16.0.12527.21504 - Microsoft Corporation)
Microsoft Visio Professional 2016 - en-us (HKLM\...\VisioProRetail - en-us) (Version: 16.0.12527.21504 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27027 (HKLM-x32\...\{39e28474-b67b-4209-af1b-e9ad0a83d8ca}) (Version: 14.16.27027.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 84.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 84.0.2 (x64 cs)) (Version: 84.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0 - Mozilla)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{29F5A1C9-0BC3-16E6-9384-3BC5D1CB7ACE}) (Version: 1.00.0000 - Název společnosti:) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12527.21504 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12527.21504 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.12527.21504 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.12527.21504 - Microsoft Corporation) Hidden
PDF Complete Special Edition (HKLM-x32\...\PDF Complete) (Version: 4.0.57 - PDF Complete, Inc)
PX Profile Update (HKLM-x32\...\{16068EAC-37DE-7509-66D8-E00CC6091818}) (Version: 1.00.1. - AMD) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.36.0 - Renesas Electronics Corporation)
Samsung Easy Document Creator (HKLM-x32\...\Samsung Easy Document Creator) (Version: 1.06.46 (30.10.2014) - Samsung Electronics Co., Ltd.)
Samsung M2070 Series (HKLM-x32\...\Samsung M2070 Series) (Version: 1.25 (29.9.2016) - Samsung Electronics Co., Ltd.)
Samsung Printer Diagnostics (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.4.7.04 - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.28 - Samsung Electronics Co., Ltd.) Hidden
Simt Simulator verze 1.5.92 (HKLM-x32\...\{7C5E9B1D-F234-48CB-9F65-C4FB9A2DABFF}_is1) (Version: 1.5.92 - Tomas Faina)
SNS Upload for Easy Document Creator (HKLM-x32\...\{B6B5F07C-88D5-49D3-A1A7-A6D4BC37DCCC}) (Version: 1.0.0 - Samsung Electronics Co.,Ltd)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.25 - Synaptics Incorporated)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.50 - Ghisler Software GmbH)
Vypínač na dobrou noc verze 2.0 (HKLM-x32\...\Vypínač na dobrou noc_is1) (Version: - )
Wargaming.net Game Center (HKU\S-1-5-21-697796565-71972214-219725024-1000\...\Wargaming.net Game Center) (Version: 20.7.2.2851 - Wargaming.net)
WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-697796565-71972214-219725024-1000\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-01-10] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-01-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-01-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-08-10] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-01-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-08-10] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-01-10] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

2014-09-08 12:38 - 2014-09-08 12:38 - 000051200 _____ () [File not signed] C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2019-12-13 15:19 - 2019-12-13 15:19 - 000031232 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\A4.Foundation\72a69f04223d3a51cd1e1c5f88f4035c\A4.Foundation.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\743d56bc6320308e687648c996476ff3\AEM.Actions.CCAA.Shared.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\5f13361d6d66bafc5a31dc540f1b140e\AEM.Plugin.EEU.Shared.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\da9dd4bb89e5a088506717c9c461694c\AEM.Plugin.Hotkeys.Shared.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.54d8abe3#\d344deff2eda9b9f9a6383ea22e28c9c\AEM.Plugin.DPPE.Shared.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000281600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\1160b04d31651d764e0a716380e59579\AEM.Plugin.Source.Kit.Server.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\65c4f731cec6e1e77fa0eb78fadd2d3e\AEM.Plugin.WinMessages.Shared.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\96779eb9e9109c781928ee2d7f9f88f0\AEM.Plugin.REG.Shared.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\02be7dd34f76a378ce42f5e64d80c443\AEM.Plugin.GD.Shared.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\3c62043d6d92137e9668289a0dc7a48c\AEM.Server.Shared.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000267776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\AEM.Server\8990a345e93f2a58de1518792a922fdb\AEM.Server.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000055808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\APM.Foundation\25dbe8a92cc0fa4c7f60fc8831df5fcd\APM.Foundation.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000122880 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\ATICCCom\0a861136cdeab1eaf4bfef3018b7cb76\ATICCCom.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000204288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\0e1eb42608545f61bdecf8a550e67b18\CCC.Implementation.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000154112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.21d2ac78#\3967942a28c1091bbf3abcf0604fbebc\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000128000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\3bb7d1aa2b163131b293ccb10e7514b7\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\11f48b2e33d24a0aa663636f084ef107\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\7bd44b81920bfab91c2c11d5c3ba13c0\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000107008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\5b680583245b43e90074118ef409a362\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000209920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4542c692#\220dfdb869ee53088454e654ac4f4332\CLI.Aspect.DeviceCRT.Graphics.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.46819220#\690486c07bb19fe3f79e52e051b94cac\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\78cfc301fdd4819048c6d5ef6b26a700\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\24068675d2f20ef698d023776260c416\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.59a12d95#\ee6a44f06af1cbc8d52488b052a1486b\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\7a1f2f87707fa18c85a7f3de30684473\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000365056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\9011811d2c649e869909b7593e7cfd73\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000064000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\1e17ba532ec9c721d9841d94573aa83c\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000745472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\0345e2e5eefdffce0e958051cabe1963\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000449024 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\fe22f59c36b9eb3d9c7ab40203d21584\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\0c500666373dc924102209da89c09449\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000158208 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a0ae52bc#\ebafd91888072345e5e5818235b7cc42\CLI.Aspect.DeviceLCD.Graphics.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\55d8aa5a8bc14e7f3edb716398ee4d42\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000082944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\cc52749ff8484ce3d6f880af0c42bd6c\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000462336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\064eb3af52efc8eae9d845178ae223b0\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000086528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ae5e117c#\d6b2c4237411fb41f5298845fc622f3a\CLI.Aspect.DisplaysColour2.Graphics.Shared.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000067072 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\83897d2fe301da04984eb02c28799f7b\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000340992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\f75fb18e795c5d10a596e95f6460ec86\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\9ad2bfb11a274355fa0d0b454a5b667f\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000276480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\1c0175423e463ea440f8d3a3ce657293\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 003312640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\fd7bd717896ad6778de5c9831fe4cdbe\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000240640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\ebe688cbae8eb5d1700e1d53e6feb1a7\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000047616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\15643147cb999afdfd88ff1937ebcbe7\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\cb53367dfb95bb06719c5318b9ad468b\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000051200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\74aa8baf36285ad9ae911c186fabeca2\CLI.Caste.A4.Runtime.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\b1c0caf7a9d344fba9219db8c201b5a8\CLI.Caste.A4.Shared.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\d9a316dfb352483de3312f70590e975e\CLI.Caste.A4.Dashboard.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\b3d0d2df7a3438fb8f6fa07230d04a30\CLI.Caste.Fuel.Shared.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000311296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\5c05a742a79387779b97c706b8e2cd68\CLI.Caste.Fuel.Runtime.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\049852be2a4a524a968e23e56dbb3a1b\CLI.Caste.Fuel.Dashboard.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\522c7e10cdac0e95e75f61cce90bde2b\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 001555456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\fcdc8dd841c386f93f52d38aa2f7d2fc\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000587776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\3cba3c15719874d6313df64964c46e3a\CLI.Caste.Graphics.Dashboard.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\9698ca502c64ef8a7fd1f75f91cc179c\CLI.Caste.HydraVision.Runtime.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\a902697939896a7e16921163641b7f9b\CLI.Caste.HydraVision.Shared.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\23467108a4b292427ceb8d9c620cee4c\CLI.Caste.HydraVision.Dashboard.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\083507b9eae35fb3487b36488224e586\CLI.Caste.Platform.Shared.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\fa67f8bb944d7ebd5f07b66cf530199d\CLI.Caste.Platform.Runtime.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\e49d2bee9c2a496e531d248f589715d2\CLI.Caste.Platform.Dashboard.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\4bca7d64b66b241f28aa0ae48b2e38c2\CLI.Component.Runtime.Shared.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000901632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\6716169d0e1201085398c0e165756e96\CLI.Component.Systemtray.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000173568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\83e4530d20e1b8742db64927e5996c75\CLI.Component.Dashboard.ProfileManager2.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\3e427f87f95d6024e43e02cf373cd6a2\CLI.Component.Runtime.Shared.Private.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\1b7fe6a514ec17abb1ec5b9dc0be173d\CLI.Component.Runtime.Extension.EEU.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 001609728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\e65af5b751c6781eff73df68bff7f3ef\CLI.Component.Dashboard.Shared.Private.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\fe742e6ec33a9589535bd774422c4d60\CLI.Component.Client.Shared.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\f43afa13aa4f639963d3f588838e9b54\CLI.Component.Dashboard.Shared.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000089600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\2dedba26cff8b1ca5b6b2c0104b968ec\CLI.Foundation.Private.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\4d32d7711cac36b142828518735fbfc0\CLI.Foundation.XManifest.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000091136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\57b888710a7771039b1fd68c6bf54156\CLI.Foundation.CoreAudioAPI.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 001079296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\f9c331c23c4f9cf9a59fd380e9341342\CLI.Foundation.Client.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\de53e9fce686857bcc3c774672aa3895\CLI.Foundation.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\56c8bd44eabab9ab432714111c865c9b\DEM.Foundation.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000115200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\b15546e9733fd6f37c068e4393fac2c9\DEM.Graphics.I0601.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\99064803e34a38e15ae09a58faee983f\DEM.Graphics.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\576a2bcbfadd04a3ebd0b5ed03cd6e4a\Fuel.Foundation.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000296960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\0086748bd9e8ad0e3d9943b4c6ae6c26\LOG.Foundation.Implementation.ni.dll
2019-12-13 15:19 - 2019-12-13 15:19 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\84ac2eed8c412d929e29f2b599399530\LOG.Foundation.Private.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\beb3f3206ba7bba2ad782d59481da02c\LOG.Foundation.Implementation.Private.ni.dll
2020-01-17 00:07 - 2020-01-17 00:07 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\cd609e5e2b4bd734fef5d5878d0a3cc9\LOG.Foundation.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\36471b56949ec9c0ebd1ed7d187bae4b\MOM.Foundation.ni.dll
2019-12-13 15:24 - 2019-12-13 15:24 - 000402944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\390ffd892fe49fcc401527474694ea60\MOM.Implementation.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\5fec3db2a1569b883fa155a3ae9fc133\NEWAEM.Foundation.ni.dll
2019-12-13 15:20 - 2019-12-13 15:20 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\9aa72c66dec4ba195a5b0e47e72aa2c9\ADL.Foundation.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000256000 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\APM.Server\70a87518074e00ba245af135964bfea0\APM.Server.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000298496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9b707b25#\40e508123e99234dcaad3944fecb6862\CLI.Aspect.DeviceProperty.Graphics.Runtime.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 001654272 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.aa59351a#\fbd72654ff50e3a3d04834527d6a6ae9\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 006336512 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e6d9f3a8#\a5e5c89c4de470ea62d3e245154170f3\CLI.Aspect.DeviceDFP.Graphics.Dashboard.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 008027648 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\98a75ebe848e8680b599591ce84129a7\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 001159680 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Combine7332395e#\6389a0ed7a2332535104e54c807579e4\CLI.Combined.Graphics.Aspects2.Runtime.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000136704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\88bbbb23a25b95510c08023e8af53dda\CLI.Component.Client.Shared.Private.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000234496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\e698aa63cefc546c9e957431c8cc48a8\CLI.Component.Runtime.ni.dll
2020-01-17 00:09 - 2020-01-17 00:09 - 000929280 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\33ab951417e5761b22d476106cd3d131\CLI.Component.Dashboard.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0706\90684130b4e41b9c58df5b2b8fcaf922\DEM.Graphics.I0706.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000084480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\a7743f385fc4ed00cbfa09792f0be05d\DEM.Graphics.I0709.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000012288 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\b1c533dfb3ad253cc391c61bea99fdaf\DEM.Graphics.I0712.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000018432 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\0100f8987fdb5433efa9208bd96f630e\DEM.Graphics.I0804.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0805\a6a72949b04996e6292867b13f182278\DEM.Graphics.I0805.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0812\9f5190ecad27602d6ab04c07d306a276\DEM.Graphics.I0812.ni.dll
2019-12-13 15:22 - 2019-12-13 15:22 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0912\7a248ea5cb4c774eff22f119403cf073\DEM.Graphics.I0912.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 000035840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\0047598bb2667d04c913685a79a0b39c\DEM.Graphics.I1010.ni.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 001139200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\7262ef4b11f42019abf9463148985fb4\Localization.Foundation.Private.ni.dll
2020-01-17 00:10 - 2020-01-17 00:10 - 000244224 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\ddc921b6fa58aa889b90acadcc0df1b2\ResourceManagement.Foundation.Implementation.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\46186302c976d4f7334817c2b437496b\ResourceManagement.Foundation.Private.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 000091648 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\0f99d6ce4d918ca1ddb635ffa48c98ba\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 002845696 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\c75406b172cf8a3cdedfc28e036f4837\CLI.Caste.Graphics.Shared.ni.dll
2019-12-13 15:23 - 2019-12-13 15:23 - 003268096 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\b77cf47eaf87bbfc5e608a80533753b8\CLI.Caste.Graphics.Runtime.ni.dll
2016-03-03 00:00 - 2016-03-02 23:57 - 002679808 _____ (Broadcom Corporation) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\bcmpeerapi.dll
2016-03-03 00:02 - 2016-03-03 00:02 - 000071680 _____ (Broadcom Corporation) [File not signed] C:\Windows\assembly\GAC_64\bcmwlrmt\5.100.82.0__6d6a20262490fcdc\bcmwlrmt.dll
2016-03-03 00:00 - 2016-03-02 23:57 - 000073216 _____ (Broadcom Corporation) [File not signed] C:\Windows\system32\wltrynt.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2021-01-10 09:03 - 2021-01-10 09:03 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\MSVCP140.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\ucrtbase.DLL
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\VCRUNTIME140.dll
2021-01-16 22:33 - 2021-01-16 22:33 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\defs\21011604\avast.local_vc142.crt\VCRUNTIME140_1.dll
2019-12-13 15:21 - 2019-12-13 15:21 - 000335360 _____ (Microsoft) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\c199abe8e5a810042f93b2b2839d40e2\Microsoft.WindowsAPICodePack.ni.dll
2020-01-17 00:08 - 2020-01-17 00:08 - 002546688 _____ (Microsoft) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\c84aff6636efe990221bda796cfce443\Microsoft.WindowsAPICodePack.Shell.ni.dll
2016-04-04 11:03 - 2016-04-04 11:03 - 000123904 _____ (Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor64.dll
2017-02-24 11:36 - 2017-02-24 11:36 - 003695616 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\ScanFax2PC\CDAScan2PCMonitor64.dll
2016-03-03 00:00 - 2016-03-02 23:57 - 000342528 _____ (TODO: <Company name>) [File not signed] C:\Program Files\Broadcom\Broadcom 802.11\bcmfshapi.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-12-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-12-14] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-02-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2011-01-19] (Skype Technologies SA -> Skype Technologies)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2021-01-16 15:04 - 000000840 _____ C:\Windows\system32\drivers\etc\hosts

2016-07-03 21:27 - 2016-07-03 21:28 - 000000375 _____ C:\Windows\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\PROGRAM FILES (X86)\NVIDIA CORPORATION\PHYSX\COMMON;C:\PROGRAM FILES\BROADCOM\BROADCOM 802.11;%SYSTEMROOT%\SYSTEM32;%SYSTEMROOT%;%SYSTEMROOT%\SYSTEM32\WBEM;%SYSTEMROOT%\SYSTEM32\WINDOWSPOWERSHELL\V1.0\;C:\PROGRAM FILES (X86)\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC;;C:\PROGRAM FILES (X86)\AMD\ATI.ACE\CORE-STATIC
HKU\S-1-5-21-697796565-71972214-219725024-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lidka\AppData\Roaming\IrfanView\IrfanView_Wallpaper.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupfolder: C:^Users^Lidka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Poslat do aplikace OneNote.lnk => C:\Windows\pss\Poslat do aplikace OneNote.lnk.Startup
MSCONFIG\startupreg: uTorrent => "C:\Users\Lidka\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{2923CBCD-3F2C-4EC3-B0BB-C4108CFBB441}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{2A571E04-BCA1-49CF-8BF5-1E4D76CBE96C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{7C3014AD-40CC-4861-8913-C058D80F4A2B}C:\topcd\emergency ne\bin.x86\em2012.exe] => (Allow) C:\topcd\emergency ne\bin.x86\em2012.exe () [File not signed]
FirewallRules: [UDP Query User{F8F49074-F053-414E-93CA-AB596C67A708}C:\topcd\emergency ne\bin.x86\em2012.exe] => (Allow) C:\topcd\emergency ne\bin.x86\em2012.exe () [File not signed]
FirewallRules: [{19EFE057-6AA1-4512-B9FE-2796997BBB26}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{75F5B337-AB78-48A8-84C5-299951D0CE13}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{00E4CE96-10FB-4C6C-81A9-144257706669}] => (Allow) C:\Users\Lidka\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F02EDE41-9E58-49E4-A10E-5EAF6E91CD75}] => (Allow) C:\Users\Lidka\AppData\Roaming\uTorrent\uTorrent.exe => No File
FirewallRules: [{89E2EDB8-758B-4D8B-8A17-F9FACCD16061}] => (Allow) C:\Users\Lidka\AppData\Roaming\uTorrent\uTorrent.exe => No File
FirewallRules: [{92659D2A-3711-4395-948D-19019120F9FD}] => (Allow) C:\Windows\twain_32\Samsung\SLM2070\ScanCDLM\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{CA69EE67-BD6C-48AB-82AE-5F8E9F5F86CC}] => (Allow) C:\Windows\twain_32\Samsung\SLM2070\ScanCDLM\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{66697439-42D2-4810-B568-CD1D0E93B336}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{85F6A0AB-34B8-42FB-B098-19D3A7C7E5C8}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{926DDB76-CE17-4E8A-A1E4-2DEBB90A1E2D}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EasyPrinterManagerV2.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{4B72C18F-2FBD-4698-BE9D-1C7162F0B157}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics)
FirewallRules: [{2616065D-EE8C-4A21-B258-E1B43D184153}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2AlertList.exe (Samsung Electronics CO., LTD. -> Samsung Electronics)
FirewallRules: [{9E9385DD-8D0F-490E-B26C-0450B700AAA9}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2Migrator.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{7E2AAB97-04B2-453A-B5D1-188AF2980E4B}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{3E084BB8-9A3A-451D-97D9-FC8835CA8829}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{A5D1B4A7-62BF-4DEB-81D1-0833BF709571}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{04689CCE-0F1B-4C98-871C-202832E0B2D6}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [TCP Query User{680AF2F2-6827-485C-A6AC-AA7AFF8AE246}C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe] => (Block) C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [UDP Query User{E58B5B83-E5C3-4C73-BC6B-575D7B67B19E}C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe] => (Block) C:\program files (x86)\samsung\easy printer manager\easyprintermanagerv2.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{613A2E2C-5A9A-4783-A503-788ABDC4AFFA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{101A755F-F2D3-4C74-B81C-A2166354E811}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EE6B5F20-1B9A-4FE1-92EB-7BEA577DDB8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager Touch 2018\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [{B6522A40-B42E-423F-AC2A-ACF9F17BC671}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager Touch 2018\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [{CC156B25-AF6C-482A-ADD1-DAE3878311AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2018\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [{47147BB6-0CEF-49D7-BA5C-5FAF95BD7EDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2018\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [{68CEF7DB-14A1-431D-934A-BA62CC15B898}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{8E6D18F3-7159-4555-9E67-2FBF84342A37}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{D37EBC83-65F4-47F9-9B3F-54D6E0360E3F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{9B729FE1-C6D7-4E75-B7B1-EE6E33B21B74}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{252B51CC-26BA-4351-B30B-0A330F99AE57}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{C3D6A707-0D15-4996-B180-3CB762EC8F42}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{976BB2C6-9E9F-4F21-A273-DF15F8BDEA03}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{B55D6D5E-6A1D-4343-82F5-01209C31BD49}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{AA5D842E-52CC-4245-BCB5-37F03287CCFA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{0A478C7B-AFBB-48A4-B9FE-1A4488B8B3C6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{1FA0BB2B-BD85-4DF9-AC84-662C068D18BE}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{CCE0BB72-F5A7-40EA-A37C-5FCEC0B9A232}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E22B32F8-1C9E-4A3D-9901-32425CB42510}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A23A7E70-5C54-414D-AEC7-E61888DF0638}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{347E60F0-3871-4AC8-8FF1-21B9677F9A08}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{15A472F1-30EB-462E-BDB2-292347A21B3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{96EC5BB7-54F8-4945-966E-7DB29435055A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{27B12396-8A59-4EC5-A96B-BC43AE95EDA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{3AE0DDB1-32F3-47BA-A939-569F5CBB9C87}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{615BA4BE-0406-40EE-B4E8-83D3F74B7F7F}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{2EF4355F-5910-42C6-9F1F-AA78F951FDD3}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{15F7EB0C-33DE-47A0-A180-8F33F05854F1}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{5C97EAFA-C9AE-4FBB-BF31-662C3CA19F07}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{E0ED93F5-2F48-4647-A0E1-C4DE1C21D8F7}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)

==================== Restore Points =========================

15-01-2021 20:44:41 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/16/2021 09:53:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/16/2021 02:52:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LogonUI.exe, verze: 6.1.7601.17514, časové razítko: 0x4ce79f70
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24545, časové razítko: 0x5e0eb67f
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000bf262
ID chybujícího procesu: 0x1fac
Čas spuštění chybující aplikace: 0x01d6ec0ecbade577
Cesta k chybující aplikaci: C:\Windows\system32\LogonUI.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: 0c8886f5-5802-11eb-93f7-cc52afeb871e

Error: (01/16/2021 10:28:54 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/16/2021 12:26:46 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Název chybujícího modulu: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000006f58
ID chybujícího procesu: 0x894
Čas spuštění chybující aplikace: 0x01d6eb458957c281
Cesta k chybující aplikaci: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
Cesta k chybujícímu modulu: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
ID zprávy: 21ea5ef0-5789-11eb-9126-cc52afeb871e

Error: (01/15/2021 02:52:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/15/2021 12:51:13 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Název chybujícího modulu: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000006f58
ID chybujícího procesu: 0x8c8
Čas spuštění chybující aplikace: 0x01d6ea8b94026d55
Cesta k chybující aplikaci: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
Cesta k chybujícímu modulu: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
ID zprávy: 62162c22-56c3-11eb-89c4-cc52afeb871e

Error: (01/14/2021 04:41:25 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (01/14/2021 04:41:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LogonUI.exe, verze: 6.1.7601.17514, časové razítko: 0x4ce79f70
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.24545, časové razítko: 0x5e0eb67f
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000bf262
ID chybujícího procesu: 0x3dc
Čas spuštění chybující aplikace: 0x01d6ea8b800bc2e9
Cesta k chybující aplikaci: C:\Windows\system32\LogonUI.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: e9d4cddd-567e-11eb-89c4-cc52afeb871e


System errors:
=============
Error: (01/16/2021 12:27:38 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BFF6845D-E49A-4A99-9609-418ED36F1C54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/16/2021 12:27:01 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Služba CSR OBEX byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/15/2021 12:51:26 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Služba CSR OBEX byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/14/2021 09:58:42 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error: (01/14/2021 04:43:05 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Služba DCOM zjistila chybu %%1053 = Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas. při pokusu o spuštění služby Disc Soft Lite Bus Service s argumenty za účelem spuštění serveru:
{1BB2CAF7-8881-4CE8-B16A-3CA37C7C6F33}

Error: (01/14/2021 04:43:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Disc Soft Lite Bus Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (01/14/2021 04:43:05 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Disc Soft Lite Bus Service bylo dosaženo časového limitu (30000 ms).

Error: (01/14/2021 12:18:46 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BFF6845D-E49A-4A99-9609-418ED36F1C54} se v daném časovém limitu neregistroval u služby DCOM.


CodeIntegrity:
===================================

Date: 2021-01-17 00:27:13.730
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-17 00:27:11.720
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-17 00:19:28.718
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-17 00:15:52.799
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-17 00:14:52.581
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-17 00:03:50.324
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-17 00:02:13.144
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-17 00:02:11.352
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: Hewlett-Packard 68SCE Ver. F.61 06/11/2015
Motherboard: Hewlett-Packard 1619
Processor: Intel(R) Core(TM) i5-2450M CPU @ 2.50GHz
Percentage of memory in use: 81%
Total physical RAM: 4070.35 MB
Available physical RAM: 771.92 MB
Total Virtual: 8138.85 MB
Available Virtual: 3186.42 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:594.95 GB) (Free:254.24 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (HP_RECOVERY) (Fixed) (Total:98.39 GB) (Free:98.28 GB) NTFS
Drive e: (HP_TOOLS) (Fixed) (Total:4.98 GB) (Free:2.12 GB) FAT32

\\?\Volume{5094b845-e0be-11e5-8af6-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.25 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 47CAA2A8)
Partition 1: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=594.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=98.4 GB) - (Type=0F Extended)
Partition 4: (Not Active) - (Size=5 GB) - (Type=0C)

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113388
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: dotaz na zrušení 2.stupně varování

#11 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
FirewallRules: [{F02EDE41-9E58-49E4-A10E-5EAF6E91CD75}] => (Allow) C:\Users\Lidka\AppData\Roaming\uTorrent\uTorrent.exe => No File
FirewallRules: [{89E2EDB8-758B-4D8B-8A17-F9FACCD16061}] => (Allow) C:\Users\Lidka\AppData\Roaming\uTorrent\uTorrent.exe => No File
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {1f05a039-2abb-11e7-bf1c-cc52afeb871e} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {9dffb4e6-5319-11eb-8f11-cc52afeb871e} - G:\autorun.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {bc645c11-4158-11e6-a9c7-ac81127a3ef3} - H:\Setup.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {c130a406-a503-11e8-88ef-e4115bf6b0fe} - H:\setup.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {fef1731c-d03e-11e6-b7bd-e4115bf6b0fe} - H:\HiSuiteDownLoader.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {fef17365-d03e-11e6-b7bd-e4115bf6b0fe} - G:\HiSuiteDownLoader.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {45C974BC-3F1E-41FA-8532-800049369DE0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-29] (Google Inc -> Google Inc.)
Task: {60243139-2739-4D4D-937D-D78475C7B455} - System32\Tasks\GoogleUpdateTaskMachineUA1d6a3092b23dd6c => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-29] (Google Inc -> Google Inc.)
Task: {E57497A0-3126-4E43-8255-EAB1C75016DF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-29] (Google Inc -> Google Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d6a3092b23dd6c
C:\Windows\system32\Tasks\{E576414B-2ACA-4269-BD52-07DC7BDE5328}
C:\Windows\system32\Tasks\{8D57D230-4E84-48D4-BAD9-77C2D49E312F}
C:\Windows\system32\Tasks\{7C512077-F09A-4134-88E3-47329269B550}
C:\Windows\system32\Tasks\{54AF4C10-152D-491A-98F3-B88E33461AB6}
C:\Windows\system32\Tasks\{F47DEC21-A11C-4FAF-A32F-C444CEB8F930}
C:\Windows\system32\Tasks\{08E2DB35-1575-465E-978F-6A5475427A99}
C:\Windows\system32\Tasks\{EDF091B3-E320-4C00-AC8F-72C98D51ACEC}
C:\Windows\system32\Tasks\{E4E33D5F-8F14-49CD-A1B2-48F137DC825A}
C:\Windows\system32\Tasks\{E29C1DDA-3EC9-4821-8EA9-F2E6310875DE}
C:\Windows\system32\Tasks\{DCA60458-AEBF-4156-A835-490E413DD838}
C:\Windows\system32\Tasks\{D8644986-5423-4474-973B-8E3CBF59BBBD}
C:\Windows\system32\Tasks\{CA3AF45C-D39B-4D07-8C8E-C6C417F9BB08}
C:\Windows\system32\Tasks\{C22BDC46-FBF3-4B19-AE19-71A5CAE0D3BA}
C:\Windows\system32\Tasks\{A8466D5F-2209-40C4-8FC8-5FDD69A0D724}
C:\Windows\system32\Tasks\{90CE91E2-A2F0-4575-B1A4-64B32B9D0E72}
C:\Windows\system32\Tasks\{6B27291E-9679-4302-9388-E701110699F4}
C:\Windows\system32\Tasks\{5213A586-AA3B-4D66-AA16-49FC6276EA68}
C:\Windows\system32\Tasks\{45F7A97D-F26E-4585-8BFC-C48DFFCC04A8}
C:\Windows\system32\Tasks\{2C2B698E-7C58-4E5F-BDEC-EED681A0B052}
C:\Windows\system32\Tasks\{0948A692-5C95-4789-A9BE-B7D965AB7B97}
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Windows\system32\Tasks\{00F0EDE8-FEA5-42DC-8563-A93C2EF34D97}
C:\Users\Lidka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Lidka\AppData\Local\{F08CFAF0-8991-4314-ABD9-2534CE67257F}

EmptyTemp:
End
Uložte do C:\Users\Lidka\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Fidolfo
Návštěvník
Návštěvník
Příspěvky: 46
Registrován: 16 srp 2006 12:57

Re: dotaz na zrušení 2.stupně varování

#12 Příspěvek od Fidolfo »

v te složce Lidka Download nemam,ale je tam stažené soubory tak jsem to hodil tam a dal jsem fix...Ntb se restartoval a ve složce stažene soubory se mi objevil fixlog...posílám

Fix result of Farbar Recovery Scan Tool (x64) Version: 16-01-2021
Ran by Lidka (17-01-2021 12:59:44) Run:1
Running from C:\Users\Lidka\Downloads
Loaded Profiles: Lidka
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
FirewallRules: [{F02EDE41-9E58-49E4-A10E-5EAF6E91CD75}] => (Allow) C:\Users\Lidka\AppData\Roaming\uTorrent\uTorrent.exe => No File
FirewallRules: [{89E2EDB8-758B-4D8B-8A17-F9FACCD16061}] => (Allow) C:\Users\Lidka\AppData\Roaming\uTorrent\uTorrent.exe => No File
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {1f05a039-2abb-11e7-bf1c-cc52afeb871e} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {9dffb4e6-5319-11eb-8f11-cc52afeb871e} - G:\autorun.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {bc645c11-4158-11e6-a9c7-ac81127a3ef3} - H:\Setup.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {c130a406-a503-11e8-88ef-e4115bf6b0fe} - H:\setup.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {fef1731c-d03e-11e6-b7bd-e4115bf6b0fe} - H:\HiSuiteDownLoader.exe
HKU\S-1-5-21-697796565-71972214-219725024-1000\...\MountPoints2: {fef17365-d03e-11e6-b7bd-e4115bf6b0fe} - G:\HiSuiteDownLoader.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {45C974BC-3F1E-41FA-8532-800049369DE0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-29] (Google Inc -> Google Inc.)
Task: {60243139-2739-4D4D-937D-D78475C7B455} - System32\Tasks\GoogleUpdateTaskMachineUA1d6a3092b23dd6c => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-29] (Google Inc -> Google Inc.)
Task: {E57497A0-3126-4E43-8255-EAB1C75016DF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-29] (Google Inc -> Google Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d6a3092b23dd6c
C:\Windows\system32\Tasks\{E576414B-2ACA-4269-BD52-07DC7BDE5328}
C:\Windows\system32\Tasks\{8D57D230-4E84-48D4-BAD9-77C2D49E312F}
C:\Windows\system32\Tasks\{7C512077-F09A-4134-88E3-47329269B550}
C:\Windows\system32\Tasks\{54AF4C10-152D-491A-98F3-B88E33461AB6}
C:\Windows\system32\Tasks\{F47DEC21-A11C-4FAF-A32F-C444CEB8F930}
C:\Windows\system32\Tasks\{08E2DB35-1575-465E-978F-6A5475427A99}
C:\Windows\system32\Tasks\{EDF091B3-E320-4C00-AC8F-72C98D51ACEC}
C:\Windows\system32\Tasks\{E4E33D5F-8F14-49CD-A1B2-48F137DC825A}
C:\Windows\system32\Tasks\{E29C1DDA-3EC9-4821-8EA9-F2E6310875DE}
C:\Windows\system32\Tasks\{DCA60458-AEBF-4156-A835-490E413DD838}
C:\Windows\system32\Tasks\{D8644986-5423-4474-973B-8E3CBF59BBBD}
C:\Windows\system32\Tasks\{CA3AF45C-D39B-4D07-8C8E-C6C417F9BB08}
C:\Windows\system32\Tasks\{C22BDC46-FBF3-4B19-AE19-71A5CAE0D3BA}
C:\Windows\system32\Tasks\{A8466D5F-2209-40C4-8FC8-5FDD69A0D724}
C:\Windows\system32\Tasks\{90CE91E2-A2F0-4575-B1A4-64B32B9D0E72}
C:\Windows\system32\Tasks\{6B27291E-9679-4302-9388-E701110699F4}
C:\Windows\system32\Tasks\{5213A586-AA3B-4D66-AA16-49FC6276EA68}
C:\Windows\system32\Tasks\{45F7A97D-F26E-4585-8BFC-C48DFFCC04A8}
C:\Windows\system32\Tasks\{2C2B698E-7C58-4E5F-BDEC-EED681A0B052}
C:\Windows\system32\Tasks\{0948A692-5C95-4789-A9BE-B7D965AB7B97}
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Windows\system32\Tasks\{00F0EDE8-FEA5-42DC-8563-A93C2EF34D97}
C:\Users\Lidka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Lidka\AppData\Local\{F08CFAF0-8991-4314-ABD9-2534CE67257F}

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F02EDE41-9E58-49E4-A10E-5EAF6E91CD75}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{89E2EDB8-758B-4D8B-8A17-F9FACCD16061}" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKU\S-1-5-21-697796565-71972214-219725024-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1f05a039-2abb-11e7-bf1c-cc52afeb871e} => removed successfully
HKU\S-1-5-21-697796565-71972214-219725024-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9dffb4e6-5319-11eb-8f11-cc52afeb871e} => removed successfully
HKU\S-1-5-21-697796565-71972214-219725024-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bc645c11-4158-11e6-a9c7-ac81127a3ef3} => removed successfully
HKU\S-1-5-21-697796565-71972214-219725024-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c130a406-a503-11e8-88ef-e4115bf6b0fe} => removed successfully
HKU\S-1-5-21-697796565-71972214-219725024-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fef1731c-d03e-11e6-b7bd-e4115bf6b0fe} => removed successfully
HKU\S-1-5-21-697796565-71972214-219725024-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fef17365-d03e-11e6-b7bd-e4115bf6b0fe} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{45C974BC-3F1E-41FA-8532-800049369DE0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{45C974BC-3F1E-41FA-8532-800049369DE0}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{60243139-2739-4D4D-937D-D78475C7B455}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{60243139-2739-4D4D-937D-D78475C7B455}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d6a3092b23dd6c => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1d6a3092b23dd6c" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E57497A0-3126-4E43-8255-EAB1C75016DF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E57497A0-3126-4E43-8255-EAB1C75016DF}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d6a3092b23dd6c" => not found
C:\Windows\system32\Tasks\{E576414B-2ACA-4269-BD52-07DC7BDE5328} => moved successfully
C:\Windows\system32\Tasks\{8D57D230-4E84-48D4-BAD9-77C2D49E312F} => moved successfully
C:\Windows\system32\Tasks\{7C512077-F09A-4134-88E3-47329269B550} => moved successfully
C:\Windows\system32\Tasks\{54AF4C10-152D-491A-98F3-B88E33461AB6} => moved successfully
C:\Windows\system32\Tasks\{F47DEC21-A11C-4FAF-A32F-C444CEB8F930} => moved successfully
C:\Windows\system32\Tasks\{08E2DB35-1575-465E-978F-6A5475427A99} => moved successfully
C:\Windows\system32\Tasks\{EDF091B3-E320-4C00-AC8F-72C98D51ACEC} => moved successfully
C:\Windows\system32\Tasks\{E4E33D5F-8F14-49CD-A1B2-48F137DC825A} => moved successfully
C:\Windows\system32\Tasks\{E29C1DDA-3EC9-4821-8EA9-F2E6310875DE} => moved successfully
C:\Windows\system32\Tasks\{DCA60458-AEBF-4156-A835-490E413DD838} => moved successfully
C:\Windows\system32\Tasks\{D8644986-5423-4474-973B-8E3CBF59BBBD} => moved successfully
C:\Windows\system32\Tasks\{CA3AF45C-D39B-4D07-8C8E-C6C417F9BB08} => moved successfully
C:\Windows\system32\Tasks\{C22BDC46-FBF3-4B19-AE19-71A5CAE0D3BA} => moved successfully
C:\Windows\system32\Tasks\{A8466D5F-2209-40C4-8FC8-5FDD69A0D724} => moved successfully
C:\Windows\system32\Tasks\{90CE91E2-A2F0-4575-B1A4-64B32B9D0E72} => moved successfully
C:\Windows\system32\Tasks\{6B27291E-9679-4302-9388-E701110699F4} => moved successfully
C:\Windows\system32\Tasks\{5213A586-AA3B-4D66-AA16-49FC6276EA68} => moved successfully
C:\Windows\system32\Tasks\{45F7A97D-F26E-4585-8BFC-C48DFFCC04A8} => moved successfully
C:\Windows\system32\Tasks\{2C2B698E-7C58-4E5F-BDEC-EED681A0B052} => moved successfully
C:\Windows\system32\Tasks\{0948A692-5C95-4789-A9BE-B7D965AB7B97} => moved successfully
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Windows\system32\Tasks\{00F0EDE8-FEA5-42DC-8563-A93C2EF34D97} => moved successfully
C:\Users\Lidka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\Users\Lidka\AppData\Local\{F08CFAF0-8991-4314-ABD9-2534CE67257F} => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11728471 B
Java, Flash, Steam htmlcache => 224452452 B
Windows/system/drivers => 1523072 B
Edge => 0 B
Chrome => 290816 B
Firefox => 1101815418 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 16674 B
systemprofile32 => 82628 B
LocalService => 82628 B
NetworkService => 82628 B
Lidka => 97021772 B

RecycleBin => 0 B
EmptyTemp: => 1.3 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 13:00:20 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113388
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: dotaz na zrušení 2.stupně varování

#13 Příspěvek od Rudy »

Stažené soubory jsou totéž. Bylo smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Fidolfo
Návštěvník
Návštěvník
Příspěvky: 46
Registrován: 16 srp 2006 12:57

Re: dotaz na zrušení 2.stupně varování

#14 Příspěvek od Fidolfo »

Díky moc Rudy....a jako svuj díky za vyřešení problemu s mou ostudou a následnou kontrolou nbc, vám milerád pošlu nějakou tu korunu na podporu činnosti...Díky moc :offtopic:

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113388
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: dotaz na zrušení 2.stupně varování

#15 Příspěvek od Rudy »

Rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno