Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivní kontrola

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
notitle
Návštěvník
Návštěvník
Příspěvky: 68
Registrován: 22 pro 2010 20:12

Preventivní kontrola

#1 Příspěvek od notitle »

Dobrý den prosím o preventivní kontrolu.

Děkuji

addition FRST

Kód: Vybrat vše

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2023
Ran by Brožovi (03-06-2023 16:18:18)
Running from C:\Users\Brožovi\Downloads
Microsoft Windows 10 Pro Version 22H2 19045.3031 (X64) (2020-11-15 17:28:11)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3229575688-266275018-2990115840-500 - Administrator - Disabled)
Brožovi (S-1-5-21-3229575688-266275018-2990115840-1001 - Administrator - Enabled) => C:\Users\Brožovi
DefaultAccount (S-1-5-21-3229575688-266275018-2990115840-503 - Limited - Disabled)
Guest (S-1-5-21-3229575688-266275018-2990115840-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3229575688-266275018-2990115840-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3229575688-266275018-2990115840-1001\...\uTorrent) (Version: 3.5.4.44632 - BitTorrent Inc.)
7-Zip 21.07 (x64) (HKLM\...\7-Zip) (Version: 21.07 - Igor Pavlov)
7-Zip 22.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2200-000001000000}) (Version: 22.00.00.0 - Igor Pavlov)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.363 - Adobe)
Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601047}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Catalyst Install Manager (HKLM\...\{66AFB595-BC05-2913-7696-6D58F9B733E1}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 4.0.0.0 - AppEx Networks)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.32.1 - Asmedia Technology)
ASUS Share Link (HKLM-x32\...\{c3bcc1e3-f950-439c-bcae-f01283e9f2a4}_is1) (Version: 1.0.27.0911 - ASUSTEK)
Avast Driver Updater (HKLM\...\Avast Driver Updater) (Version: 23.1.3478.13494 - Avast Software)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.4.6062 - Avast Software)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.78.1094 - AB Team, d.o.o.)
Catalyst Control Center - Branding (HKLM-x32\...\{11087D24-567D-7D88-69C6-D7A08B5F4C47}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.12 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.7.1.0344 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
FileHippo App Manager (HKLM-x32\...\FileHippo.com) (Version:  - FileHippo.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.90 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
Intel® CCF Manager (HKLM\...\{DFD2C0B0-664C-4383-B348-2F531462EBAD}) (Version: 3.0.0.1172 - Intel Corporation) Hidden
Intel® CCF Manager (HKLM-x32\...\{0f3d8dd5-54af-4404-a01c-4967e485a065}) (Version: 3.0.13.2211 - Intel Corporation)
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Malwarebytes version 4.5.29.268 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.29.268 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.37 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 113.0.1774.57 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3229575688-266275018-2990115840-1001\...\OneDriveSetup.exe) (Version: 23.101.0514.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (HKLM\...\{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (HKLM\...\{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (HKLM-x32\...\{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (HKLM-x32\...\{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.23.27820 (HKLM-x32\...\{86BE78D9-65A1-4E69-86F8-C1F5281F8553}) (Version: 14.23.27820 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.23.27820 (HKLM-x32\...\{00AC3934-26B4-406E-807C-1692AC7329EC}) (Version: 14.23.27820 - Microsoft Corporation) Hidden
Mozilla Firefox (x86 cs) (HKLM-x32\...\Mozilla Firefox 113.0.2 (x86 cs)) (Version: 113.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.2 - Mozilla)
Nero 2019 (HKLM-x32\...\{18CAA156-E567-4F8B-96EE-4932D480AF33}) (Version: 20.0.07700 - Nero AG)
Nero AudioPack2 (HKLM-x32\...\{C934C6C8-9974-48A9-8577-432675EEE830}) (Version: 1.0.2011 - Nero AG) Hidden
Nero BackItUp (HKLM-x32\...\{1FC0B99E-B1D6-41F7-A9D6-A0B757B66A6B}) (Version: 20.2.1004 - Nero AG) Hidden
Nero Burning Core (HKLM-x32\...\{F2EB190E-1914-4A6D-951F-BA980A0787F9}) (Version: 20.0.2014 - Nero AG) Hidden
Nero Burning ROM (HKLM-x32\...\{BDDEF496-BA0F-464C-A6FA-84E62345718D}) (Version: 20.0.2014 - Nero AG) Hidden
Nero ControlCenter (HKLM-x32\...\{ABC88553-8770-4B97-B43E-5A90647A5B63}) (Version: 11.4.2006 - Nero AG) Hidden
Nero Core (HKLM-x32\...\{85EFC653-C416-4759-BFD0-0A0095B3FFAC}) (Version: 1.2.00200 - Nero AG)
Nero Core Components (HKLM-x32\...\{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}) (Version: 11.8.1010 - Nero AG) Hidden
Nero CoverDesigner (HKLM-x32\...\{D8CCA6A9-E0CA-4589-BA17-54C909B1C8B5}) (Version: 20.0.2005 - Nero AG) Hidden
Nero Device Updates (HKLM-x32\...\{75FF7B5C-165F-46B7-9881-4E2C8DB87633}) (Version: 20.0.1006 - Nero AG) Hidden
Nero Disc Menus Basic (HKLM-x32\...\{E17BCB76-9924-4BD5-B6D6-50D3407B4E74}) (Version: 20.0.10010 - Nero AG) Hidden
Nero Disc to Device (HKLM-x32\...\{560A79FE-3A3E-474B-BECA-907CE97630CE}) (Version: 20.0.2006 - Nero AG) Hidden
Nero DuplicateManager Photo (HKLM-x32\...\{EB218E04-FC59-4A7F-88F4-4234EBD8C96B}) (Version: 2.2.1002 - Nero AG) Hidden
Nero Effects Basic (HKLM-x32\...\{9EFF05D4-8C1B-451B-8677-6AF7D305C763}) (Version: 20.0.10010 - Nero AG) Hidden
Nero Express (HKLM-x32\...\{C8FC40E2-F661-42B3-97A6-C7123C0CA26E}) (Version: 20.0.2014 - Nero AG) Hidden
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 20.0.1011 - Nero AG)
Nero KnowHow PLUS (HKLM-x32\...\{AACDE618-4162-4074-B01D-67C5E8D07233}) (Version: 1.3.5005 - Nero AG) Hidden
Nero Kwik Themes Basic (HKLM-x32\...\{1B6F5E51-575E-4693-BCA2-7543570D076D}) (Version: 20.0.10010 - Nero AG) Hidden
Nero Launcher (HKLM-x32\...\{F942C990-9AD6-4607-9C15-1021D8D859A8}) (Version: 20.1.2013 - Nero AG) Hidden
Nero MediaHome (HKLM-x32\...\{A00B352E-2814-40C8-B50D-41F78D8D1F68}) (Version: 4.4.1015 - Nero AG) Hidden
Nero PiP Effects Basic (HKLM-x32\...\{ACE49D50-19CD-44A6-B192-46F985283B26}) (Version: 20.0.10010 - Nero AG) Hidden
Nero Recode (HKLM-x32\...\{A91757BC-D9B2-4BB0-B80C-ACEA51824062}) (Version: 20.0.2016 - Nero AG) Hidden
Nero RescueAgent (HKLM-x32\...\{20680F9E-4718-42C7-BBEA-C5B3BBE4090C}) (Version: 20.0.2002 - Nero AG) Hidden
Nero SharedVideoCodecs (HKLM-x32\...\{2432E589-6256-4513-B0BF-EFA8E325D5F0}) (Version: 1.0.19012 - Nero AG) Hidden
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 20.0.1006 - Nero AG) Hidden
Nero Video (HKLM-x32\...\{4BA54276-84FA-472B-B864-D3931B43B86E}) (Version: 20.0.3013 - Nero AG) Hidden
Nero Video Samples (HKLM-x32\...\{05C6B128-1B40-4495-9CB9-090B368BFA0A}) (Version: 20.0.10010 - Nero AG) Hidden
OEM Application Profile (HKLM-x32\...\{D9559CE2-9C58-F414-43EA-F908FEA13BB8}) (Version: 1.00.0000 - Název společnosti:) Hidden
OpenOffice 4.1.6 (HKLM-x32\...\{8DADDDBF-EB36-4D00-9291-8C281F1755A6}) (Version: 4.16.9790 - Apache Software Foundation)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7910 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
STCServ (HKLM\...\{A954D353-9DAF-4916-8E71-F1E959EBCD1E}) (Version: 3.0.0.1783 - Intel Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation)
WinRAR 6.22 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.22.0 - win.rar GmbH)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-08] (Autodesk Inc.)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.244.300.0_x64__kgqvnymyfvs32 [2023-06-02] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-02-16] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-22] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-22] (Microsoft Corporation) [MS Ad]
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-03-22] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.212.902.0_x86__zpdnekdrzrea0 [2023-05-27] (Spotify AB) [Startup Task]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-12] (Twitter Inc.)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2320.2.0_x64__cv1g1gvanyjgm [2023-06-02] (WhatsApp Inc.) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-03-07] (Disc Soft Ltd -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-03-07] (Disc Soft Ltd -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-06-02] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-05-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-06-02] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Brožovi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) =============

2015-08-04 00:25 - 2015-08-04 00:25 - 000102400 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000031232 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\A4.Foundation\45fcf30cead8dc48349c3f6411623f7a\A4.Foundation.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\1d3bebbe5664aa11b294c200317164d9\AEM.Actions.CCAA.Shared.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\0286709beb8583c777e0f533927d8576\AEM.Plugin.EEU.Shared.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\5f87f34e58d159c0fe65fcdcb7bf8092\AEM.Plugin.Hotkeys.Shared.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.4adf1574#\5178246bffc5de2b3ad0ab0a124e32f9\AEM.Plugin.Audio.Shared.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.54d8abe3#\555077344bb0d320215120a92db37b6f\AEM.Plugin.DPPE.Shared.ni.dll
2023-06-03 10:59 - 2023-06-03 10:59 - 000281600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\95e1e28fce25e9c77aad8aef2a10a6e4\AEM.Plugin.Source.Kit.Server.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\db55bbddaf97718eeabfa5853af2d34f\AEM.Plugin.WinMessages.Shared.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\b61f4703713ad64aade808d2a9b84e31\AEM.Plugin.REG.Shared.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\7f200b0ea2d20487875a834618407d91\AEM.Plugin.GD.Shared.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\eb83cd9628178f6d24d97cce514db123\AEM.Server.Shared.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000267776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server\43e17cab26f6f7976b8a4f3c78f6222b\AEM.Server.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000055808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Foundation\336c842977195de8ed1c2790529aa7d7\APM.Foundation.ni.dll
2023-02-20 19:51 - 2023-02-20 19:51 - 000122880 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ATICCCom\5cf9dbfee4c0b64f665be723b083e78f\ATICCCom.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000204288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\abb61dac69936b4cbba829331e27aa61\CCC.Implementation.ni.dll
2023-06-03 11:00 - 2023-06-03 11:00 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.2042675f#\e21557d0942fd24388f2c51867ac99b8\CLI.Aspect.CPUPStates.Fuel.Dashboard.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000128000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\124104a34d9fe962c61ccf3493e8080f\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\3922ac77e55096218315c022640e2dad\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2023-02-20 19:51 - 2023-02-20 19:51 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\f296f78b656633b35ba89654ab139d35\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000107008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\9ee2d2f4020a9141719ccbdee8d986d8\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000209920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4542c692#\8cf363e87f2471a73f98cda1536f484b\CLI.Aspect.DeviceCRT.Graphics.Shared.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.46819220#\441318483ed6716d1edb543d9c2f0c8b\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2023-06-03 11:35 - 2023-06-03 11:35 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\087f3c804abc8e18b890949b3521ba08\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2023-06-03 11:31 - 2023-06-03 11:31 - 000152576 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4ede500c#\1d799f4dfd2cf6aea79fff64341cba03\CLI.Aspect.DPPE.Fuel.Dashboard.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\9dfbce1dcd815bab5b50e4445eab7b89\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.59a12d95#\c58f4116e23c31f05d114d254ef0220a\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2023-06-03 11:31 - 2023-06-03 11:31 - 000111616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.5a772e69#\d3b59a6f6aaf238c3c120e07421938d3\CLI.Aspect.Fets.Fuel.Dashboard.ni.dll
2023-06-03 11:35 - 2023-06-03 11:35 - 000070656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.648b65fc#\51c29e9a251342f0420926ca26218c98\CLI.Aspect.WiFi.Fuel.Dashboard.ni.dll
2023-02-20 19:51 - 2023-02-20 19:51 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\634c5acc571073e6b314c08d978d5768\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000365056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\578aa055a03b459311d7a74d9604fdf1\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2023-06-03 11:35 - 2023-06-03 11:35 - 000064000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\d17dbaef50c51651a073ede919c40ebb\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2023-06-03 11:33 - 2023-06-03 11:33 - 000678912 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.846fa813#\156150f290b081afdb8424305e35c7c8\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000745472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\9ca62260dc8ad5826be24ced5ea196ff\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2023-06-03 11:00 - 2023-06-03 11:00 - 000449536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\8ee06bfcb3086fdf1860b1c88f232168\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2023-06-03 11:32 - 2023-06-03 11:32 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\cdc0ba89ab3118d3c09458687689b079\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000158208 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a0ae52bc#\e40f952bfa17d00a4a859eb1dd122c51\CLI.Aspect.DeviceLCD.Graphics.Shared.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\993c01c592e063d6dddc9677e85dd239\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2023-06-03 11:35 - 2023-06-03 11:35 - 000082944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\a2d4800d273c69bd1563387e354860bf\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000462336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\9ad12e4eab91467b385ece729df2f0b0\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000086528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ae5e117c#\1d22c484f6a6365602a2a87839264c1a\CLI.Aspect.DisplaysColour2.Graphics.Shared.ni.dll
2023-06-03 11:31 - 2023-06-03 11:31 - 000067072 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\48e934606dc89c0bc5122eac7d3d20b3\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000023552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c2a2b491#\1b01f57c8677909bcb3e29a4c70b95bc\CLI.Aspect.WiFi.Fuel.Shared.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000340992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\784d5c6d43283297d2c391aec4ba082c\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\02434a796e721e0f506282eb2ec834ed\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000081408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.caa5cc64#\74833672c16653e190a7eb5fdd7caffb\CLI.Aspect.Fets.Fuel.Shared.ni.dll
2023-06-03 11:35 - 2023-06-03 11:35 - 001315840 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.d7e090dc#\681edae2825cffb0f20d0456a3eb6934\CLI.Aspect.User.Fuel.Dashboard.ni.dll
2023-06-03 11:32 - 2023-06-03 11:32 - 000276480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\f31a646c8cb52f488549ad5dfb5b0710\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2023-06-03 11:35 - 2023-06-03 11:35 - 003312640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\11df31876a5e14f34dea96e360fc001e\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000240640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\354b677392f5213de4273324e1b50cb5\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000047616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\a2b9dfa74006cab22a8b2c2213e0485e\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000070656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.efd83192#\4af32bf63959238b394b8d1294bb3392\CLI.Aspect.CPUPStates.Fuel.Shared.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f45bd021#\3ea2078a560975a7411234ef26e69a75\CLI.Aspect.DPPE.Fuel.Shared.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\4d3bcb7321ba9a20bcb4f660d52bc16d\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000051200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\cc976e778ce2cbcd1c299d824d5aa73d\CLI.Caste.A4.Runtime.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\2436c70aa779189fd4ee70c660969336\CLI.Caste.A4.Shared.ni.dll
2023-06-03 11:36 - 2023-06-03 11:36 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\8a9d60d6dbaaba70e29012a962ab05f5\CLI.Caste.A4.Dashboard.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\7cf885e2c4adb7830c18ccfbb4c0dbc1\CLI.Caste.Fuel.Shared.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000311296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\11e1a486330d7d511ba28fec87c84c63\CLI.Caste.Fuel.Runtime.ni.dll
2023-06-03 11:36 - 2023-06-03 11:36 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\ec46da9ba99ebc6f5e6b8697c44ef464\CLI.Caste.Fuel.Dashboard.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\5226ca4b552677573e0afaf01255b106\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2023-06-03 11:00 - 2023-06-03 11:00 - 001555456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\c53ed398fb13009ce03d4dc74465470a\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2023-06-03 11:00 - 2023-06-03 11:00 - 000587776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\1d3ccdf1d416c04f5c0d7996e1fb8e2e\CLI.Caste.Graphics.Dashboard.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\c598f31bad0919622d1d2a61a20be0a2\CLI.Caste.HydraVision.Runtime.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\21f7da0d7a6078ffc1761ec617084a05\CLI.Caste.HydraVision.Shared.ni.dll
2023-06-03 11:36 - 2023-06-03 11:36 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\178130ae0d07ffc7c26695174dfa91a0\CLI.Caste.HydraVision.Dashboard.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\7b1a1204f5246e124d0c59ba23f7dfb3\CLI.Caste.Platform.Shared.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\9d805dd0cfa957d94d98e5063a6a07b5\CLI.Caste.Platform.Runtime.ni.dll
2023-06-03 11:36 - 2023-06-03 11:36 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\4e1bd911a1f9e7237d41fc69747881e0\CLI.Caste.Platform.Dashboard.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000350720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combinee84f0351#\3d972ccabdf239bb8d474c9c019196df\CLI.Combined.Fusion.Aspects.Runtime.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\411626b8799b4f3283add87749352e72\CLI.Component.Runtime.Shared.ni.dll
2023-06-03 11:37 - 2023-06-03 11:37 - 000901632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\aab5a490753f20a1f1427afffb334508\CLI.Component.Systemtray.ni.dll
2023-06-03 11:37 - 2023-06-03 11:37 - 000173568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\cf5fc6f630b12c5d05d7fff4eddf0f7b\CLI.Component.Dashboard.ProfileManager2.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\a1a0842dea7fca0d229c123d1b860b26\CLI.Component.Runtime.Shared.Private.ni.dll
2023-02-20 19:51 - 2023-02-20 19:51 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\5234640af4a95575eab3ee78a8137443\CLI.Component.Runtime.Extension.EEU.ni.dll
2023-06-03 10:59 - 2023-06-03 10:59 - 001609728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\132b9b42b8d80026c53ddca60eaabb9a\CLI.Component.Dashboard.Shared.Private.ni.dll
2023-06-03 10:59 - 2023-06-03 10:59 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\77e3175339f0a42af5a29b64aed28638\CLI.Component.Client.Shared.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\289f96858b94499453594848d9487a20\CLI.Component.Dashboard.Shared.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000089600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\8c4b3717b5fdbec941bf2b3c5e6ac96d\CLI.Foundation.Private.ni.dll
2023-02-20 19:51 - 2023-02-20 19:51 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\a1653a28d34f22dd77acc9c8f6aeddbe\CLI.Foundation.XManifest.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000091136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\130785125a65ee66682b4bbb326604c2\CLI.Foundation.CoreAudioAPI.ni.dll
2023-06-03 11:00 - 2023-06-03 11:00 - 001079296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\acc0fd82fffb4daee4d3cbf99b4dff62\CLI.Foundation.Client.ni.dll
2023-06-03 10:59 - 2023-06-03 10:59 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\2465a4365681f6d427feb8f17fc1ec82\CLI.Foundation.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\316c1b454a28be96113095ece0e963f8\DEM.Foundation.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000115200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\54d14e8e569c6803a95af2e3b5bc18d4\DEM.Graphics.I0601.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\5a3c38cd37ce646389d414e66158ca1c\DEM.Graphics.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\d4f6bad1ce4458cc0a4729dc7328f0d1\Fuel.Foundation.ni.dll
2023-06-03 11:37 - 2023-06-03 11:37 - 000296960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\cc051805fe0f5411a55ba04782532a74\LOG.Foundation.Implementation.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\11029d56406a91e2614e521cbfbc82f1\LOG.Foundation.Private.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\72866b9815bc4932db203ba32fccd01c\LOG.Foundation.Implementation.Private.ni.dll
2023-06-03 10:59 - 2023-06-03 10:59 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\959560ed6668bf3f429b8d33f9a0ff74\LOG.Foundation.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\cba8070e5ef9f396e5deac49eef8bcf4\MOM.Foundation.ni.dll
2023-02-20 19:52 - 2023-02-20 19:52 - 000402944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\8e6ff39b325a87016ed41cf16e1d7ec3\MOM.Implementation.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\bef6d494467b694e24d482e18bf3bfbe\NEWAEM.Foundation.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\bedf1628f1c29f47a67d67976eea3304\ADL.Foundation.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 000256000 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Server\2138129e0d6605a52eb0d79021f94f5f\APM.Server.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000298496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9b707b25#\3e6df79d24fb11d3a202bfcf3f9d7275\CLI.Aspect.DeviceProperty.Graphics.Runtime.ni.dll
2023-06-03 11:31 - 2023-06-03 11:31 - 001654272 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.aa59351a#\38c88ba0c607f42f2eefc214b1a87d66\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.ni.dll
2023-06-03 11:31 - 2023-06-03 11:31 - 006336512 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e6d9f3a8#\861c0b401e0a79dcede10a946e7e9e2a\CLI.Aspect.DeviceDFP.Graphics.Dashboard.ni.dll
2023-06-03 11:36 - 2023-06-03 11:36 - 008027648 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\e461da3ee8cd1fd78db37b92d70eb76a\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2023-06-03 11:37 - 2023-06-03 11:37 - 001159680 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine7332395e#\f15da77c198abdd92c9a1fd12cfbe4ad\CLI.Combined.Graphics.Aspects2.Runtime.ni.dll
2023-06-03 10:59 - 2023-06-03 10:59 - 000136704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\4b2740a17c29c2524e8b284aad8d85b4\CLI.Component.Client.Shared.Private.ni.dll
2023-02-20 19:51 - 2023-02-20 19:51 - 000234496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\7c06a04ce8dfcefc99e6f0f658102635\CLI.Component.Runtime.ni.dll
2023-06-03 11:37 - 2023-06-03 11:37 - 000929280 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\ba0f5c81885a95b1be045a05d6078e0c\CLI.Component.Dashboard.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0706\b36e2773f4bedd0a49d50728200cf924\DEM.Graphics.I0706.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000084480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\780904238054bbc224646f4ad9f5bdf5\DEM.Graphics.I0709.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000012288 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\7c47ddef4497dc94cb5e507afdb568ac\DEM.Graphics.I0712.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000018432 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\740f18842e6f5e8a0d85e91bae5208a9\DEM.Graphics.I0804.ni.dll
2023-02-20 19:51 - 2023-02-20 19:51 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0805\cf9e156e37d79efe9d35adb797a3c2ec\DEM.Graphics.I0805.ni.dll
2023-02-20 19:51 - 2023-02-20 19:51 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0812\9c77770e27b8cac23cc38d040d9b70b4\DEM.Graphics.I0812.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0906\15d4922003303f2bc5a0a6e0244a4e55\DEM.Graphics.I0906.ni.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0912\b7c94a2a02494ed32ec5466e6bff1f5c\DEM.Graphics.I0912.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 000035840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\983299df3727ce44bdf8cbb794dcafb8\DEM.Graphics.I1010.ni.dll
2023-02-20 19:48 - 2023-02-20 19:48 - 001139200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\81f4f4d44535bdede3753340e7547d5b\Localization.Foundation.Private.ni.dll
2023-06-03 11:39 - 2023-06-03 11:39 - 000244736 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\15d0bc1f6b4ae812044f7391139a9b3c\ResourceManagement.Foundation.Implementation.ni.dll
2023-06-03 11:00 - 2023-06-03 11:00 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\fbd2b1f24c7f2899f4c1b8748810ba34\ResourceManagement.Foundation.Private.ni.dll
2023-06-03 11:00 - 2023-06-03 11:00 - 000091648 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\5094ae77d28ffbdb9a809e784e1cad64\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2023-06-03 10:59 - 2023-06-03 10:59 - 002845696 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\fb0ca7b62d741ef9014b1d361708fd93\CLI.Caste.Graphics.Shared.ni.dll
2023-02-20 19:50 - 2023-02-20 19:50 - 003268096 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\1ae98ff125928ca7e3694af8f4e6bc4d\CLI.Caste.Graphics.Runtime.ni.dll
2022-06-15 18:00 - 2022-06-15 18:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2023-02-20 19:49 - 2023-02-20 19:49 - 000335360 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\14cb05b20b1b7ce048b773f429b04e32\Microsoft.WindowsAPICodePack.ni.dll
2023-06-03 11:00 - 2023-06-03 11:00 - 002546688 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\ad2ad7f8c89f1400ffa4a63eeffdb0c1\Microsoft.WindowsAPICodePack.Shell.ni.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-3229575688-266275018-2990115840-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKLM-x32 -> DefaultScope value is missing
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2020-02-29] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2020-02-29] (Oracle America, Inc. -> Oracle Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3229575688-266275018-2990115840-1001\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 09:24 - 2019-01-05 11:50 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3229575688-266275018-2990115840-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Brožovi\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\les.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: AppEx Networks Accelerator -> appex_acc (enabled) 

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "DriverUpdUI.exe"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Nero BackItUp"
HKLM\...\StartupApproved\Run32: => "DriveSpan"
HKU\S-1-5-21-3229575688-266275018-2990115840-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-3229575688-266275018-2990115840-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{F12DD833-2749-4BDA-BEEA-DDDAB630786A}] => (Allow) C:\Program Files (x86)\Nero\Nero 2019\Nero Burning ROM\nero.exe (Nero AG -> Nero AG)
FirewallRules: [{CF02BF3F-8809-4CD5-84D9-F0A005461CAC}] => (Allow) C:\Program Files (x86)\Nero\Nero 2019\Nero MediaHome\MediaHome.exe (Nero AG -> Nero AG)
FirewallRules: [{78732413-EA35-46BC-8B88-B0D21DD91C1B}] => (Allow) C:\Program Files (x86)\Nero\Nero 2019\Nero MediaHome\NMDllHost.exe (Nero AG -> Nero AG)
FirewallRules: [{8179A3FF-A623-4710-A806-BFA32CAEDB97}] => (Allow) C:\Program Files (x86)\Nero\Nero 2019\Nero BackItup\BackItUp.exe (Nero AG -> Nero AG)
FirewallRules: [{643AF6A5-2379-452A-A552-44BC2D3FA52A}] => (Allow) C:\Program Files (x86)\Nero\Nero 2019\Nero BackItup\NBService.exe (Nero AG -> Nero AG)
FirewallRules: [{981A99CF-C5B1-46FA-AF58-B3FEF52E9F07}] => (Allow) C:\Program Files (x86)\Nero\Nero 2019\Nero Burning ROM\StartNBR.exe (Nero AG -> Nero AG)
FirewallRules: [UDP Query User{FA987D1F-D58B-4518-8382-C8E1A0DD90B7}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{DDC7B426-92D6-4E64-AD23-D59BF9C7DB6F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{935BA86F-39C2-40FB-AA38-75817AF448C7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7670AC48-8F1E-490F-BA1B-D37F1BE3329E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{6BFCF9EF-2698-4FCD-8ED6-54A49C640390}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (Disc Soft Ltd -> Disc Soft Ltd)
FirewallRules: [{9FF8ACCD-280B-49F7-B265-4EA6F252A191}] => (Allow) C:\Users\Brožovi\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{B84D8C29-D720-4976-8BD9-955170BF1013}] => (Allow) C:\Users\Brožovi\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{D2F620DE-C1B5-411D-A9A6-DDE74F70EF4B}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
FirewallRules: [{DEA4812A-F43E-4C37-99D0-048B0C1542EE}] => (Allow) C:\Program Files (x86)\ASUS\Share Link\ShareLink.exe (ASUSTeK Computer Inc. -> ASUS) [File not signed]
FirewallRules: [{0DA7C8A9-8813-42A4-AE8E-B0F2731A8453}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
FirewallRules: [{BE189467-CC4F-4607-9060-B58259B1E2B3}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
FirewallRules: [TCP Query User{454A9214-7FE7-4EB3-A326-431EB1CD7C4C}C:\program files\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_201\bin\javaw.exe
FirewallRules: [UDP Query User{19B57FEF-7E80-4A37-A720-83BACBE380B1}C:\program files\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_201\bin\javaw.exe
FirewallRules: [TCP Query User{93796DF6-58F0-44C6-9EBC-625C3D08570E}C:\program files\avast software\driver updater\driverupdui.exe] => (Block) C:\program files\avast software\driver updater\driverupdui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [UDP Query User{94214A01-EBCC-4D64-83A2-E21ED0E07825}C:\program files\avast software\driver updater\driverupdui.exe] => (Block) C:\program files\avast software\driver updater\driverupdui.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{EC626C7E-31C0-4714-9178-FB78F6DCB250}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A33EC350-1345-4C1C-9875-5CDF9020BF78}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{46F06AD4-3A0E-4136-8A50-019FD4BCB7A3}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8E019ECA-71C0-4E0D-93C2-4B5D92F44D4C}] => (Allow) C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8C6D8F36-D3CF-4E3C-B78F-0B4EC7D6AB1A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.212.902.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FCDEE582-7FDF-49B3-90B6-856301FBFEDC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.212.902.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C2FF6477-CFBE-41C4-9A72-EDE15A0B4695}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.212.902.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{027615F5-9683-4E42-8891-34328081D4DC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.212.902.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{47D1D1CD-07C0-4BD2-B0C3-ABAF1F34CAEF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.212.902.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FA509BBE-E491-4277-A085-467EF452D1CA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.212.902.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{23BB5B1C-F71B-49A8-AEBF-C02C0C1C0990}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.212.902.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{1B4AA173-DF71-4389-B1D9-A3BC590B6287}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.212.902.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{1574D208-92C5-443E-8F17-612029E1BC52}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.212.902.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7FF3F2F6-1A04-48F5-9DC6-06C59C0701CE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.212.902.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{43AF3181-3819-496D-9FA3-01E91288A824}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8F4CCFE7-7B04-4C75-92DA-8E5DB1B1FCE6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7C3323DE-A939-420B-A1C3-7B1EA97F9486}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A4649490-CBF8-42B5-98B0-CD50DE51A7CC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.98.3206.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5F521228-DDA8-4E3C-AE4C-AC28C88473B0}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\113.0.1774.57\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{46AF2B73-E058-492D-A9A5-A20F31DECEA1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

03-06-2023 15:42:19 Removed WiFi+Transfer.

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/03/2023 03:42:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (06/03/2023 09:59:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: BackItUp.exe, verze: 20.2.1.4, časové razítko: 0x5cac18af
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3031, časové razítko: 0x7431a292
Kód výjimky: 0xe0434352
Posun chyby: 0x0013d8a2
ID chybujícího procesu: 0x1310
Čas spuštění chybující aplikace: 0x01d995f135665523
Cesta k chybující aplikaci: C:\Program Files (x86)\Nero\Nero 2019\Nero BackItUp\BackItUp.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 19c622fe-f65f-473d-96ee-66ba8f16e1b1
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (06/03/2023 09:59:19 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: BackItUp.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: Microsoft.VisualBasic.ApplicationServices.CantStartSingleInstanceException
   na Microsoft.VisualBasic.ApplicationServices.WindowsFormsApplicationBase.Run(System.String[])
   na BackItUp.SingleInstanceManager.RunSingleInstance(System.String[])
   na BackItUp.EntryPoint.Main(System.String[])

Error: (06/02/2023 05:18:28 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (06/02/2023 05:18:28 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (06/02/2023 05:18:27 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (06/02/2023 05:18:27 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (06/02/2023 05:13:57 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.


System errors:
=============
Error: (06/03/2023 04:10:44 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-9B9B75H)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě: 
2147942767
při provádění příkazu: 
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (06/03/2023 03:51:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Intel(R) Common Connectivity Framework neuspěla při spuštění v důsledku následující chyby: 
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (06/03/2023 03:51:37 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Intel(R) Common Connectivity Framework bylo dosaženo časového limitu (30000 ms).

Error: (06/03/2023 02:16:24 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/03/2023 02:16:23 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/03/2023 02:08:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Intel(R) Common Connectivity Framework neuspěla při spuštění v důsledku následující chyby: 
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (06/03/2023 02:08:09 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Intel(R) Common Connectivity Framework bylo dosaženo časového limitu (30000 ms).

Error: (06/03/2023 02:04:03 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-9B9B75H)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
================Event[0]:

Date: 2022-12-16 20:26:55
Description: 
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 
Předchozí verze bezpečnostních informací: 1.309.1433.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.16800.2
Kód chyby: 0x80240017
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře. 

CodeIntegrity:
===============
Date: 2023-06-03 15:51:29
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2023-06-03 15:50:09
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.


==================== Memory info =========================== 

BIOS: American Megatrends Inc. 0304 03/07/2016
Motherboard: ASUSTeK COMPUTER INC. A88XM-E/USB 3.1
Processor: AMD A4-6300 APU with Radeon(tm) HD Graphics 
Percentage of memory in use: 73%
Total physical RAM: 3267.38 MB
Available physical RAM: 867.2 MB
Total Virtual: 6595.38 MB
Available Virtual: 3741.32 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:150 GB) (Free:74.56 GB) (Model: WDC WD10 EZEX-22BN5A0 SATA Disk Device) NTFS
Drive d: (Data) (Fixed) (Total:764.14 GB) (Free:412.33 GB) (Model: WDC WD10 EZEX-22BN5A0 SATA Disk Device) NTFS

\\?\Volume{fb61e639-1d25-48fa-b819-8b6314f00756}\ (Windows RE tools) (Fixed) (Total:0.78 GB) (Free:0.54 GB) NTFS
\\?\Volume{f09f0f13-54a0-4bf0-a4be-d514921191f4}\ (Recovery image) (Fixed) (Total:16.21 GB) (Free:2.57 GB) NTFS
\\?\Volume{96e27a02-243d-425e-bccc-86f10cc444f8}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.2 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 649C3F45)

Partition: GPT.

==================== End of Addition.txt =======================
FRST

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2023
Ran by Brožovi (administrator) on DESKTOP-9B9B75H (03-06-2023 16:15:19)
Running from C:\Users\Brožovi\Downloads\FRST64.exe
Loaded Profiles: Brožovi
Platform: Microsoft Windows 10 Pro Version 22H2 19045.3031 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\AVAST Software\Driver Updater\DriverUpdUI.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(explorer.exe ->) (AppEx Networks Corporation -> AppEx Networks Corporation) C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Driver Updater\DriverUpdUI.exe <4>
(explorer.exe ->) (Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel® Corporation) [File not signed] C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Driver Updater\DriverUpdSvc.exe
(services.exe ->) (Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(services.exe ->) (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Nero 2019\Nero BackItUp\NBService.exe
(services.exe ->) (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(services.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2304.2.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8899592 2016-08-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [220056 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [IntelConnectCenter] => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation) [File not signed]
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [4949912 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601928 2018-12-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Nero BackItUp] => C:\Program Files (x86)\Nero\Nero 2019\Nero BackItup\BackItUp.exe [1171224 2019-04-09] (Nero AG -> Nero AG)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3229575688-266275018-2990115840-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [5262992 2018-03-07] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-3229575688-266275018-2990115840-1001\...\Run: [AppEx Accelerator UI] => C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [488640 2015-04-06] (AppEx Networks Corporation -> AppEx Networks Corporation)
HKU\S-1-5-21-3229575688-266275018-2990115840-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40454048 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.90\Installer\chrmstp.exe [2023-06-02] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0557734C-A203-4C28-833E-FB9B09D87AEF} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {329067A3-7D7D-4329-AD82-B97A2461CA1A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-05] (Google Inc -> Google Inc.)
Task: {462E7449-0201-4A25-AF3F-4BF3DEC98D2E} - System32\Tasks\Avast Software\Avast Driver Updater Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-du\icarus.exe [7092120 2023-05-03] (Avast Software s.r.o. -> Avast Software)
Task: {4D2D151B-58C0-4AD9-9946-1DF4ED9E0377} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {60789329-2A19-4ED3-9D0B-7CD7603D7984} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2135448 2023-04-15] (Avast Software s.r.o. -> Avast Software)
Task: {6F3DDD24-6ED0-489F-A381-F0729D2011B7} - System32\Tasks\IntelBootstrapCCDashExe => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation) [File not signed]
Task: {75981FF7-80DC-4DDA-A5DF-029324DBDF8C} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {78F1AF36-79B2-4A13-B1A4-C8BEF6B24185} - System32\Tasks\CCleanerSkipUAC - Brožovi => C:\Program Files\CCleaner\CCleaner.exe [34264480 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {815E56EA-2AEB-4EC4-A8F8-F875A20E0E33} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4884888 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
Task: {8AF924B8-6C3F-4040-9306-0BD7E7990279} - System32\Tasks\Avast Software\Avast Driver Updater BugReport => C:\Program Files\Avast Software\Driver Updater\AvBugReport.exe [5029784 2023-05-06] (Avast Software s.r.o. -> AVAST Software) -> --send "dumps|report" --silent --product 148 --programpath "C:\Program Files\Avast Software\Driver Updater\Setup\.." --configpath "C:\Program Files\Avast Software\Driver Updater\Setup" --path "C:\ProgramData\Avast Software\Driver Updater\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --log (the data entry has 99 more characters).
Task: {8B4C69FB-A0BC-4C7D-8907-61712005276E} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [604064 2023-06-02] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {8DC616C9-AFE4-4952-A4D7-DB5AC2A02B7D} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [7018264 2018-07-19] (Nero AG -> Nero AG)
Task: {9A71F8F5-C5D1-41B1-98F9-6A07CECECE40} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "185d8a27-dc36-455b-8c1a-6e9580bf3088" --version "6.12.10490" --silent
Task: {A03D0ADD-7B83-4CF1-A3AC-C3CD3E8EE348} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-05] (Google Inc -> Google Inc.)
Task: {D4E8B9E3-F777-4B50-833D-DE7BE22C7A64} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [679840 2023-06-02] (Mozilla Corporation -> Mozilla Foundation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{151bf430-b6fc-45de-ae78-f428e88de3cc}: [DhcpNameServer] 192.168.0.1

Edge: 
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Brožovi\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-03]
Edge HomePage: Default -> hxxps://www.seznam.cz/
Edge StartupUrls: Default -> "hxxp://www.seznam.cz/"

FireFox:
========
FF DefaultProfile: osccc4ht.default
FF ProfilePath: C:\Users\Brožovi\AppData\Roaming\Mozilla\Firefox\Profiles\osccc4ht.default [2023-06-03]
FF DownloadDir: C:\Users\Brožovi\Downloads
FF Homepage: Mozilla\Firefox\Profiles\osccc4ht.default -> www.seznam.cz
FF NewTab: Mozilla\Firefox\Profiles\osccc4ht.default -> hxxps://securesearch.org/homepage?hp=2&pId=JD180501&iDate=2020-02-29 08:16:26&bName=
FF Notifications: Mozilla\Firefox\Profiles\osccc4ht.default -> hxxps://www.facebook.com; hxxps://www.youtube.com; hxxps://navratdoreality.cz; hxxps://seznamka-krestanska.cz
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Brožovi\AppData\Roaming\Mozilla\Firefox\Profiles\osccc4ht.default\Extensions\sp@avast.com.xpi [2022-08-30]
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2020-02-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2020-02-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\Brožovi\AppData\Local\Google\Chrome\User Data\Default [2023-06-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\Brožovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-04-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Brožovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-08-18]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-04] (Advanced Micro Devices, Inc.) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8822680 2023-06-02] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [584600 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [585112 2023-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-26] (Avast Software s.r.o. -> AVAST Software)
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063840 2023-05-12] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3480720 2018-03-07] (Disc Soft Ltd -> Disc Soft Ltd)
R2 DriverUpdSvc; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [9007000 2023-05-06] (Avast Software s.r.o. -> AVAST Software)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9255384 2023-06-02] (Malwarebytes Inc. -> Malwarebytes)
R2 NeroBackItUpBackgroundService2019; C:\Program Files (x86)\Nero\Nero 2019\Nero BackItUp\NBService.exe [287000 2019-04-09] (Nero AG -> Nero AG)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [336208 2023-05-27] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [8095456 2015-03-16] (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-14] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 APXACC; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [229056 2015-04-03] (AppEx Networks Corporation -> AppEx Networks Corporation)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31360 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [235880 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [391800 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297824 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95904 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-15] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39592 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [270472 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [556104 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105232 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80408 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [942936 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [703280 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212672 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319552 2023-05-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-03-12] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-03-12] (Disc Soft Ltd -> Disc Soft Ltd)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-06-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-14] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-14] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-06-03 16:15 - 2023-06-03 16:16 - 000021134 _____ C:\Users\Brožovi\Downloads\FRST.txt
2023-06-03 16:12 - 2023-06-03 16:12 - 000001208 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BS.Player FREE.lnk
2023-06-03 16:12 - 2023-06-03 16:12 - 000001202 _____ C:\Users\Public\Desktop\BS.Player FREE.lnk
2023-06-03 16:12 - 2023-06-03 16:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player
2023-06-03 16:06 - 2023-06-03 16:06 - 000000000 ____D C:\Users\Brožovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-06-03 16:06 - 2023-06-03 16:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2023-06-03 16:06 - 2023-06-03 16:06 - 000000000 ____D C:\Program Files\WinRAR
2023-06-03 16:00 - 2023-06-03 16:00 - 000000000 ____D C:\ProgramData\Piriform
2023-06-03 15:58 - 2023-06-03 16:09 - 000000000 ____D C:\Program Files\CCleaner
2023-06-03 15:58 - 2023-06-03 15:58 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-06-03 15:58 - 2023-06-03 15:58 - 000003474 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-06-03 15:58 - 2023-06-03 15:58 - 000002912 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Brožovi
2023-06-03 15:58 - 2023-06-03 15:58 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2023-06-03 15:58 - 2023-06-03 15:58 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-06-03 15:58 - 2023-06-03 15:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2023-06-03 14:02 - 2023-06-03 14:02 - 000000000 ____D C:\AdwCleaner
2023-06-03 13:55 - 2023-06-03 13:55 - 000000000 ____D C:\rsit
2023-06-03 13:55 - 2023-06-03 13:55 - 000000000 ____D C:\Program Files\trend micro
2023-06-03 13:54 - 2023-06-03 13:54 - 001222144 _____ C:\Users\Brožovi\Downloads\RSITx64.exe
2023-06-03 13:41 - 2023-06-03 16:16 - 000000000 ____D C:\FRST
2023-06-03 13:34 - 2023-06-03 13:36 - 002383360 _____ (Farbar) C:\Users\Brožovi\Downloads\FRST64.exe
2023-06-03 12:05 - 2023-06-03 12:06 - 000000000 ____D C:\Users\Brožovi\Desktop\Fotky
2023-06-03 11:14 - 2023-06-03 12:49 - 000000000 ____D C:\Users\Brožovi\Desktop\Marie
2023-06-02 17:32 - 2023-06-02 17:33 - 000000000 ____D C:\Users\Brožovi\AppData\Local\Malwarebytes
2023-06-02 17:32 - 2023-06-02 17:32 - 000002040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-05-27 15:22 - 2023-05-27 15:22 - 000000000 ___HD C:\$WinREAgent
2023-05-12 15:40 - 2023-05-12 15:40 - 000313240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-06-03 16:14 - 2018-11-02 16:36 - 000000000 ____D C:\Users\Brožovi\Desktop\Instalačky
2023-06-03 16:13 - 2017-09-01 14:40 - 000000000 ____D C:\Users\Brožovi\AppData\Roaming\BSplayer
2023-06-03 16:12 - 2017-09-01 14:40 - 000000000 ____D C:\Program Files (x86)\Webteh
2023-06-03 16:10 - 2022-02-12 12:42 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-06-03 15:51 - 2018-08-05 11:40 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-03 15:51 - 2017-05-23 15:30 - 000000000 ___RD C:\Users\Brožovi\OneDrive
2023-06-03 15:50 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-03 15:48 - 2020-11-15 19:26 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-03 15:48 - 2020-10-30 20:58 - 000008192 ___SH C:\DumpStack.log.tmp
2023-06-03 15:48 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-06-03 15:48 - 2017-05-26 19:54 - 000000000 ____D C:\ProgramData\AVAST Software
2023-06-03 15:48 - 2017-05-23 15:43 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2023-06-03 15:43 - 2020-11-13 20:23 - 000000000 ____D C:\Program Files (x86)\Nero
2023-06-03 13:47 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-06-03 13:22 - 2020-02-29 22:14 - 000000000 ____D C:\Users\Brožovi\AppData\Local\JDownloader 2.0
2023-06-03 11:43 - 2020-11-15 19:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-03 11:03 - 2020-06-13 16:25 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-03 11:03 - 2020-06-13 16:25 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-06-03 11:03 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-03 11:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-03 10:01 - 2018-07-29 15:15 - 000000000 ____D C:\Users\Brožovi\AppData\Local\CrashDumps
2023-06-02 18:16 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-02 17:32 - 2020-02-16 14:44 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-06-02 17:32 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-06-02 17:31 - 2020-02-16 14:44 - 000158640 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2023-06-02 17:30 - 2020-02-16 14:44 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-06-02 17:30 - 2020-02-16 14:43 - 000000000 ____D C:\Program Files\Malwarebytes
2023-06-02 17:19 - 2018-05-18 20:07 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2023-06-02 17:19 - 2017-05-26 20:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-06-02 16:57 - 2018-08-05 11:41 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-02 16:26 - 2017-05-26 20:04 - 000001235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-06-02 16:19 - 2021-12-21 18:19 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-06-02 16:13 - 2021-12-11 21:21 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3229575688-266275018-2990115840-1001
2023-06-02 16:13 - 2020-11-15 19:26 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3229575688-266275018-2990115840-1001
2023-06-02 16:13 - 2020-11-15 19:06 - 000002390 _____ C:\Users\Brožovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-06-02 16:08 - 2021-10-28 16:43 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-06-02 16:08 - 2019-12-07 16:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2023-06-02 16:08 - 2019-12-07 16:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2023-05-27 16:11 - 2020-11-15 19:02 - 000294960 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-05-27 16:08 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-05-27 16:08 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-05-27 16:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-05-27 16:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-05-27 16:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-05-27 16:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-05-27 16:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-05-27 16:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-05-27 16:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-05-27 15:55 - 2020-11-15 19:05 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-05-27 14:12 - 2020-11-15 19:26 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-05-20 14:41 - 2020-11-15 19:26 - 000003768 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-05-20 14:41 - 2020-11-15 19:26 - 000003644 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-05-12 18:05 - 2019-12-07 16:43 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2023-05-12 18:05 - 2019-12-07 16:43 - 000000000 ____D C:\WINDOWS\system32\cs
2023-05-12 18:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-05-12 16:58 - 2020-10-01 08:29 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-05-12 16:57 - 2017-05-23 16:39 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-05-12 15:48 - 2017-05-23 16:39 - 159583304 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-05-12 15:40 - 2020-10-23 15:49 - 000270472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2023-05-12 15:40 - 2020-04-16 18:12 - 000556104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2023-05-12 15:40 - 2019-01-19 11:08 - 000391800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2023-05-12 15:40 - 2019-01-05 11:56 - 000297824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2023-05-12 15:40 - 2019-01-05 11:56 - 000095904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2023-05-12 15:40 - 2019-01-05 11:56 - 000031360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2023-05-12 15:40 - 2018-11-02 13:56 - 000039592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2023-05-12 15:40 - 2017-11-18 18:37 - 000235880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2023-05-12 15:40 - 2017-05-26 19:59 - 000942936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2023-05-12 15:40 - 2017-05-26 19:59 - 000703280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2023-05-12 15:40 - 2017-05-26 19:59 - 000319552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2023-05-12 15:40 - 2017-05-26 19:59 - 000105232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2023-05-12 15:40 - 2017-05-26 19:59 - 000080408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2023-05-09 11:48 - 2020-11-15 19:26 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-09 11:48 - 2020-11-15 19:26 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore

==================== Files in the root of some directories ========

2020-02-16 14:53 - 2020-02-16 14:53 - 000007637 _____ () C:\Users\Brožovi\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

notitle
Návštěvník
Návštěvník
Příspěvky: 68
Registrován: 22 pro 2010 20:12

Re: Preventivní kontrola

#2 Příspěvek od notitle »

RSIT Log:

Kód: Vybrat vše

Logfile of random's system information tool 1.10 (written by random/random)
Run by Brožovi at 2023-06-03 16:31:07
Microsoft Windows 10 Pro 
System drive C: has 77 GB (50%) free of 154 GB
Total RAM: 3267 MB (22% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:31:12, on 03.06.2023
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.1566)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Brožovi.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.37\BHO\ie_to_edge_bho.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Nero BackItUp] "C:\Program Files (x86)\Nero\Nero 2019\Nero BackItup\BackItUp.exe" /WinStart
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Brožovi\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [AppEx Accelerator UI] C:\Program Files\AMD Quick Stream\AMDQuickStream.exe -h
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD Crash Defender Service - Unknown owner - C:\WINDOWS\system32\amdfendrsr.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Tools (avast! Tools) - AVAST Software - C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: CCleaner Performance Optimizer Service (CCleanerPerformanceOptimizerService) - Piriform Software Ltd - C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_5563c - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: Avast Driver Updater (DriverUpdSvc) - AVAST Software - C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.90\elevation_service.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: Nero BackItUp Background Service 2019 (NeroBackItUpBackgroundService2019) - Nero AG - C:\Program Files (x86)\Nero\Nero 2019\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Intel(R) Common Connectivity Framework (STCServ) - Intel Corporation - C:\Program Files\Intel\STCServ\STCServ.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9932 bytes

======Listing Processes======










winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p
C:\WINDOWS\system32\amdfendrsr.exe
C:\WINDOWS\system32\atiesrxx.exe
atieclxx


C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k appmodel -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p

"C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe" /runassvc
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe"
"C:\Program Files (x86)\Nero\Nero 2019\Nero BackItUp\NBService.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="4F1D353D-72BE-54B7-61F8-ED4EB8852A12" /binpath="C:\Program Files\AVAST Software\Avast" /logpath="C:\ProgramData\AVAST Software\Avast\log"
C:\WINDOWS\system32\wbem\wmiprvse.exe
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup


taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"ctfmon.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\svchost.exe -k UdkSvcGroup
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe" 
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s

"C:\Program Files\AVAST Software\Driver Updater\DriverUpdUI.exe" /nogui
"C:\Program Files\AMD Quick Stream\AMDQuickStream.exe" -h
"C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe" -ServerName:CortanaUI.AppX8z9r6jm96hw4bsbneegw0kyxx296wr9t.mca
"C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe" -ServerName:App.AppX2y379sjp88wjq1y80217mddj3fargf2y.mca
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM" PriorityLow
/tasktrayonly
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k AarSvcGroup -p
"C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\AVAST Software\Driver Updater\DriverUpdUI.exe" --type=gpu-process --field-trial-handle=2556,11156578245381911273,1433795039863912860,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\Brožovi\AppData\Roaming\Avast Software\Driver Updater\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\Users\Brožovi\AppData\Roaming\Avast Software\Driver Updater\log\cef_log.txt" --mojo-platform-channel-handle=2564 /prefetch:2
"C:\Program Files\AVAST Software\Driver Updater\DriverUpdUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2556,11156578245381911273,1433795039863912860,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=en-US --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\Users\Brožovi\AppData\Roaming\Avast Software\Driver Updater\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Brožovi\AppData\Roaming\Avast Software\Driver Updater\log\cef_log.txt" --mojo-platform-channel-handle=2576 /prefetch:8
"C:\Program Files\AVAST Software\Driver Updater\DriverUpdUI.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2556,11156578245381911273,1433795039863912860,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=en-US --service-sandbox-type=utility --no-sandbox --force-wave-audio --log-file="C:\Users\Brožovi\AppData\Roaming\Avast Software\Driver Updater\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.101 Safari/537.36 Avastium" --lang=en-US --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Brožovi\AppData\Roaming\Avast Software\Driver Updater\log\cef_log.txt" --mojo-platform-channel-handle=4056 /prefetch:8
AvastUI.exe /nogui

C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p

"C:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe" -ServerName:InputApp.AppXjd5de1g66v206tj52m9d0dtpppx4cgpn.mca
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=gpu-process --field-trial-handle=10232,13878529828103577384,4067726984470437880,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --no-sandbox --disable-gpu-driver-bug-workarounds --log-file="C:\Users\Brožovi\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --gpu-preferences=SAAAAAAAAADgAABwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --use-gl=swiftshader-webgl --log-file="C:\Users\Brožovi\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=9836 /prefetch:2
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=10232,13878529828103577384,4067726984470437880,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=cs --service-sandbox-type=utility --no-sandbox --force-wave-audio --log-file="C:\Users\Brožovi\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Brožovi\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=2468 /prefetch:8
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=10232,13878529828103577384,4067726984470437880,131072 --disable-features=CookiesWithoutSameSiteMustBeSecure,ForcedColors,SameSiteByDefaultCookies,SameSiteDefaultChecksMethodRigorously --lang=cs --service-sandbox-type=none --no-sandbox --force-wave-audio --log-file="C:\Users\Brožovi\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --log-severity=error --user-agent="Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.3.3626.1895 Safari/537.36 Avastium (0.0.0)" --lang=cs-CZ --proxy-auto-detect --disable-webaudio --force-wave-audio --disable-software-rasterizer --no-sandbox --blacklist-accelerated-compositing --disable-accelerated-2d-canvas --disable-accelerated-compositing --disable-accelerated-layers --disable-accelerated-video-decode --blacklist-webgl --disable-bundled-ppapi-flash --disable-flash-3d --enable-aggressive-domstorage-flushing --enable-media-stream --disable-gpu --disable-webgl --disable-gpu-compositing --allow-file-access-from-files=1 --pack_loading_disabled=1 --log-file="C:\Users\Brožovi\AppData\Roaming\Avast Software\Avast\log\cef_log.txt" --mojo-platform-channel-handle=4112 /prefetch:8
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
"C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe"
"C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe"
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2304.2.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe" -ServerName:Microsoft.ZuneMusic.AppXr954g6gg1tvs748d5g67zt981dvpmnr6.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2023.10030.27002.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\Windows\System32\smartscreen.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-3229575688-266275018-2990115840-10018_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-3229575688-266275018-2990115840-10018 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"  "1"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7316.0.1437760040\886154851" -parentBuildID 20230522134052 -prefsHandle 1748 -prefMapHandle 1740 -prefsLen 31805 -prefMapSize 249717 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {7a4fa60f-1aa0-4d92-a8a2-9f7aeaacc7b2} 7316 "\\.\pipe\gecko-crash-server-pipe.7316" 1796 124f56c0 gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7316.1.673707364\90493134" -parentBuildID 20230522134052 -prefsHandle 2276 -prefMapHandle 2272 -prefsLen 31805 -prefMapSize 249717 -win32kLockedDown -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {b96e592a-ca4b-4022-bea2-fa5e7a616db9} 7316 "\\.\pipe\gecko-crash-server-pipe.7316" 2304 13863a90 socket
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7316.2.1796680167\1357404262" -childID 1 -isForBrowser -prefsHandle 2952 -prefMapHandle 3024 -prefsLen 32305 -prefMapSize 249717 -jsInitHandle 1268 -jsInitLen 238780 -parentBuildID 20230522134052 -win32kLockedDown -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {dd6b9f3c-366b-49ad-b9b7-7cadd9308881} 7316 "\\.\pipe\gecko-crash-server-pipe.7316" 2964 19c896d0 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7316.6.818670262\1813044798" -childID 5 -isForBrowser -prefsHandle 4872 -prefMapHandle 4856 -prefsLen 37765 -prefMapSize 249717 -jsInitHandle 1268 -jsInitLen 238780 -parentBuildID 20230522134052 -win32kLockedDown -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {5e842d62-780e-495b-8c93-2035fb8d7fa4} 7316 "\\.\pipe\gecko-crash-server-pipe.7316" 4864 1a7369b0 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7316.8.90365295\55088240" -childID 7 -isForBrowser -prefsHandle 10440 -prefMapHandle 10376 -prefsLen 31567 -prefMapSize 249717 -jsInitHandle 1268 -jsInitLen 238780 -parentBuildID 20230522134052 -win32kLockedDown -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {d7ee5ef8-8693-4c8c-b24d-149e08ef17c1} 7316 "\\.\pipe\gecko-crash-server-pipe.7316" 5308 2258eb20 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7316.9.1694640776\1565548896" -parentBuildID 20230522134052 -prefsHandle 10180 -prefMapHandle 3080 -prefsLen 37802 -prefMapSize 249717 -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {8038e03f-fcec-4bc3-a0b3-25c38dd645dc} 7316 "\\.\pipe\gecko-crash-server-pipe.7316" 2852 1927f120 rdd
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7316.10.1956839645\1979833067" -parentBuildID 20230522134052 -sandboxingKind 1 -prefsHandle 10252 -prefMapHandle 10188 -prefsLen 37802 -prefMapSize 249717 -win32kLockedDown -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {d9ee1cff-bcd0-48fb-b782-0eb82ef28f60} 7316 "\\.\pipe\gecko-crash-server-pipe.7316" 10220 13863db0 utility
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7316.11.394370470\1295998152" -childID 8 -isForBrowser -prefsHandle 10468 -prefMapHandle 10436 -prefsLen 31567 -prefMapSize 249717 -jsInitHandle 1268 -jsInitLen 238780 -parentBuildID 20230522134052 -win32kLockedDown -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {ea015eb6-ff16-4dfe-b927-4191316d4ebd} 7316 "\\.\pipe\gecko-crash-server-pipe.7316" 10108 1dcf4c90 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7316.12.363787427\1104013308" -childID 9 -isForBrowser -prefsHandle 9984 -prefMapHandle 10084 -prefsLen 31728 -prefMapSize 249717 -jsInitHandle 1268 -jsInitLen 238780 -parentBuildID 20230522134052 -win32kLockedDown -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {3fa48a2e-e544-47ed-b1a7-6345f3dbf2dc} 7316 "\\.\pipe\gecko-crash-server-pipe.7316" 9884 217903f0 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7316.13.1133655497\144612626" -childID 10 -isForBrowser -prefsHandle 6368 -prefMapHandle 4656 -prefsLen 31728 -prefMapSize 249717 -jsInitHandle 1268 -jsInitLen 238780 -parentBuildID 20230522134052 -win32kLockedDown -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {302650c5-9530-40ee-be77-5ba4221847b7} 7316 "\\.\pipe\gecko-crash-server-pipe.7316" 6136 21fce9b0 tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="7316.14.37383084\348405932" -childID 11 -isForBrowser -prefsHandle 9868 -prefMapHandle 6396 -prefsLen 31728 -prefMapSize 249717 -jsInitHandle 1268 -jsInitLen 238780 -parentBuildID 20230522134052 -win32kLockedDown -appDir "C:\Program Files (x86)\Mozilla Firefox\browser" - {5d2625c0-899e-438f-a32a-849581f981c0} 7316 "\\.\pipe\gecko-crash-server-pipe.7316" 6320 2247ec90 tab
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 800 804 812 8192 808 784 
"C:\Users\Brožovi\Downloads\RSITx64.exe" 

======Scheduled tasks folder======

C:\WINDOWS\tasks\CCleanerCrashReporting.job - C:\Program Files\CCleaner\CCleanerBugReport.exe  --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "185d8a27-dc36-455b-8c1a-6e9580bf3088" --version "6.12.10490" --silent 

=========Mozilla firefox=========

ProfilePath - C:\Users\Brožovi\AppData\Roaming\Mozilla\Firefox\Profiles\osccc4ht.default

prefs.js - "browser.startup.homepage" -  "www.seznam.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.201.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.201.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll


C:\Users\Brožovi\AppData\Roaming\Mozilla\Firefox\Profiles\osccc4ht.default\searchplugins\
yahoo.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.37\BHO\ie_to_edge_bho_64.dll [2023-06-02 589264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2020-02-29 582008]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2020-02-29 245112]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.37\BHO\ie_to_edge_bho.dll [2023-06-02 454592]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 86016]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-08-18 8899592]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2023-05-12 220056]
"IntelConnectCenter"=C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [2015-03-16 90112]
"DriverUpdUI.exe"=C:\Program Files\Avast Software\Driver Updater\DriverUpdUI.exe [2023-05-06 4949912]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\Brožovi\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2023-06-02 2604464]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2018-03-07 5262992]
"AppEx Accelerator UI"=C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [2015-04-06 488640]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2023-05-12 40454048]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-12-15 601928]
"Nero BackItUp"=C:\Program Files (x86)\Nero\Nero 2019\Nero BackItup\BackItUp.exe [2019-04-09 1171224]
"StartCCC"=C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [2015-08-04 767176]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HidSpiCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aswSP.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HidSpiCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"aux1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"aux2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv

======File associations======

.inf - install - 
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2023-06-03 16:06:00 ----D---- C:\Program Files\WinRAR
2023-06-03 16:00:43 ----D---- C:\ProgramData\Piriform
2023-06-03 15:58:28 ----D---- C:\Program Files\CCleaner
2023-06-03 14:02:14 ----D---- C:\AdwCleaner
2023-06-03 13:55:24 ----D---- C:\rsit
2023-06-03 13:55:24 ----D---- C:\Program Files\trend micro
2023-06-03 13:41:20 ----D---- C:\FRST
2023-06-02 17:32:45 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2023-06-02 17:32:30 ----A---- C:\WINDOWS\system32\drivers\MbamElam.sys
2023-05-27 15:58:56 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2023-05-27 15:58:56 ----A---- C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2023-05-27 15:58:56 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2023-05-27 15:58:50 ----A---- C:\WINDOWS\system32\Windows.UI.Shell.dll
2023-05-27 15:58:50 ----A---- C:\WINDOWS\system32\cdp.dll
2023-05-27 15:58:49 ----A---- C:\WINDOWS\system32\xpsrchvw.exe
2023-05-27 15:58:36 ----A---- C:\WINDOWS\system32\quickassist.exe
2023-05-27 15:58:36 ----A---- C:\WINDOWS\system32\mspaint.exe
2023-05-27 15:58:35 ----A---- C:\WINDOWS\SYSWOW64\WMVCORE.DLL
2023-05-27 15:58:34 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2023-05-27 15:58:34 ----A---- C:\WINDOWS\SYSWOW64\mfps.dll
2023-05-27 15:58:34 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2023-05-27 15:58:34 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2023-05-27 15:58:33 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2023-05-27 15:58:33 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2023-05-27 15:58:33 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2023-05-27 15:58:32 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2023-05-27 15:58:30 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2023-05-27 15:58:30 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2023-05-27 15:58:30 ----A---- C:\WINDOWS\system32\MSAudDecMFT.dll
2023-05-27 15:58:30 ----A---- C:\WINDOWS\system32\HologramWorld.dll
2023-05-27 15:58:29 ----A---- C:\WINDOWS\system32\mfps.dll
2023-05-27 15:58:29 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2023-05-27 15:58:29 ----A---- C:\WINDOWS\system32\mfcore.dll
2023-05-27 15:58:29 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2023-05-27 15:58:29 ----A---- C:\WINDOWS\system32\mf.dll
2023-05-27 15:58:28 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.Office2013CustomActions.dll
2023-05-27 15:58:28 ----A---- C:\WINDOWS\SYSWOW64\Microsoft.Uev.AppAgent.dll
2023-05-27 15:58:28 ----A---- C:\WINDOWS\SYSWOW64\gpprefcl.dll
2023-05-27 15:58:28 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2023-05-27 15:58:27 ----A---- C:\WINDOWS\system32\gpprefcl.dll
2023-05-27 15:58:26 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2023-05-27 15:58:26 ----A---- C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2023-05-27 15:58:26 ----A---- C:\WINDOWS\system32\CustomShellHost.exe
2023-05-27 15:58:25 ----A---- C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll
2023-05-27 15:58:25 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2023-05-27 15:58:25 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2023-05-27 15:58:25 ----A---- C:\WINDOWS\system32\AgentService.exe
2023-05-27 15:58:24 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2023-05-27 15:58:24 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2023-05-27 15:58:22 ----A---- C:\WINDOWS\system32\fclip.exe
2023-05-27 15:58:21 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2023-05-27 15:58:21 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2023-05-27 15:58:21 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2023-05-27 15:58:20 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2023-05-27 15:58:20 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2023-05-27 15:58:20 ----A---- C:\WINDOWS\SYSWOW64\NAPCRYPT.DLL
2023-05-27 15:58:20 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2023-05-27 15:58:19 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2023-05-27 15:58:18 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2023-05-27 15:58:18 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2023-05-27 15:58:17 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2023-05-27 15:58:17 ----A---- C:\WINDOWS\SYSWOW64\dnscmmc.dll
2023-05-27 15:57:55 ----A---- C:\WINDOWS\system32\SIHClient.exe
2023-05-27 15:57:55 ----A---- C:\WINDOWS\system32\FileHistory.exe
2023-05-27 15:57:55 ----A---- C:\WINDOWS\system32\fhuxgraphics.dll
2023-05-27 15:57:55 ----A---- C:\WINDOWS\system32\CPFilters.dll
2023-05-27 15:57:55 ----A---- C:\WINDOWS\system32\AcGenral.dll
2023-05-27 15:57:54 ----A---- C:\WINDOWS\system32\wsp_health.dll
2023-05-27 15:57:54 ----A---- C:\WINDOWS\system32\tsgqec.dll
2023-05-27 15:57:54 ----A---- C:\WINDOWS\system32\mstscax.dll
2023-05-27 15:57:53 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2023-05-27 15:57:52 ----A---- C:\WINDOWS\system32\NAPCRYPT.DLL
2023-05-27 15:57:35 ----A---- C:\WINDOWS\system32\mshtml.dll
2023-05-27 15:57:35 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2023-05-27 15:57:34 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2023-05-27 15:57:33 ----A---- C:\WINDOWS\system32\edgehtml.dll
2023-05-27 15:57:31 ----A---- C:\WINDOWS\system32\dnscmmc.dll
2023-05-27 15:57:30 ----A---- C:\WINDOWS\system32\ClipUp.exe
2023-05-27 15:57:28 ----A---- C:\WINDOWS\system32\vertdll.dll
2023-05-27 15:57:28 ----A---- C:\WINDOWS\system32\tcbloader.dll
2023-05-27 15:57:28 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2023-05-27 15:57:28 ----A---- C:\WINDOWS\system32\skci.dll
2023-05-27 15:57:28 ----A---- C:\WINDOWS\system32\securekernel.exe
2023-05-27 15:57:28 ----A---- C:\WINDOWS\system32\resutils.dll
2023-05-27 15:57:27 ----A---- C:\WINDOWS\system32\SgrmEnclave_secure.dll
2023-05-27 15:57:27 ----A---- C:\WINDOWS\system32\SgrmEnclave.dll
2023-05-27 15:57:27 ----A---- C:\WINDOWS\system32\hvix64.exe
2023-05-27 15:57:27 ----A---- C:\WINDOWS\system32\hvax64.exe
2023-05-27 15:57:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2023-05-27 15:57:26 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2023-05-27 15:57:26 ----A---- C:\WINDOWS\SYSWOW64\rtutils.dll
2023-05-27 15:57:26 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2023-05-27 15:57:26 ----A---- C:\WINDOWS\SYSWOW64\AboveLockAppHost.dll
2023-05-27 15:57:25 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2023-05-27 15:57:25 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2023-05-27 15:57:25 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2023-05-27 15:57:25 ----A---- C:\WINDOWS\SYSWOW64\msdelta.dll
2023-05-27 15:57:25 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2023-05-27 15:57:25 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2023-05-27 15:57:25 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2023-05-27 15:57:25 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2023-05-27 15:57:24 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2023-05-27 15:57:24 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2023-05-27 15:57:24 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2023-05-27 15:57:24 ----A---- C:\WINDOWS\SYSWOW64\winbio.dll
2023-05-27 15:57:24 ----A---- C:\WINDOWS\SYSWOW64\webio.dll
2023-05-27 15:57:24 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2023-05-27 15:57:24 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2023-05-27 15:57:24 ----A---- C:\WINDOWS\SYSWOW64\mspatcha.dll
2023-05-27 15:57:24 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2023-05-27 15:57:24 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2023-05-27 15:57:24 ----A---- C:\WINDOWS\SYSWOW64\console.dll
2023-05-27 15:57:23 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2023-05-27 15:57:23 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2023-05-27 15:57:22 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2023-05-27 15:57:22 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2023-05-27 15:57:22 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2023-05-27 15:57:22 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2023-05-27 15:57:22 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2023-05-27 15:57:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2023-05-27 15:57:21 ----A---- C:\WINDOWS\SYSWOW64\OneCoreUAPCommonProxyStub.dll
2023-05-27 15:57:21 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2023-05-27 15:57:21 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2023-05-27 15:57:21 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2023-05-27 15:57:21 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2023-05-27 15:57:20 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2023-05-27 15:57:20 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2023-05-27 15:57:20 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2023-05-27 15:57:20 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2023-05-27 15:57:19 ----A---- C:\WINDOWS\SYSWOW64\WordBreakers.dll
2023-05-27 15:57:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Core.TextInput.dll
2023-05-27 15:57:19 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2023-05-27 15:57:19 ----A---- C:\WINDOWS\SYSWOW64\TextInputMethodFormatter.dll
2023-05-27 15:57:19 ----A---- C:\WINDOWS\SYSWOW64\TextInputFramework.dll
2023-05-27 15:57:19 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2023-05-27 15:57:19 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2023-05-27 15:57:19 ----A---- C:\WINDOWS\SYSWOW64\EditBufferTestHook.dll
2023-05-27 15:57:18 ----A---- C:\WINDOWS\SYSWOW64\XInputUap.dll
2023-05-27 15:57:18 ----A---- C:\WINDOWS\SYSWOW64\Windows.Gaming.Input.dll
2023-05-27 15:57:18 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2023-05-27 15:57:18 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2023-05-27 15:57:18 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2023-05-27 15:57:18 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2023-05-27 15:57:18 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2023-05-27 15:57:18 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2023-05-27 15:57:18 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2023-05-27 15:57:18 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2023-05-27 15:57:18 ----A---- C:\WINDOWS\SYSWOW64\GameInput.dll
2023-05-27 15:57:18 ----A---- C:\WINDOWS\SYSWOW64\d3d9on12.dll
2023-05-27 15:57:18 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2023-05-27 15:57:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2023-05-27 15:57:16 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2023-05-27 15:57:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2023-05-27 15:57:16 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2023-05-27 15:57:16 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2023-05-27 15:57:16 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2023-05-27 15:57:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2023-05-27 15:57:15 ----A---- C:\WINDOWS\SYSWOW64\ShellCommonCommonProxyStub.dll
2023-05-27 15:57:15 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2023-05-27 15:57:15 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2023-05-27 15:57:15 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2023-05-27 15:57:15 ----A---- C:\WINDOWS\system32\ActionQueue.dll
2023-05-27 15:57:14 ----A---- C:\WINDOWS\system32\wudriver.dll
2023-05-27 15:57:14 ----A---- C:\WINDOWS\system32\windowsudk.shellcommon.dll
2023-05-27 15:57:14 ----A---- C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2023-05-27 15:57:14 ----A---- C:\WINDOWS\system32\LsaIso.exe
2023-05-27 15:57:14 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2023-05-27 15:57:14 ----A---- C:\WINDOWS\system32\kernel32.dll
2023-05-27 15:57:14 ----A---- C:\WINDOWS\system32\iumcrypt.dll
2023-05-27 15:57:13 ----A---- C:\WINDOWS\system32\xpsservices.dll
2023-05-27 15:57:13 ----A---- C:\WINDOWS\system32\twinui.dll
2023-05-27 15:57:13 ----A---- C:\WINDOWS\system32\rtutils.dll
2023-05-27 15:57:13 ----A---- C:\WINDOWS\system32\drivers\rassstp.sys
2023-05-27 15:57:13 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2023-05-27 15:57:12 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2023-05-27 15:57:12 ----A---- C:\WINDOWS\system32\npmproxy.dll
2023-05-27 15:57:12 ----A---- C:\WINDOWS\system32\nlmsprep.dll
2023-05-27 15:57:12 ----A---- C:\WINDOWS\system32\nlmproxy.dll
2023-05-27 15:57:12 ----A---- C:\WINDOWS\system32\nlasvc.dll
2023-05-27 15:57:12 ----A---- C:\WINDOWS\system32\nlaapi.dll
2023-05-27 15:57:12 ----A---- C:\WINDOWS\system32\ncsi.dll
2023-05-27 15:57:12 ----A---- C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
2023-05-27 15:57:00 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2023-05-27 15:57:00 ----A---- C:\WINDOWS\system32\netprofm.dll
2023-05-27 15:56:59 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2023-05-27 15:56:59 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2023-05-27 15:56:58 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2023-05-27 15:56:58 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2023-05-27 15:56:58 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2023-05-27 15:56:58 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2023-05-27 15:56:57 ----A---- C:\WINDOWS\system32\msIso.dll
2023-05-27 15:56:57 ----A---- C:\WINDOWS\system32\laps.dll
2023-05-27 15:56:57 ----A---- C:\WINDOWS\system32\edgeIso.dll
2023-05-27 15:56:57 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2023-05-27 15:56:57 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2023-05-27 15:56:57 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2023-05-27 15:56:56 ----A---- C:\WINDOWS\system32\wininet.dll
2023-05-27 15:56:56 ----A---- C:\WINDOWS\system32\urlmon.dll
2023-05-27 15:56:56 ----A---- C:\WINDOWS\system32\jsproxy.dll
2023-05-27 15:56:56 ----A---- C:\WINDOWS\system32\iertutil.dll
2023-05-27 15:56:55 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2023-05-27 15:56:55 ----A---- C:\WINDOWS\system32\MdmDiagnostics.dll
2023-05-27 15:56:55 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2023-05-27 15:56:55 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2023-05-27 15:56:54 ----A---- C:\WINDOWS\system32\sppobjs.dll
2023-05-27 15:56:54 ----A---- C:\WINDOWS\system32\omadmclient.exe
2023-05-27 15:56:54 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2023-05-27 15:56:54 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2023-05-27 15:56:53 ----A---- C:\WINDOWS\system32\sppsvc.exe
2023-05-27 15:56:53 ----A---- C:\WINDOWS\system32\SppExtComObj.Exe
2023-05-27 15:56:53 ----A---- C:\WINDOWS\system32\sppcext.dll
2023-05-27 15:56:51 ----A---- C:\WINDOWS\system32\shell32.dll
2023-05-27 15:56:51 ----A---- C:\WINDOWS\system32\mspatchc.dll
2023-05-27 15:56:51 ----A---- C:\WINDOWS\system32\mspatcha.dll
2023-05-27 15:56:51 ----A---- C:\WINDOWS\system32\msdelta.dll
2023-05-27 15:56:50 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2023-05-27 15:56:50 ----A---- C:\WINDOWS\system32\wuuhext.dll
2023-05-27 15:56:49 ----A---- C:\WINDOWS\system32\KernelBase.dll
2023-05-27 15:56:48 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2023-05-27 15:56:48 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2023-05-27 15:56:47 ----A---- C:\WINDOWS\system32\pacjsworker.exe
2023-05-27 15:56:47 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2023-05-27 15:56:47 ----A---- C:\WINDOWS\system32\ntdll.dll
2023-05-27 15:56:47 ----A---- C:\WINDOWS\system32\lsasrv.dll
2023-05-27 15:56:47 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2023-05-27 15:56:46 ----A---- C:\WINDOWS\system32\winhttp.dll
2023-05-27 15:56:46 ----A---- C:\WINDOWS\system32\webio.dll
2023-05-27 15:56:46 ----A---- C:\WINDOWS\system32\schannel.dll
2023-05-27 15:56:46 ----A---- C:\WINDOWS\system32\msv1_0.dll
2023-05-27 15:56:46 ----A---- C:\WINDOWS\system32\KdsCli.dll
2023-05-27 15:56:46 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2023-05-27 15:56:46 ----A---- C:\WINDOWS\system32\dnsapi.dll
2023-05-27 15:56:46 ----A---- C:\WINDOWS\system32\ci.dll
2023-05-27 15:56:45 ----A---- C:\WINDOWS\system32\winload.exe
2023-05-27 15:56:45 ----A---- C:\WINDOWS\system32\pcasvc.dll
2023-05-27 15:56:45 ----A---- C:\WINDOWS\system32\pcalua.exe
2023-05-27 15:56:45 ----A---- C:\WINDOWS\system32\pcaevts.dll
2023-05-27 15:56:45 ----A---- C:\WINDOWS\system32\pcadm.dll
2023-05-27 15:56:45 ----A---- C:\WINDOWS\system32\console.dll
2023-05-27 15:56:45 ----A---- C:\WINDOWS\system32\conhost.exe
2023-05-27 15:56:44 ----A---- C:\WINDOWS\system32\ShellAppRuntime.exe
2023-05-27 15:56:44 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2023-05-27 15:56:44 ----A---- C:\WINDOWS\system32\NotificationController.dll
2023-05-27 15:56:43 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2023-05-27 15:56:43 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2023-05-27 15:56:43 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2023-05-27 15:56:42 ----A---- C:\WINDOWS\system32\wups2.dll
2023-05-27 15:56:42 ----A---- C:\WINDOWS\system32\wups.dll
2023-05-27 15:56:42 ----A---- C:\WINDOWS\system32\wuaueng.dll
2023-05-27 15:56:42 ----A---- C:\WINDOWS\system32\wuauclt.exe
2023-05-27 15:56:42 ----A---- C:\WINDOWS\system32\wuapi.dll
2023-05-27 15:56:42 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2023-05-27 15:56:42 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2023-05-27 15:56:41 ----A---- C:\WINDOWS\system32\usosvc.dll
2023-05-27 15:56:41 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2023-05-27 15:56:41 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2023-05-27 15:56:41 ----A---- C:\WINDOWS\system32\MoUsoCoreWorker.exe
2023-05-27 15:56:41 ----A---- C:\WINDOWS\system32\HttpsDataSource.dll
2023-05-27 15:56:41 ----A---- C:\WINDOWS\system32\drivers\SpbCx.sys
2023-05-27 15:56:40 ----A---- C:\WINDOWS\system32\winbio.dll
2023-05-27 15:56:40 ----A---- C:\WINDOWS\system32\win32u.dll
2023-05-27 15:56:40 ----A---- C:\WINDOWS\system32\win32kfull.sys
2023-05-27 15:56:40 ----A---- C:\WINDOWS\system32\win32k.sys
2023-05-27 15:56:40 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2023-05-27 15:56:40 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2023-05-27 15:56:40 ----A---- C:\WINDOWS\system32\drivers\HidSpiCx.sys
2023-05-27 15:56:39 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2023-05-27 15:56:39 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2023-05-27 15:56:39 ----A---- C:\WINDOWS\system32\storewuauth.dll
2023-05-27 15:56:39 ----A---- C:\WINDOWS\system32\PushToInstall.dll
2023-05-27 15:56:39 ----A---- C:\WINDOWS\system32\kerberos.dll
2023-05-27 15:56:39 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2023-05-27 15:56:38 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2023-05-27 15:56:38 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2023-05-27 15:56:38 ----A---- C:\WINDOWS\system32\ISM.dll
2023-05-27 15:56:38 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2023-05-27 15:56:38 ----A---- C:\WINDOWS\system32\InstallService.dll
2023-05-27 15:56:37 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2023-05-27 15:56:37 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2023-05-27 15:56:37 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2023-05-27 15:56:37 ----A---- C:\WINDOWS\system32\MapsStore.dll
2023-05-27 15:56:37 ----A---- C:\WINDOWS\system32\MapRouter.dll
2023-05-27 15:56:37 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2023-05-27 15:56:37 ----A---- C:\WINDOWS\system32\BingMaps.dll
2023-05-27 15:56:36 ----A---- C:\WINDOWS\system32\tquery.dll
2023-05-27 15:56:36 ----A---- C:\WINDOWS\system32\TextInputMethodFormatter.dll
2023-05-27 15:56:36 ----A---- C:\WINDOWS\system32\InputService.dll
2023-05-27 15:56:36 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2023-05-27 15:56:27 ----A---- C:\WINDOWS\system32\mssvp.dll
2023-05-27 15:56:27 ----A---- C:\WINDOWS\system32\mssrch.dll
2023-05-27 15:56:27 ----A---- C:\WINDOWS\system32\mssprxy.dll
2023-05-27 15:56:26 ----A---- C:\WINDOWS\system32\win32kbase.sys
2023-05-27 15:56:26 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2023-05-27 15:56:26 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2023-05-27 15:56:26 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2023-05-27 15:56:26 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2023-05-27 15:56:26 ----A---- C:\WINDOWS\system32\mssph.dll
2023-05-27 15:56:26 ----A---- C:\WINDOWS\system32\mssitlb.dll
2023-05-27 15:56:26 ----A---- C:\WINDOWS\system32\msscntrs.dll
2023-05-27 15:56:25 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2023-05-27 15:56:25 ----A---- C:\WINDOWS\system32\dosvc.dll
2023-05-27 15:56:25 ----A---- C:\WINDOWS\system32\domgmt.dll
2023-05-27 15:56:25 ----A---- C:\WINDOWS\system32\d3d9on12.dll
2023-05-27 15:56:07 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2023-05-27 15:56:07 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2023-05-27 15:56:06 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2023-05-27 15:56:05 ----A---- C:\WINDOWS\system32\smartscreenps.dll
2023-05-27 15:56:05 ----A---- C:\WINDOWS\system32\smartscreen.exe
2023-05-27 15:56:05 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2023-05-27 15:56:05 ----A---- C:\WINDOWS\system32\GameInput.dll
2023-05-27 15:56:05 ----A---- C:\WINDOWS\system32\cloudAP.dll
2023-05-27 15:56:04 ----A---- C:\WINDOWS\system32\XInputUap.dll
2023-05-27 15:56:04 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2023-05-27 15:56:04 ----A---- C:\WINDOWS\system32\Windows.Gaming.Input.dll
2023-05-27 15:56:02 ----A---- C:\WINDOWS\system32\wow64cpu.dll
2023-05-27 15:56:02 ----A---- C:\WINDOWS\system32\wow64.dll
2023-05-27 15:56:02 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2023-05-27 15:56:02 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2023-05-27 15:56:01 ----A---- C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2023-05-27 15:56:01 ----A---- C:\WINDOWS\system32\localui.dll
2023-05-27 15:56:00 ----A---- C:\WINDOWS\system32\wifidatacapabilityhandler.dll
2023-05-27 15:56:00 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2023-05-27 15:56:00 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2023-05-27 15:56:00 ----A---- C:\WINDOWS\system32\usbmon.dll
2023-05-27 15:56:00 ----A---- C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2023-05-27 15:56:00 ----A---- C:\WINDOWS\system32\apisetschema.dll
2023-05-27 15:56:00 ----A---- C:\WINDOWS\explorer.exe
2023-05-27 15:55:59 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2023-05-27 15:55:59 ----A---- C:\WINDOWS\system32\PrinterCleanupTask.dll
2023-05-27 15:55:59 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2023-05-27 15:55:59 ----A---- C:\WINDOWS\system32\localspl.dll
2023-05-27 15:55:59 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2023-05-27 15:55:59 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2023-05-27 15:55:59 ----A---- C:\WINDOWS\system32\AppListBackupLauncher.dll
2023-05-27 15:55:58 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2023-05-27 15:55:58 ----A---- C:\WINDOWS\system32\MitigationClient.dll
2023-05-27 15:55:57 ----A---- C:\WINDOWS\system32\mssecuser.dll
2023-05-27 15:55:57 ----A---- C:\WINDOWS\system32\drivers\mssecflt.sys
2023-05-27 15:55:56 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2023-05-27 15:55:55 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2023-05-27 15:55:55 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2023-05-27 15:55:55 ----A---- C:\WINDOWS\system32\drivers\hidspi.sys
2023-05-27 15:55:55 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2023-05-27 15:55:55 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2023-05-27 15:55:54 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2023-05-27 15:55:54 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2023-05-27 15:22:51 ----HD---- C:\$WinREAgent
2023-05-27 15:21:26 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2023-05-27 15:21:25 ----A---- C:\WINDOWS\system32\poqexec.exe
2023-05-12 17:56:09 ----A---- C:\WINDOWS\SYSWOW64\ConsoleLogon.dll
2023-05-12 17:56:09 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2023-05-12 17:56:07 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2023-05-12 17:55:52 ----A---- C:\WINDOWS\SYSWOW64\quickassist.exe
2023-05-12 17:55:51 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2023-05-12 17:55:51 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2023-05-12 17:55:48 ----A---- C:\WINDOWS\system32\mfsvr.dll
2023-05-12 17:55:31 ----A---- C:\WINDOWS\SYSWOW64\sqlsrv32.dll
2023-05-12 17:55:31 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2023-05-12 17:55:31 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2023-05-12 17:55:31 ----A---- C:\WINDOWS\SYSWOW64\iemigplugin.dll
2023-05-12 17:55:31 ----A---- C:\WINDOWS\SYSWOW64\CheckNetIsolation.exe
2023-05-12 17:55:31 ----A---- C:\WINDOWS\SYSWOW64\fwcfg.dll
2023-05-12 17:55:31 ----A---- C:\WINDOWS\SYSWOW64\authfwcfg.dll
2023-05-12 17:55:30 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2023-05-12 17:55:30 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2023-05-12 17:55:28 ----A---- C:\WINDOWS\SYSWOW64\imapi.dll
2023-05-12 17:55:28 ----A---- C:\WINDOWS\SYSWOW64\cleanmgr.exe
2023-05-12 17:55:27 ----A---- C:\WINDOWS\SYSWOW64\wsecedit.dll
2023-05-12 17:55:27 ----A---- C:\WINDOWS\SYSWOW64\smphost.dll
2023-05-12 17:55:27 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2023-05-12 17:55:25 ----A---- C:\WINDOWS\system32\termsrv.dll
2023-05-12 17:55:25 ----A---- C:\WINDOWS\system32\rdsdwmdr.dll
2023-05-12 17:55:25 ----A---- C:\WINDOWS\system32\CXHProvisioningServer.dll
2023-05-12 17:55:24 ----A---- C:\WINDOWS\system32\SnippingTool.exe
2023-05-12 17:55:24 ----A---- C:\WINDOWS\system32\PktMonApi.dll
2023-05-12 17:55:24 ----A---- C:\WINDOWS\system32\PktMon.exe
2023-05-12 17:55:24 ----A---- C:\WINDOWS\system32\nltest.exe
2023-05-12 17:55:24 ----A---- C:\WINDOWS\system32\drivers\PktMon.sys
2023-05-12 17:55:23 ----A---- C:\WINDOWS\system32\rdpudd.dll
2023-05-12 17:55:23 ----A---- C:\WINDOWS\system32\rdpcredentialprovider.dll
2023-05-12 17:55:23 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2023-05-12 17:55:23 ----A---- C:\WINDOWS\system32\rdpcore.dll
2023-05-12 17:55:23 ----A---- C:\WINDOWS\system32\nshwfp.dll
2023-05-12 17:55:23 ----A---- C:\WINDOWS\system32\CheckNetIsolation.exe
2023-05-12 17:55:23 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2023-05-12 17:55:22 ----A---- C:\WINDOWS\system32\wshrm.dll
2023-05-12 17:55:22 ----A---- C:\WINDOWS\system32\sqlsrv32.dll
2023-05-12 17:55:22 ----A---- C:\WINDOWS\system32\mmc.exe
2023-05-12 17:55:22 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2023-05-12 17:55:22 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2023-05-12 17:55:22 ----A---- C:\WINDOWS\system32\fwcfg.dll
2023-05-12 17:55:22 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2023-05-12 17:55:22 ----A---- C:\WINDOWS\system32\authfwcfg.dll
2023-05-12 17:55:21 ----A---- C:\WINDOWS\system32\ieproxy.dll
2023-05-12 17:55:21 ----A---- C:\WINDOWS\system32\ieframe.dll
2023-05-12 17:55:19 ----A---- C:\WINDOWS\system32\StorageUsage.dll
2023-05-12 17:55:19 ----A---- C:\WINDOWS\system32\imapi.dll
2023-05-12 17:55:18 ----A---- C:\WINDOWS\system32\StorSvc.dll
2023-05-12 17:55:18 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2023-05-12 17:55:17 ----A---- C:\WINDOWS\system32\wsecedit.dll
2023-05-12 17:55:17 ----A---- C:\WINDOWS\system32\smphost.dll
2023-05-12 17:55:17 ----A---- C:\WINDOWS\system32\mispace.dll
2023-05-12 17:55:17 ----A---- C:\WINDOWS\system32\DAFESCL.dll
2023-05-12 17:55:15 ----A---- C:\WINDOWS\system32\sdshext.dll
2023-05-12 17:55:15 ----A---- C:\WINDOWS\system32\sdrsvc.dll
2023-05-12 17:55:15 ----A---- C:\WINDOWS\system32\sdengin2.dll
2023-05-12 17:55:15 ----A---- C:\WINDOWS\system32\sdclt.exe
2023-05-12 17:55:14 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2023-05-12 17:55:14 ----A---- C:\WINDOWS\SYSWOW64\scesrv.dll
2023-05-12 17:55:14 ----A---- C:\WINDOWS\SYSWOW64\scecli.dll
2023-05-12 17:55:14 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2023-05-12 17:55:14 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2023-05-12 17:55:14 ----A---- C:\WINDOWS\SYSWOW64\Print.PrintSupport.Source.dll
2023-05-12 17:55:14 ----A---- C:\WINDOWS\system32\SecureBootEncodeUEFI.exe
2023-05-12 17:55:13 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.Workflow.dll
2023-05-12 17:55:13 ----A---- C:\WINDOWS\SYSWOW64\PrintWorkflowService.dll
2023-05-12 17:55:13 ----A---- C:\WINDOWS\SYSWOW64\Print.Workflow.Source.dll
2023-05-12 17:55:13 ----A---- C:\WINDOWS\SYSWOW64\npmproxy.dll
2023-05-12 17:55:13 ----A---- C:\WINDOWS\SYSWOW64\nlmsprep.dll
2023-05-12 17:55:13 ----A---- C:\WINDOWS\SYSWOW64\nlmproxy.dll
2023-05-12 17:55:13 ----A---- C:\WINDOWS\SYSWOW64\netprovisionsp.dll
2023-05-12 17:55:13 ----A---- C:\WINDOWS\SYSWOW64\netprovfw.dll
2023-05-12 17:55:13 ----A---- C:\WINDOWS\SYSWOW64\netprofm.dll
2023-05-12 17:55:13 ----A---- C:\WINDOWS\SYSWOW64\netjoin.dll
2023-05-12 17:55:13 ----A---- C:\WINDOWS\SYSWOW64\joinutil.dll
2023-05-12 17:55:13 ----A---- C:\WINDOWS\SYSWOW64\joinproviderol.dll
2023-05-12 17:55:12 ----A---- C:\WINDOWS\SYSWOW64\userinitext.dll
2023-05-12 17:55:12 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2023-05-12 17:55:12 ----A---- C:\WINDOWS\SYSWOW64\AuthFWGP.dll
2023-05-12 17:54:53 ----A---- C:\WINDOWS\SYSWOW64\BitLockerCsp.dll
2023-05-12 17:54:53 ----A---- C:\WINDOWS\SYSWOW64\AuthFWWizFwk.dll
2023-05-12 17:54:53 ----A---- C:\WINDOWS\SYSWOW64\AuthFWSnapin.dll
2023-05-12 17:54:52 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2023-05-12 17:54:52 ----A---- C:\WINDOWS\SYSWOW64\weretw.dll
2023-05-12 17:54:52 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2023-05-12 17:54:52 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2023-05-12 17:54:52 ----A---- C:\WINDOWS\SYSWOW64\userinit.exe
2023-05-12 17:54:52 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2023-05-12 17:54:52 ----A---- C:\WINDOWS\SYSWOW64\offlinelsa.dll
2023-05-12 17:54:52 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2023-05-12 17:54:52 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2023-05-12 17:54:51 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2023-05-12 17:54:51 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2023-05-12 17:54:51 ----A---- C:\WINDOWS\SYSWOW64\shimeng.dll
2023-05-12 17:54:51 ----A---- C:\WINDOWS\SYSWOW64\sdbinst.exe
2023-05-12 17:54:51 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2023-05-12 17:54:51 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2023-05-12 17:54:51 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2023-05-12 17:54:51 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2023-05-12 17:54:51 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2023-05-12 17:54:50 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2023-05-12 17:54:49 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2023-05-12 17:54:49 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2023-05-12 17:54:49 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2023-05-12 17:54:49 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2023-05-12 17:54:49 ----A---- C:\WINDOWS\SYSWOW64\fwbase.dll
2023-05-12 17:54:49 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2023-05-12 17:54:49 ----A---- C:\WINDOWS\SYSWOW64\coreglobconfig.dll
2023-05-12 17:54:48 ----A---- C:\WINDOWS\SYSWOW64\webauthn.dll
2023-05-12 17:54:48 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2023-05-12 17:54:48 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2023-05-12 17:54:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Import.dll
2023-05-12 17:54:47 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountWAMExtension.dll
2023-05-12 17:54:47 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2023-05-12 17:54:47 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2023-05-12 17:54:46 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2023-05-12 17:54:46 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2023-05-12 17:54:46 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2023-05-12 17:54:45 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2023-05-12 17:54:45 ----A---- C:\WINDOWS\SYSWOW64\TpmCertResources.dll
2023-05-12 17:54:45 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2023-05-12 17:54:44 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_9.dll
2023-05-12 17:54:44 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2023-05-12 17:54:44 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2023-05-12 17:54:44 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2023-05-12 17:54:44 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2023-05-12 17:54:44 ----A---- C:\WINDOWS\system32\winlogonext.dll
2023-05-12 17:54:44 ----A---- C:\WINDOWS\system32\authui.dll
2023-05-12 17:54:43 ----A---- C:\WINDOWS\system32\usercpl.dll
2023-05-12 17:54:43 ----A---- C:\WINDOWS\system32\netplwiz.dll
2023-05-12 17:54:42 ----A---- C:\WINDOWS\system32\sstpsvc.dll
2023-05-12 17:54:42 ----A---- C:\WINDOWS\system32\scesrv.dll
2023-05-12 17:54:42 ----A---- C:\WINDOWS\system32\scecli.dll
2023-05-12 17:54:42 ----A---- C:\WINDOWS\system32\rastlsext.dll
2023-05-12 17:54:42 ----A---- C:\WINDOWS\system32\rastls.dll
2023-05-12 17:54:42 ----A---- C:\WINDOWS\system32\Print.PrintSupport.Source.dll
2023-05-12 17:54:41 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2023-05-12 17:54:41 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2023-05-12 17:54:41 ----A---- C:\WINDOWS\system32\PrintWorkflowService.dll
2023-05-12 17:54:41 ----A---- C:\WINDOWS\system32\Print.Workflow.Source.dll
2023-05-12 17:54:40 ----A---- C:\WINDOWS\system32\netprovisionsp.dll
2023-05-12 17:54:40 ----A---- C:\WINDOWS\system32\netprovfw.dll
2023-05-12 17:54:40 ----A---- C:\WINDOWS\system32\netjoin.dll
2023-05-12 17:54:40 ----A---- C:\WINDOWS\system32\joinutil.dll
2023-05-12 17:54:40 ----A---- C:\WINDOWS\system32\joinproviderol.dll
2023-05-12 17:54:39 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2023-05-12 17:54:38 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2023-05-12 17:54:21 ----A---- C:\WINDOWS\system32\userinitext.dll
2023-05-12 17:54:21 ----A---- C:\WINDOWS\system32\gdi32full.dll
2023-05-12 17:54:21 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2023-05-12 17:54:21 ----A---- C:\WINDOWS\system32\AuthFWWizFwk.dll
2023-05-12 17:54:21 ----A---- C:\WINDOWS\system32\AuthFWGP.dll
2023-05-12 17:54:20 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2023-05-12 17:54:20 ----A---- C:\WINDOWS\system32\efscore.dll
2023-05-12 17:54:20 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2023-05-12 17:54:20 ----A---- C:\WINDOWS\system32\AuthFWSnapin.dll
2023-05-12 17:54:19 ----A---- C:\WINDOWS\system32\shutdownux.dll
2023-05-12 17:54:19 ----A---- C:\WINDOWS\system32\policymanager.dll
2023-05-12 17:54:19 ----A---- C:\WINDOWS\system32\LogonController.dll
2023-05-12 17:54:19 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2023-05-12 17:54:19 ----A---- C:\WINDOWS\system32\configmanager2.dll
2023-05-12 17:54:18 ----A---- C:\WINDOWS\system32\winlogon.exe
2023-05-12 17:54:18 ----A---- C:\WINDOWS\system32\usermgr.dll
2023-05-12 17:54:18 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2023-05-12 17:54:18 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2023-05-12 17:54:18 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2023-05-12 17:54:17 ----A---- C:\WINDOWS\system32\netlogon.dll
2023-05-12 17:54:17 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2023-05-12 17:54:17 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2023-05-12 17:54:13 ----A---- C:\WINDOWS\system32\sechost.dll
2023-05-12 17:54:13 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2023-05-12 17:54:13 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2023-05-12 17:54:13 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2023-05-12 17:54:11 ----A---- C:\WINDOWS\system32\wermgr.exe
2023-05-12 17:54:11 ----A---- C:\WINDOWS\system32\weretw.dll
2023-05-12 17:54:11 ----A---- C:\WINDOWS\system32\werdiagcontroller.dll
2023-05-12 17:54:11 ----A---- C:\WINDOWS\system32\wer.dll
2023-05-12 17:54:10 ----A---- C:\WINDOWS\system32\userinit.exe
2023-05-12 17:54:10 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2023-05-12 17:54:09 ----A---- C:\WINDOWS\system32\tzres.dll
2023-05-12 17:54:09 ----A---- C:\WINDOWS\system32\profsvc.dll
2023-05-12 17:54:09 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2023-05-12 17:54:09 ----A---- C:\WINDOWS\system32\dcntel.dll
2023-05-12 17:54:09 ----A---- C:\WINDOWS\system32\crypt32.dll
2023-05-12 17:54:09 ----A---- C:\WINDOWS\system32\authz.dll
2023-05-12 17:54:08 ----A---- C:\WINDOWS\system32\dcomp.dll
2023-05-12 17:54:05 ----A---- C:\WINDOWS\system32\ole32.dll
2023-05-12 17:54:05 ----A---- C:\WINDOWS\system32\dwmcore.dll
2023-05-12 17:54:05 ----A---- C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2023-05-12 17:54:04 ----A---- C:\WINDOWS\system32\winresume.exe
2023-05-12 17:54:03 ----A---- C:\WINDOWS\system32\uReFS.dll
2023-05-12 17:54:03 ----A---- C:\WINDOWS\system32\refsutil.exe
2023-05-12 17:54:03 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2023-05-12 17:54:02 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2023-05-12 17:54:02 ----A---- C:\WINDOWS\system32\shimeng.dll
2023-05-12 17:54:02 ----A---- C:\WINDOWS\system32\SettingsHandlers_Region.dll
2023-05-12 17:54:02 ----A---- C:\WINDOWS\system32\SettingsHandlers_Language.dll
2023-05-12 17:54:02 ----A---- C:\WINDOWS\system32\SettingsHandlers_Display.dll
2023-05-12 17:54:02 ----A---- C:\WINDOWS\system32\sdbinst.exe
2023-05-12 17:54:02 ----A---- C:\WINDOWS\system32\InputCloudStore.dll
2023-05-12 17:54:02 ----A---- C:\WINDOWS\system32\apphelp.dll
2023-05-12 17:54:01 ----A---- C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
2023-05-12 17:54:01 ----A---- C:\WINDOWS\system32\QuietHours.dll
2023-05-12 17:54:01 ----A---- C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2023-05-12 17:54:00 ----A---- C:\WINDOWS\system32\SettingsHandlers_User.dll
2023-05-12 17:53:59 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2023-05-12 17:53:59 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2023-05-12 17:53:59 ----A---- C:\WINDOWS\system32\MusNotification.exe
2023-05-12 17:53:58 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2023-05-12 17:53:58 ----A---- C:\WINDOWS\system32\wci.dll
2023-05-12 17:53:58 ----A---- C:\WINDOWS\system32\drivers\wcifs.sys
2023-05-12 17:53:58 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2023-05-12 17:53:57 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2023-05-12 17:53:57 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2023-05-12 17:53:57 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2023-05-12 17:53:57 ----A---- C:\WINDOWS\system32\fwbase.dll
2023-05-12 17:53:57 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2023-05-12 17:53:57 ----A---- C:\WINDOWS\system32\BFE.DLL
2023-05-12 17:53:56 ----A---- C:\WINDOWS\system32\wfapigp.dll
2023-05-12 17:53:56 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2023-05-12 17:53:56 ----A---- C:\WINDOWS\system32\icfupgd.dll
2023-05-12 17:53:56 ----A---- C:\WINDOWS\system32\fwmdmcsp.dll
2023-05-12 17:53:56 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2023-05-12 17:53:42 ----A---- C:\WINDOWS\system32\wintrust.dll
2023-05-12 17:53:42 ----A---- C:\WINDOWS\system32\webauthn.dll
2023-05-12 17:53:42 ----A---- C:\WINDOWS\system32\coreglobconfig.dll
2023-05-12 17:53:40 ----A---- C:\WINDOWS\system32\gdi32.dll
2023-05-12 17:53:40 ----A---- C:\WINDOWS\system32\d3d11.dll
2023-05-12 17:53:31 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2023-05-12 17:53:31 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2023-05-12 17:53:31 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2023-05-12 17:53:31 ----A---- C:\WINDOWS\system32\cdd.dll
2023-05-12 17:53:30 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2023-05-12 17:53:27 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2023-05-12 17:53:27 ----A---- C:\WINDOWS\system32\Windows.Media.Import.dll
2023-05-12 17:53:27 ----A---- C:\WINDOWS\system32\VaultCDS.dll
2023-05-12 17:53:27 ----A---- C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2023-05-12 17:53:27 ----A---- C:\WINDOWS\system32\aadtb.dll
2023-05-12 17:53:25 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2023-05-12 17:53:25 ----A---- C:\WINDOWS\system32\cdprt.dll
2023-05-12 17:53:24 ----A---- C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2023-05-12 17:53:24 ----A---- C:\WINDOWS\system32\WiFiCloudStore.dll
2023-05-12 17:53:24 ----A---- C:\WINDOWS\system32\StartTileData.dll
2023-05-12 17:53:23 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2023-05-12 17:53:23 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2023-05-12 17:53:23 ----A---- C:\WINDOWS\system32\TpmCertResources.dll
2023-05-12 17:53:23 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2023-05-12 17:53:23 ----A---- C:\WINDOWS\system32\advapi32.dll
2023-05-12 17:53:22 ----A---- C:\WINDOWS\system32\Windows.Internal.Signals.dll
2023-05-12 17:53:22 ----A---- C:\WINDOWS\system32\win32spl.dll
2023-05-12 17:53:22 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2023-05-12 17:53:22 ----A---- C:\WINDOWS\system32\SettingSync.dll
2023-05-12 17:53:22 ----A---- C:\WINDOWS\system32\PinEnrollmentHelper.dll
2023-05-12 17:53:22 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2023-05-12 17:53:21 ----A---- C:\WINDOWS\system32\XAudio2_9.dll
2023-05-12 17:53:21 ----A---- C:\WINDOWS\system32\ManageCI.dll
2023-05-12 17:53:21 ----A---- C:\WINDOWS\system32\HrtfApo.dll
2023-05-12 17:53:21 ----A---- C:\WINDOWS\system32\deviceregistration.dll
2023-05-12 17:52:57 ----A---- C:\WINDOWS\system32\iscsilog.dll
2023-05-12 17:52:57 ----A---- C:\WINDOWS\system32\drivers\storufs.sys
2023-05-12 17:52:57 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2023-05-12 17:52:57 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2023-05-12 17:52:57 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2023-05-12 17:52:57 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2023-05-12 17:52:57 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2023-05-12 15:40:57 ----A---- C:\WINDOWS\system32\aswBoot.exe
2023-05-12 15:40:56 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys

======List of files/folders modified in the last 1 month======

2023-06-03 16:29:05 ----D---- C:\WINDOWS\Temp
2023-06-03 16:24:43 ----RD---- C:\WINDOWS\Microsoft.NET
2023-06-03 16:22:59 ----D---- C:\WINDOWS\Logs
2023-06-03 16:15:52 ----SHD---- C:\System Volume Information
2023-06-03 16:14:19 ----D---- C:\WINDOWS\Prefetch
2023-06-03 16:13:51 ----D---- C:\Users\Brožovi\AppData\Roaming\BSplayer
2023-06-03 16:12:30 ----D---- C:\Program Files (x86)\Webteh
2023-06-03 16:10:47 ----D---- C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-06-03 16:06:00 ----RD---- C:\Program Files
2023-06-03 16:00:43 ----HD---- C:\ProgramData
2023-06-03 16:00:29 ----D---- C:\Windows
2023-06-03 15:58:39 ----D---- C:\WINDOWS\Tasks
2023-06-03 15:58:39 ----D---- C:\WINDOWS\system32\Tasks
2023-06-03 15:51:31 ----D---- C:\Program Files (x86)\Google
2023-06-03 15:50:01 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2023-06-03 15:48:44 ----D---- C:\ProgramData\AVAST Software
2023-06-03 15:48:33 ----ASH---- C:\DumpStack.log.tmp
2023-06-03 15:47:52 ----D---- C:\WINDOWS\system32\sru
2023-06-03 15:43:27 ----SHD---- C:\WINDOWS\Installer
2023-06-03 15:43:26 ----D---- C:\Program Files (x86)\Nero
2023-06-03 15:42:02 ----RD---- C:\Program Files (x86)
2023-06-03 14:07:24 ----D---- C:\WINDOWS\SoftwareDistribution
2023-06-03 14:04:23 ----D---- C:\WINDOWS\system32\catroot2
2023-06-03 13:47:52 ----D---- C:\WINDOWS\INF
2023-06-03 11:43:11 ----D---- C:\WINDOWS\system32\SleepStudy
2023-06-03 11:09:18 ----D---- C:\WINDOWS\system32\config
2023-06-03 11:03:33 ----D---- C:\WINDOWS\AppReadiness
2023-06-03 11:03:24 ----HD---- C:\Program Files\WindowsApps
2023-06-03 10:57:48 ----D---- C:\WINDOWS\WinSxS
2023-06-03 10:06:50 ----D---- C:\WINDOWS\system32\LogFiles
2023-06-02 21:44:19 ----D---- C:\WINDOWS\system32\drivers
2023-06-02 18:16:11 ----D---- C:\WINDOWS\CbsTemp
2023-06-02 17:32:31 ----HD---- C:\WINDOWS\ELAMBKUP
2023-06-02 17:30:42 ----D---- C:\ProgramData\Malwarebytes
2023-06-02 17:30:42 ----D---- C:\Program Files\Malwarebytes
2023-06-02 17:30:22 ----D---- C:\WINDOWS\SYSWOW64\drivers
2023-06-02 17:19:12 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2023-06-02 17:19:12 ----D---- C:\Program Files (x86)\Mozilla Firefox
2023-06-02 16:19:48 ----D---- C:\WINDOWS\SystemTemp
2023-06-02 16:08:37 ----D---- C:\WINDOWS\System32
2023-06-02 16:08:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2023-05-27 16:11:55 ----D---- C:\WINDOWS\system32\DriverStore
2023-05-27 16:08:35 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2023-05-27 16:08:35 ----D---- C:\WINDOWS\SYSWOW64\sppui
2023-05-27 16:08:35 ----D---- C:\WINDOWS\SYSWOW64\nl-NL
2023-05-27 16:08:35 ----D---- C:\WINDOWS\SYSWOW64\migration
2023-05-27 16:08:35 ----D---- C:\WINDOWS\SysWOW64
2023-05-27 16:08:34 ----D---- C:\WINDOWS\SystemResources
2023-05-27 16:08:32 ----D---- C:\WINDOWS\system32\WinMetadata
2023-05-27 16:08:32 ----D---- C:\WINDOWS\system32\wbem
2023-05-27 16:08:32 ----D---- C:\WINDOWS\system32\sppui
2023-05-27 16:08:32 ----D---- C:\WINDOWS\system32\oobe
2023-05-27 16:08:32 ----D---- C:\WINDOWS\system32\nl-NL
2023-05-27 16:08:32 ----D---- C:\WINDOWS\system32\migwiz
2023-05-27 16:08:32 ----D---- C:\WINDOWS\system32\migration
2023-05-27 16:08:32 ----D---- C:\WINDOWS\system32\fr-FR
2023-05-27 16:08:32 ----D---- C:\WINDOWS\system32\fr-CA
2023-05-27 16:08:32 ----D---- C:\WINDOWS\system32\cs-CZ
2023-05-27 16:08:31 ----D---- C:\WINDOWS\system32\Boot
2023-05-27 16:08:26 ----D---- C:\WINDOWS\ShellExperiences
2023-05-27 16:08:25 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2023-05-27 16:08:25 ----D---- C:\WINDOWS\bcastdvr
2023-05-27 16:08:25 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2023-05-27 16:08:25 ----D---- C:\Program Files\Internet Explorer
2023-05-27 16:08:18 ----D---- C:\WINDOWS\system32\drivers\UMDF
2023-05-27 15:55:56 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2023-05-12 18:35:27 ----D---- C:\WINDOWS\debug
2023-05-12 18:07:30 ----D---- C:\WINDOWS\system32\CatRoot
2023-05-12 18:05:44 ----D---- C:\WINDOWS\SYSWOW64\wbem
2023-05-12 18:05:44 ----D---- C:\WINDOWS\SYSWOW64\drivers\cs-CZ
2023-05-12 18:05:44 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2023-05-12 18:05:44 ----D---- C:\WINDOWS\SYSWOW64\cs
2023-05-12 18:05:39 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2023-05-12 18:05:39 ----D---- C:\WINDOWS\system32\en-US
2023-05-12 18:05:39 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2023-05-12 18:05:39 ----D---- C:\WINDOWS\system32\cs
2023-05-12 18:05:36 ----D---- C:\WINDOWS\apppatch
2023-05-12 18:05:36 ----D---- C:\Program Files (x86)\Internet Explorer
2023-05-12 18:05:32 ----D---- C:\WINDOWS\system32\CodeIntegrity
2023-05-12 16:58:03 ----D---- C:\WINDOWS\system32\Logs
2023-05-12 16:58:02 ----D---- C:\Program Files\Microsoft Update Health Tools
2023-05-12 16:57:36 ----D---- C:\WINDOWS\system32\MRT
2023-05-12 15:48:59 ----AC---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2021-06-01 85704]
R0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2021-06-01 43720]
R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2023-05-12 31360]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2023-05-12 297824]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2023-05-12 95904]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2022-10-15 25576]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2023-05-12 80408]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2023-05-12 319552]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2021-06-12 57168]
R0 MsSecCore;@%SystemRoot%\System32\Drivers\msseccore.sys,-1001; C:\WINDOWS\system32\drivers\msseccore.sys [2023-04-07 26480]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2022-08-02 44032]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2023-05-12 235880]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2023-05-12 391800]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2023-05-12 39592]
R1 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2023-05-12 270472]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2023-05-12 556104]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2023-05-12 105232]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2023-05-12 942936]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2023-05-12 703280]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 78136]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2023-02-20 95232]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8704]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 APXACC;@oem41.inf,%APPEX_ACC_SERVICE_NAME%;AppEx Networks Accelerator LWF; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [2015-04-03 229056]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2023-05-12 212672]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2023-01-25 145760]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2023-02-20 493056]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2020-11-15 53248]
R3 amdfendr;@oem32.inf,%AMDFENDR_svcdesc%;AMD Crash Defender Driver; C:\WINDOWS\system32\DRIVERS\amdfendr.sys [2021-03-25 116432]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-08-09 21631512]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-08-09 673816]
R3 AMDXE;@oem31.inf,%AMDXE.SVCDESC%;AMD Link Controller Emulation; C:\WINDOWS\System32\drivers\amdxe.sys [2020-07-27 62056]
R3 asmthub3;@oem37.inf,%asmthub3_ServiceDescription%;ASMedia USB3.1 Hub Service; C:\WINDOWS\System32\drivers\asmthub3.sys [2021-05-25 160936]
R3 asmtxhci;@oem36.inf,%asmtxhci_ServiceDescription%;ASMedia XHCI Service; C:\WINDOWS\System32\drivers\asmtxhci.sys [2021-05-25 483504]
R3 AtiHDAudioService;@oem16.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2021-11-01 246176]
R3 dtlitescsibus;@oem5.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2018-03-12 30264]
R3 dtliteusbbus;@oem17.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2018-03-12 47672]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2021-09-29 6530600]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2020-11-15 322376]
S0 amdkmafd;@oem39.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmafd.sys [2015-06-03 31992]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-12-07 43832]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-12-07 319800]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 884752]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 172344]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 124216]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 135992]
S0 MbamElam;MbamElam; C:\WINDOWS\system32\DRIVERS\MbamElam.sys [2023-06-02 21480]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 81720]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 105480]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-12-07 168464]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 58680]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 68408]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2022-09-03 142176]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 42296]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 23040]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2022-01-28 694272]
S3 amdgpio2;@amdgpio2.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-12-07 18432]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-12-07 45568]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2023-02-25 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2023-02-25 144768]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2023-02-25 178224]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2023-02-25 158768]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-12-07 279040]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2023-05-12 113664]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2020-11-15 106496]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2023-05-12 45568]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2023-05-12 1565696]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2023-05-12 110592]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 44032]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 66576]
S3 dg_ssudbus;@oem7.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [2020-11-11 159600]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [2019-12-07 23040]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 55824]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2023-05-27 104448]
S3 HidSpiCx;HidSpi KMDF Class Extension; C:\WINDOWS\system32\drivers\HidSpiCx.sys [2023-05-27 98304]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2023-03-19 96112]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 30208]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-12-07 1853752]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-12-07 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-12-07 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-12-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-12-07 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-12-07 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-12-07 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-12-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-12-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-12-07 558904]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2020-11-15 47104]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 30720]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 59704]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 537608]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 64016]
S3 MBAMSwissArmy;MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [2023-06-02 239544]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2022-04-03 386048]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 65024]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-12-07 1131320]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2023-05-27 351104]
S3 MsSecWfp;@%SystemRoot%\System32\Drivers\mssecwfp.sys,-1001; C:\WINDOWS\system32\drivers\mssecwfp.sys [2023-04-07 29568]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-12-07 146232]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-12-07 72720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2022-04-03 210944]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2023-05-12 131400]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 27136]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2022-01-14 990536]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 213504]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 115712]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2019-12-07 35128]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2023-04-03 173040]
R2 AMD Crash Defender Service;AMD Crash Defender Service; C:\WINDOWS\system32\amdfendrsr.exe [2021-03-25 517560]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-08-09 255512]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [2015-08-04 344064]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2023-05-12 584600]
R2 avast! Tools;Avast Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2023-05-12 585112]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2021-05-26 56912]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
R2 CDPUserSvc_5563c;Uživatelská služba platformy připojených zařízení_5563c; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
R2 DriverUpdSvc;Avast Driver Updater; C:\Program Files\Avast Software\Driver Updater\DriverUpdSvc.exe [2023-05-06 9007000]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2018-07-19 794904]
R2 NeroBackItUpBackgroundService2019;Nero BackItUp Background Service 2019; C:\Program Files (x86)\Nero\Nero 2019\Nero BackItUp\NBService.exe [2019-04-09 287000]
R2 OneSyncSvc_5563c;Hostitel synchronizace_5563c; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
R3 AarSvc_5563c;Agent Activation Runtime_5563c; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2023-06-02 8822680]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
R3 cbdhsvc_5563c;Uživatelská služba schránky_5563c; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
R3 CCleanerPerformanceOptimizerService;CCleaner Performance Optimizer Service; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [2023-05-12 1063840]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2018-03-07 3480720]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
R3 PimIndexMaintenanceSvc_5563c;Data kontaktů_5563c; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-13 224160]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-08-05 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 BcastDVRUserService_5563c;Uživatelská služba pro GameDVR a vysílání her_5563c; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 BluetoothUserService_5563c;Služba pro podporu uživatelů Bluetooth_5563c; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 CaptureService_5563c;CaptureService_5563c; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 cloudidsvc;@%SystemRoot%\system32\cloudidsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 ConsentUxUserSvc_5563c;ConsentUX_5563c; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-09-25 382696]
S3 CredentialEnrollmentManagerUserSvc_5563c;CredentialEnrollmentManagerUserSvc_5563c; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-09-25 382696]
S3 dcsvc;@%systemroot%\system32\dcsvc,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 DeviceAssociationBrokerSvc_5563c;DeviceAssociationBroker_5563c; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 DevicePickerUserSvc_5563c;DevicePicker_5563c; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 DevicesFlowUserSvc_5563c;Tok zařízení_5563c; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2022-01-14 94208]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
S3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-13 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-11-08 46184]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
S3 GoogleChromeElevationService;Google Chrome Elevation Service (GoogleChromeElevationService); C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.90\elevation_service.exe [2023-05-27 1418520]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-08-05 153168]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [2023-06-02 9255384]
S3 McpManagementService;@%SystemRoot%\system32\McpManagementService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 MessagingService_5563c;Služba zasílání zpráv_5563c; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service (MicrosoftEdgeElevationService); C:\Program Files (x86)\Microsoft\Edge\Application\114.0.1823.37\elevation_service.exe [2023-06-02 1744320]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2023-06-02 224160]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2021-01-16 106496]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 PrintWorkflowUserSvc_5563c;PrintWorkflow_5563c; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2022-08-01 55320]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2023-02-25 777104]
S4 DialogBlockingService;@%SystemRoot%\system32\DialogBlockingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2022-08-01 55320]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventivní kontrola

#3 Příspěvek od Rudy »

Zdravím!

Otevřte poznámkový blok a zkopírujte do něj:
Start
CloseProcesses:
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {75981FF7-80DC-4DDA-A5DF-029324DBDF8C} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {329067A3-7D7D-4329-AD82-B97A2461CA1A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-05] (Google Inc -> Google Inc.)
Task: {A03D0ADD-7B83-4CF1-A3AC-C3CD3E8EE348} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-05] (Google Inc -> Google Inc.)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\DumpStack.log.tmp

EmptyTemp:
End
Uložte do C:\Users\Brožovi\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

notitle
Návštěvník
Návštěvník
Příspěvky: 68
Registrován: 22 pro 2010 20:12

Re: Preventivní kontrola

#4 Příspěvek od notitle »

Kód: Vybrat vše

Fix result of Farbar Recovery Scan Tool (x64) Version: 29-05-2023
Ran by Brožovi (04-06-2023 22:56:41) Run:1
Running from C:\Users\Brožovi\Downloads
Loaded Profiles: Brožovi
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {75981FF7-80DC-4DDA-A5DF-029324DBDF8C} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {329067A3-7D7D-4329-AD82-B97A2461CA1A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-05] (Google Inc -> Google Inc.)
Task: {A03D0ADD-7B83-4CF1-A3AC-C3CD3E8EE348} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-05] (Google Inc -> Google Inc.)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\DumpStack.log.tmp

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION => restored successfully
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION => restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{75981FF7-80DC-4DDA-A5DF-029324DBDF8C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75981FF7-80DC-4DDA-A5DF-029324DBDF8C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{329067A3-7D7D-4329-AD82-B97A2461CA1A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{329067A3-7D7D-4329-AD82-B97A2461CA1A}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A03D0ADD-7B83-4CF1-A3AC-C3CD3E8EE348}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A03D0ADD-7B83-4CF1-A3AC-C3CD3E8EE348}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 18125116 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 0 B
Edge => 2551911 B
Chrome => 184320 B
Firefox => 55814678 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 6656 B
LocalService => 10544 B
NetworkService => 10544 B
Brožovi => 7838779 B

RecycleBin => 0 B
EmptyTemp: => 80.7 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 04-06-2023 22:59:01)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 22:59:01 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventivní kontrola

#5 Příspěvek od Rudy »

Snazáno, log již vypadá OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

notitle
Návštěvník
Návštěvník
Příspěvky: 68
Registrován: 22 pro 2010 20:12

Re: Preventivní kontrola

#6 Příspěvek od notitle »

Děkuji

Můžete :lock:

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventivní kontrola

#7 Příspěvek od Rudy »

OK, nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno