Dobrý den.
Poprosil bych o preventivku. Hlásí mi to cosi o run.vbs. Předem děkuji.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-12-2023
Ran by User (administrator) on RADEK-PC (MSI MS-7721) (29-12-2023 08:53:21)
Running from C:\Users\User\Desktop\FRST64.exe
Loaded Profiles: User
Platform: Microsoft Windows 10 Home Version 22H2 19045.3803 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <3>
(C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(explorer.exe ->) () [File not signed] C:\Program Files (x86)\Launchy\Launchy.exe
(explorer.exe ->) () [File not signed] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\ElsoftTray.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\23.246.1127.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [417176 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4374376 2023-07-28] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\Run: [MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854280 2023-12-21] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [117248 2018-07-19] (pdfforge GmbH) [File not signed]
HKLM\...\Print\Monitors\us008 Langmon: C:\WINDOWS\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\120.0.6099.130\Installer\chrmstp.exe [2023-12-27] (Google LLC -> Google LLC)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Launchy.lnk [2018-07-19]
ShortcutTarget: Launchy.lnk -> C:\Program Files (x86)\Launchy\Launchy.exe () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ElsoftTray.exe [2012-07-06] () [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {9EBB662D-7A7F-43A6-B7CD-FE725F3A172F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {A4A5A227-4317-4B29-8084-40DB78BA3BA1} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5094808 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
Task: {819F8E66-E21D-419C-889F-0E5410285C4E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-12-28] (Avast Software s.r.o. -> Avast Software)
Task: {4AA9BD67-1F44-4103-BBFC-41C6F6C28275} - System32\Tasks\G2MUpdateTask-S-1-5-21-402010934-1184996246-2506667057-1001 => C:\Users\User\AppData\Local\GoToMeeting\19950\g2mupdate.exe [33456 2022-04-21] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {BD42CF62-60BA-4328-955F-8EE5969B4397} - System32\Tasks\G2MUploadTask-S-1-5-21-402010934-1184996246-2506667057-1001 => C:\Users\User\AppData\Local\GoToMeeting\19950\g2mupload.exe [33456 2022-04-21] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {F36C32F6-E01C-42F5-B8D7-13F8A1287B88} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-19] (Google Inc -> Google Inc.)
Task: {0C7FCAB5-F480-495D-BCA0-9D96E704FEC9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-19] (Google Inc -> Google Inc.)
Task: {877745AB-6F8E-4131-AEFD-9D60B76EA1BD} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => %windir%\system32\EOSNotify.exe (No File)
Task: {AFD177AC-22BF-4429-AE12-10134A95F9FA} - System32\Tasks\nBackup => run.vbs (No File)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-402010934-1184996246-2506667057-1001.job => C:\Users\User\AppData\Local\GoToMeeting\19950\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-402010934-1184996246-2506667057-1001.job => C:\Users\User\AppData\Local\GoToMeeting\19950\g2mupload.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b36844f9-0b6d-4b2d-9744-002b8d5f08c5}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{d1fbc0a9-2813-4433-bece-010e9ed26abf}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-29]
Edge Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-29]
Edge Extension: (Edge relevant text changes) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-11-30]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-11-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Profile 2
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2023-11-18]
CHR Notifications: Default -> hxxps://meet.google.com
CHR Extension: (Nordic Forest) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\amekpplpfocpmaimnmgfjoibodpjedie [2023-07-15]
CHR Extension: (uBlock Origin) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-11-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-05-11]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-11-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-17]
CHR Extension: (Under The Leaf) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ighhdikapddjihgaphbnbcgipafcamjk [2022-12-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-15]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-12-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-16]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-12-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-29]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2023-12-23]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [9065880 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [753048 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1157528 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
S3 DialComService; C:\Program Files (x86)\DIAL GmbH\DIAL Communication Framework\DialComService.exe [2183440 2014-12-10] (DIAL -> DIAL GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31528 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [243136 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [394008 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297984 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [96064 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [26616 2023-12-28] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39752 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [276848 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [561888 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105352 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80528 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [952856 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [711664 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [213296 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319672 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 clwvd9; C:\WINDOWS\System32\drivers\clwvd9.sys [60984 2019-09-08] (CyberLink Corp. -> CyberLink Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55856 2023-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [594304 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-12-29 08:53 - 2023-12-29 08:54 - 000016067 _____ C:\Users\User\Desktop\FRST.txt
2023-12-29 08:52 - 2023-12-29 08:54 - 000000000 ____D C:\FRST
2023-12-29 08:49 - 2023-12-29 08:49 - 002387456 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2023-12-29 08:38 - 2023-12-29 08:38 - 000000000 ___HD C:\OneDriveTemp
2023-12-29 08:24 - 2023-12-29 08:24 - 000000000 ___HD C:\$AV_ASW
2023-12-28 21:14 - 2023-12-28 21:14 - 000000000 ____D C:\Users\User\AppData\Local\Avast Software
2023-12-28 21:12 - 2023-12-28 21:12 - 000000000 ____D C:\Users\User\AppData\Roaming\Avast Software
2023-12-28 21:11 - 2023-12-28 21:11 - 000002120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2023-12-28 21:11 - 2023-12-28 21:11 - 000002108 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2023-12-28 21:09 - 2023-12-28 21:09 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-12-28 21:09 - 2023-12-28 21:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-12-28 21:08 - 2023-12-28 21:08 - 000314264 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-12-28 21:08 - 2023-12-28 21:08 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2023-12-28 21:07 - 2023-12-28 21:07 - 000000000 ____D C:\Program Files\Avast Software
2023-12-28 21:06 - 2023-12-29 08:36 - 000000000 ____D C:\ProgramData\Avast Software
2023-12-28 21:06 - 2023-12-28 21:06 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll
2023-12-14 18:47 - 2023-12-14 18:47 - 000000000 ____D C:\Users\User\AppData\Local\Backup
2023-12-13 20:02 - 2023-12-13 20:03 - 000000000 ____D C:\WINDOWS\InboxApps
2023-12-13 17:12 - 2023-12-13 17:12 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-12-13 16:19 - 2023-12-13 16:19 - 000000000 ___HD C:\$WinREAgent
2023-12-07 16:46 - 2023-12-07 16:46 - 000042621 _____ C:\Users\User\Downloads\zaloha202312_pisek_8161001.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-12-29 08:42 - 2018-07-19 19:28 - 000000000 ____D C:\Users\User\AppData\Local\VirtualStore
2023-12-29 08:38 - 2021-12-21 23:44 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-12-29 08:38 - 2018-07-19 19:33 - 000000000 ____D C:\Program Files (x86)\Google
2023-12-29 08:38 - 2018-07-19 19:30 - 000000000 ___RD C:\Users\User\OneDrive
2023-12-29 08:36 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-29 08:35 - 2020-09-21 10:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-12-29 08:35 - 2020-09-21 09:48 - 000008192 ___SH C:\DumpStack.log.tmp
2023-12-29 08:33 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-12-29 08:33 - 2018-07-20 00:51 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2023-12-29 08:24 - 2018-07-19 20:33 - 000000000 ____D C:\Users\nBackup
2023-12-28 21:55 - 2020-09-21 09:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-12-28 21:36 - 2018-07-19 19:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2023-12-28 21:36 - 2018-07-19 19:35 - 000000000 ____D C:\Program Files\7-Zip
2023-12-28 21:08 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-12-27 20:43 - 2020-02-21 16:59 - 000000000 ____D C:\Users\User\AppData\Roaming\GoPanda2
2023-12-27 08:55 - 2018-07-19 19:34 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-12-25 18:39 - 2019-02-27 13:21 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc
2023-12-24 18:18 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-24 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-12-24 17:11 - 2020-06-09 12:07 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-24 17:11 - 2020-06-09 12:07 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-12-16 09:51 - 2020-09-21 10:03 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-12-16 09:51 - 2019-12-07 15:41 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2023-12-16 09:51 - 2019-12-07 15:41 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2023-12-16 09:51 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-12-14 18:26 - 2018-07-19 19:28 - 000000000 ____D C:\Users\User\AppData\Local\ConnectedDevicesPlatform
2023-12-13 22:41 - 2018-07-19 19:28 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-12-13 20:09 - 2018-07-19 19:28 - 000000000 ____D C:\Users\User\AppData\Local\Packages
2023-12-13 20:06 - 2020-09-21 09:48 - 000376784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-12-13 20:03 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2023-12-13 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-12-13 17:22 - 2019-12-07 15:44 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-12-13 17:22 - 2019-12-07 15:44 - 000020827 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2023-12-13 17:22 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-12-13 17:12 - 2020-09-21 09:51 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-12-12 15:58 - 2021-12-11 00:23 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-402010934-1184996246-2506667057-1001
2023-12-12 15:58 - 2020-09-21 10:08 - 000003362 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-402010934-1184996246-2506667057-1001
2023-12-12 15:58 - 2020-09-21 09:51 - 000002374 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-12-07 16:04 - 2018-07-20 00:59 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-12-07 16:03 - 2020-09-21 10:08 - 000003768 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-12-07 16:03 - 2020-09-21 10:08 - 000003644 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
==================== Files in the root of some directories ========
2021-03-03 19:16 - 2022-01-05 19:46 - 000000014 _____ () C:\Users\User\AppData\Roaming\obs-virtualcam.txt
2022-01-15 14:42 - 2022-01-15 14:42 - 000000218 _____ () C:\Users\User\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-12-2023
Ran by User (29-12-2023 08:55:55)
Running from C:\Users\User\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3803 (X64) (2020-09-21 09:09:17)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-402010934-1184996246-2506667057-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-402010934-1184996246-2506667057-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-402010934-1184996246-2506667057-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-402010934-1184996246-2506667057-501 - Limited - Disabled)
User (S-1-5-21-402010934-1184996246-2506667057-1001 - Administrator - Enabled) => C:\Users\User
WDAGUtilityAccount (S-1-5-21-402010934-1184996246-2506667057-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
7-Zip 23.01 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2301-000001000000}) (Version: 23.01.00.0 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 23.006.20380 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.12.6094 - Avast Software)
Catalyst Control Center - Branding (HKLM-x32\...\{11087D24-567D-7D88-69C6-D7A08B5F4C47}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
CEWE FOTOLAB fotosvet (HKLM-x32\...\CEWE FOTOLAB fotosvet) (Version: 7.1.4 - CEWE Stiftung u Co. KGaA)
CGoban (HKLM\...\{06648D2D-3B0D-3BE3-9466-C9BE616C6AAC}) (Version: 3.5.124 - Unknown)
DIAL Communication Framework (HKLM-x32\...\{562D0D31-FBAF-4505-8B27-4EC92EEA91D6}) (Version: 1.3.1.215 - DIAL GmbH)
DIAL Data Dispatcher (HKLM-x32\...\DIAL Data Dispatcher1.0) (Version: 1.0 - DIAL GmbH)
DIALux 4.13 (HKLM-x32\...\DIALux) (Version: 4.13.0.2 - DIAL GmbH)
Double Commander 0.7.5 beta (HKLM\...\Double Commander_is1) (Version: - )
Elektromotory - aplikace (HKLM-x32\...\Elektromotory - aplikace_is1) (Version: - Elektromotory - aplikace)
Elektrovýpočty Plus (HKLM-x32\...\Elektrovýpočty Plus_is1) (Version: - El soft)
Elsoft Tray (HKLM-x32\...\Elsoft Tray_is1) (Version: - Klimsa)
Google Chrome (HKLM\...\{6BE8C6A1-54E8-312E-A876-FF27463F3324}) (Version: 120.0.6099.130 - Google, Inc.)
GoPanda2 2.6.12 (HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\{e2f36056-c0db-5e0d-88c2-1e8cef3b389d}) (Version: 2.6.12 - Pandanet Inc.)
GoPanda2 2.8.1 (HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\e2f36056-c0db-5e0d-88c2-1e8cef3b389d) (Version: 2.8.1 - Pandanet Inc.)
GoTo Opener (HKLM-x32\...\{E69269DB-A77B-4BC1-8F39-241107B09F26}) (Version: 1.0.539 - LogMeIn, Inc.)
GoToMeeting 10.19.0.19950 (HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\GoToMeeting) (Version: 10.19.0.19950 - LogMeIn, Inc.)
IrfanView 4.51 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.51 - Irfan Skiljan)
Jištění kabelů (HKLM-x32\...\Jištění kabelů_is1) (Version: - El soft)
KlimsaZAKLAD (HKLM-x32\...\KlimsaZAKLAD_is1) (Version: - KLIMSA Software)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Launchy 2.5 (HKLM-x32\...\Launchy_21344213_is1) (Version: - Code Jelly)
LibreOffice 5.4.7.2 (HKLM\...\{26D12F93-E454-4637-9A5C-D52F6B4CC0DD}) (Version: 5.4.7.2 - The Document Foundation)
MaR SW (HKLM-x32\...\MaR SW_is1) (Version: - MaR SW)
Microsoft Access Runtime 2013 (HKLM\...\{90150000-001C-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Access Runtime 2013 (HKLM\...\Office15.AccessRT) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Access Runtime MUI (Czech) 2013 (HKLM\...\{90150000-001C-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 120.0.2210.91 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 120.0.2210.91 - Microsoft Corporation)
Microsoft Office 32-bit Components 2013 (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Czech) 2013 (HKLM\...\{90150000-00C1-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2013 (HKLM\...\{90150000-006E-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\OneDriveSetup.exe) (Version: 23.246.1127.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29325 (HKLM\...\{26AF0C35-55EC-4025-8D83-349E8FB1419F}) (Version: 14.28.29325 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29325 (HKLM\...\{7D0362D5-C699-4403-BC09-0C1DAD1D93AB}) (Version: 14.28.29325 - Microsoft Corporation) Hidden
nanoCAD 5.0 (HKLM-x32\...\{6D4250F7-DB33-4530-A9BD-A9D66BA34586}) (Version: 5.0.2520.2000 - Nanosoft)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.7 - Notepad++ Team)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.0.2 - OBS Project)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.2.2 - pdfforge GmbH)
POV-Ray for Windows v3.6.0 (HKLM-x32\...\POV-Ray for Windows v3.6) (Version: 3.6 - Persistence of Vision Raytracer Pty. Ltd.)
Skype verze 8.39 (HKLM-x32\...\Skype_is1) (Version: 8.39 - Skype Technologies S.A.)
Soudobost (HKLM-x32\...\Soudobost_is1) (Version: - KLIMSA Software)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.10 - Ghisler Software GmbH)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{A7B60FC9-A750-43C7-B7EC-892CD09147C7}) (Version: 1.18.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.3 - VideoLAN)
Vnější vlivy QUICK (HKLM-x32\...\Vnější vlivy QUICK_is1) (Version: - KLIMSA Software)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2023-11-16] ()
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.41.11.0_x64__kgqvnymyfvs32 [2023-12-14] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.258.100.0_x64__kgqvnymyfvs32 [2023-12-14] (king.com)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.20.5101.0_x64__8wekyb3d8bbwe [2023-12-16] (Microsoft Studios)
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2018-09-05] (Samsung Electronics Co. Ltd.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-18] (Microsoft Studios) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-402010934-1184996246-2506667057-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-402010934-1184996246-2506667057-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\User\AppData\Local\GoToMeeting\19228\G2MOutlookAddin64.dll => No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-12-28] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-12-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2018-06-30] (Notepad++ -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-12-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2017-10-19] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-12-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-12-28] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-07-19 19:36 - 2009-12-17 00:18 - 000233472 _____ () [File not signed] C:\Program Files (x86)\Launchy\imageformats\qmng4.dll
2018-07-19 19:36 - 2010-04-03 13:06 - 000081920 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\calcy.dll
2018-07-19 19:36 - 2010-04-03 13:05 - 000090112 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\controly.dll
2018-07-19 19:36 - 2010-04-03 13:06 - 000024064 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\gcalc.dll
2018-07-19 19:36 - 2010-04-03 13:06 - 000094208 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\runner.dll
2018-07-19 19:36 - 2010-04-03 13:05 - 000057344 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\verby.dll
2018-07-19 19:36 - 2010-04-03 13:05 - 000122880 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\weby.dll
2018-07-19 19:36 - 2009-12-16 21:54 - 002236416 _____ () [File not signed] C:\Program Files (x86)\Launchy\QtCore4.dll
2018-07-19 19:36 - 2009-12-16 22:13 - 008314880 _____ () [File not signed] C:\Program Files (x86)\Launchy\QtGui4.dll
2018-07-19 19:36 - 2009-12-16 21:56 - 000712704 _____ () [File not signed] C:\Program Files (x86)\Launchy\QtNetwork4.dll
2014-02-11 05:08 - 2014-02-11 05:08 - 000817152 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2015-11-04 15:43 - 2015-11-04 15:43 - 000214528 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2015-11-04 15:43 - 2015-11-04 15:43 - 000102400 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-02-11 05:08 - 2014-02-11 05:08 - 003650560 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2023-09-14 05:59 - 2023-09-14 05:59 - 000031232 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\A4.Foundation\481ffab5232d1254e92b4e2c4e470c3e\A4.Foundation.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\148c0b3431bb9eb8273207336081bfbe\AEM.Actions.CCAA.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\f1aa81cf97759f5d1d59fdfb7feaa8f9\AEM.Plugin.EEU.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\70f28493778d0e67698d628ea2376c7d\AEM.Plugin.Hotkeys.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.4adf1574#\a7e8bd90f01cc7c7fa877d7ed9f4abea\AEM.Plugin.Audio.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.54d8abe3#\9f9687c706d22a70fb676264dd5537d7\AEM.Plugin.DPPE.Shared.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000315904 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\97ff049e800c754353d5b00a9b1cfc0f\AEM.Plugin.Source.Kit.Server.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\88737cd3439e6057b1ff9b5f1391c801\AEM.Plugin.WinMessages.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\433707a9d103ea4e53f5ef91a9277dfa\AEM.Plugin.REG.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\d3cfaedfbc789efad9981d6e03aeb43f\AEM.Plugin.GD.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\78dcc26b1eb2c71c3bb7811d002813b3\AEM.Server.Shared.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000267776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server\39b1a2067dd59827c558f60f025d4e50\AEM.Server.ni.dll
2023-09-14 06:01 - 2023-09-14 06:01 - 000055808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Foundation\ce91c2f062d7a2c5bfaecf569c1620f3\APM.Foundation.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000122880 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ATICCCom\09a83f5026ac06a6d254117b19ee3b13\ATICCCom.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000203776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\e21ff9b83c6fc12617acab083cc2427b\CCC.Implementation.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.2042675f#\39e03391e163f59329c02f5b55cf225f\CLI.Aspect.CPUPStates.Fuel.Dashboard.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000128000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\e52f7c5a049d625afee950f00df092c5\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\b73b6d9a2470a21f03607799afe546b0\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2023-09-14 06:10 - 2023-09-14 06:10 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\794c62afbd28d58d01605fdbed27a264\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2023-09-14 06:07 - 2023-09-14 06:07 - 000107008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\beb1a4d88548e6332719b5a85b3ab6fb\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000209920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4542c692#\9f691579579636d4ce36d3e80c8ff402\CLI.Aspect.DeviceCRT.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.46819220#\599c6ff42b8e6b823d9ef3d54d11868f\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\c2c8e6fdddc1ea71823310a67d045af5\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000152576 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4ede500c#\8be42fd02a77b75a30ca150ceee16e4d\CLI.Aspect.DPPE.Fuel.Dashboard.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\f3f86b1537fd14618a789c833ca7a3c9\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2023-09-14 06:05 - 2023-09-14 06:05 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.59a12d95#\dd11a2ee1d66235180667750810df359\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000111616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.5a772e69#\099d0f5796264ef61aa1d558c7058f19\CLI.Aspect.Fets.Fuel.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000070656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.648b65fc#\25353301051de5cd62f982c9da97503b\CLI.Aspect.WiFi.Fuel.Dashboard.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\90d0b53f65741eab59303489cc2db276\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000364544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\16318c6925b33de6a1338d7c1bf1bad3\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000064000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\73e470460b2ef3e336a30798a3a738bf\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000677888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.846fa813#\6f5fae9759ba0e96767e2f1dbf7c7b3b\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000745984 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\de9e275c73d871c02188488ad0b28779\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000449536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\a7a0be71294c91b9bc7d4986fa8f90dd\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\bf40c069731935f46d124ce7327be077\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000158208 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a0ae52bc#\5481889ae3e4ea891c40d718630f3571\CLI.Aspect.DeviceLCD.Graphics.Shared.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\6e2f7051afedb7fa2d93a85e95082fa4\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000082944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\3cdbc26e44a99fb54d3259d7d83c3adf\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000462336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\f7b5ea3eb14b4a5dbe55edc4e1474329\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000086528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ae5e117c#\873924d0500d226cb383241446d97544\CLI.Aspect.DisplaysColour2.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000067072 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\0c93a0ff5217dcaa78b1ba21acd5ec20\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2023-09-14 06:07 - 2023-09-14 06:07 - 000023552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c2a2b491#\5043fac7dc9569f70527a70497269900\CLI.Aspect.WiFi.Fuel.Shared.ni.dll
2023-09-14 06:05 - 2023-09-14 06:05 - 000340992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\5b8b8621387c962ca46b8d5129e22897\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\eb456f0115c339383aafab61976657b4\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000081408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.caa5cc64#\3b9e4fae0d48b272409f5d35276287e4\CLI.Aspect.Fets.Fuel.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 001315840 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.d7e090dc#\f09ded1a9fc16b3048eaadc28e927dae\CLI.Aspect.User.Fuel.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000276480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\b86c1d1fc903e85bd73724dc2a6bcfa3\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 003313664 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\d64b6cdd350315abed8e3e587ba9e0af\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000240640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\f0b5880da65a47a25cbc8be6937f5464\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2023-09-14 06:07 - 2023-09-14 06:07 - 000047616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\5fc67e564cca847b093cce50e8d03674\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000070656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.efd83192#\cb56d3fbb154a21420a3221643cea3fc\CLI.Aspect.CPUPStates.Fuel.Shared.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f45bd021#\aff09b36c196163c704c2dfac60e9b98\CLI.Aspect.DPPE.Fuel.Shared.ni.dll
2023-09-14 06:07 - 2023-09-14 06:07 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\0355c46469110a7e16364c53a6f923d2\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000051200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\575983ebb8f8f465130664e5f547346f\CLI.Caste.A4.Runtime.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\1f232c46f6ebeaebeef3dc31b361ff65\CLI.Caste.A4.Shared.ni.dll
2023-10-29 11:51 - 2023-10-29 11:51 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\fe669f5f096682457447308b1b871f78\CLI.Caste.A4.Dashboard.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\37c4836a2cb1cc039594fefd65566430\CLI.Caste.Fuel.Shared.ni.dll
2023-09-14 06:08 - 2023-09-14 06:08 - 000311296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\eeb1507a8234cc5a1b55a1dd16698ebe\CLI.Caste.Fuel.Runtime.ni.dll
2023-10-29 11:51 - 2023-10-29 11:51 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\469e91e0e8b2efb9cdcd28d855e11c72\CLI.Caste.Fuel.Dashboard.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\9d2d84387295d1ea0c9ed1aba20f06b0\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 001556480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\1a11830ccb1c725b8b7b06549e952149\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000587776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\daf11e9b601ac5557172562ce249ff6b\CLI.Caste.Graphics.Dashboard.ni.dll
2023-09-14 06:09 - 2023-09-14 06:09 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\39ab0e32960148069bc89c0362c80e3d\CLI.Caste.HydraVision.Runtime.ni.dll
2023-09-14 06:09 - 2023-09-14 06:09 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\d8876fe3fe13050f5bbb6201c4c123dc\CLI.Caste.HydraVision.Shared.ni.dll
2023-10-29 11:52 - 2023-10-29 11:52 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\e79974662f270088eebe4dd9ee79db5b\CLI.Caste.HydraVision.Dashboard.ni.dll
2023-09-14 06:09 - 2023-09-14 06:09 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\94608adb60c21e19633ce2596ce44e61\CLI.Caste.Platform.Shared.ni.dll
2023-09-14 06:09 - 2023-09-14 06:09 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\a4255fe3ad4485d225da85d8611025ac\CLI.Caste.Platform.Runtime.ni.dll
2023-10-29 11:52 - 2023-10-29 11:52 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\f9972a6c8d988ada9863722ae76aa12a\CLI.Caste.Platform.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000350208 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combinee84f0351#\d83eb12edc3c62e0715f17442224aba5\CLI.Combined.Fusion.Aspects.Runtime.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\fdbe7c1dbbee2f2ca8c812da5455ffe5\CLI.Component.Runtime.Shared.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000901632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\1f3dfd2848fced58908b67834c1fd49c\CLI.Component.Systemtray.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000173568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\f39e8f09372995516af50fa875adff03\CLI.Component.Dashboard.ProfileManager2.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\32f935aa27a3335dfbcafd328225655e\CLI.Component.Runtime.Shared.Private.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\8631c248d557ed68eb0093ba23d73762\CLI.Component.Runtime.Extension.EEU.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 001609728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\d77a07957556a3d9b623bda60aedec2b\CLI.Component.Dashboard.Shared.Private.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\04f954006faaffcfabdfcf7985e50759\CLI.Component.Client.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\5f2a362b97f3c1d083ebc8cb5a51da3f\CLI.Component.Dashboard.Shared.ni.dll
2023-09-14 06:01 - 2023-09-14 06:01 - 000089600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\183079995032e8cbcedda1b9f46ff5b9\CLI.Foundation.Private.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\69cd35b7f248c256bfa07db79865ccd2\CLI.Foundation.XManifest.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000091136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\e669b554abf8ac526294f5b38062b74f\CLI.Foundation.CoreAudioAPI.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 001080320 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\ca6f57cd1ed98aa43941d424ca9ad84d\CLI.Foundation.Client.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\bb150fb8254c7702a3ce1d702b9ee027\CLI.Foundation.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\7452095f8ae4958faa06a27a798e888b\DEM.Foundation.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000115200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\5366429cee88f11debbc72f3d9d0ba44\DEM.Graphics.I0601.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\fd515db4fe1d24647e3e73e4924a78e2\DEM.Graphics.ni.dll
2023-09-14 06:08 - 2023-09-14 06:08 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\2b0838ff37a991812a212f5c7fbaa965\Fuel.Foundation.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000297472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\ba74ec66405c721ea90669b2c60ccb6c\LOG.Foundation.Implementation.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\6dda88337122d5425acb5599842adb77\LOG.Foundation.Private.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\539eaaeb20f83855c030870b76eda7de\LOG.Foundation.Implementation.Private.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\e72e3134ec5e2d3d99d28ab87cf38a9a\LOG.Foundation.ni.dll
2023-09-14 06:01 - 2023-09-14 06:01 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\641553296904fee8092e40b7d91ad9c5\MOM.Foundation.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000402432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\c62f6f049d0d34ee0d24ac877abbae96\MOM.Implementation.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\bb7e855917ce8469a0a1891ab2ba975c\NEWAEM.Foundation.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\e580a5ccc646df4dc2eaa6e81e139fe6\ADL.Foundation.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000256000 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Server\e907c129e0636143bca779f3049192e1\APM.Server.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000298496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9b707b25#\8172c3594beff61d53e738a7b71703cc\CLI.Aspect.DeviceProperty.Graphics.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 001654272 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.aa59351a#\c927d74e9d664effd3fb993ee9d6602c\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 006336512 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e6d9f3a8#\b7db85121993b31e3937f245840e63d4\CLI.Aspect.DeviceDFP.Graphics.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 008028160 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\7ea5f35a10c4635247ce717272cee867\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 001160192 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine7332395e#\6b7c6212edc3195d41aba84c7830309e\CLI.Combined.Graphics.Aspects2.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000136704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\39f3ef970e2d00b8bb2865dda147fe3a\CLI.Component.Client.Shared.Private.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000235008 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\d84b454d53526566d8f0e4ad0fbe65e1\CLI.Component.Runtime.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000929280 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\67bc8fff449fa94976c39be26c5ce967\CLI.Component.Dashboard.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0706\8a2485e5b161b1422e82ec86c0316a55\DEM.Graphics.I0706.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000084480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\c721ba5b66a059d9a82d5b07f3162ab8\DEM.Graphics.I0709.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000012288 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\b17d04bcda14f6455cc104ee9783c9c5\DEM.Graphics.I0712.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000018432 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\16dde392ebdd22bd55aa93f66bc22843\DEM.Graphics.I0804.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0805\f4c2a9208b4b95ec74656407206fa260\DEM.Graphics.I0805.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0812\d8148a0e5542279acc32f7c685e64748\DEM.Graphics.I0812.ni.dll
2023-09-14 06:08 - 2023-09-14 06:08 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0906\d15cdcd4953024ffa327fba2b4acc841\DEM.Graphics.I0906.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0912\0ca62694d5afc8dad4740afd4f565792\DEM.Graphics.I0912.ni.dll
2023-09-14 06:08 - 2023-09-14 06:08 - 000035840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\476d401f42da64616ccb8b009a9231ec\DEM.Graphics.I1010.ni.dll
2023-09-14 06:01 - 2023-09-14 06:01 - 001139200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\6682ab50c98f3f1dc1ff64845f8f9ba1\Localization.Foundation.Private.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000244736 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\eb0c7188342b00921b2fecfee2b1e629\ResourceManagement.Foundation.Implementation.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\ee600ecb40f828fc86b041fc6cb11d07\ResourceManagement.Foundation.Private.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000091648 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\710b3d0df4860447f5487af3df745bed\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 002845696 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\7acaffd7089ff7c1e86a44fcc2b53548\CLI.Caste.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 003267584 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\431a4c0a70df6c335d475497bb3456b7\CLI.Caste.Graphics.Runtime.ni.dll
2023-06-20 13:00 - 2023-06-20 13:00 - 000101376 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000335360 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\6b543036388ea8365f269b7850503400\Microsoft.WindowsAPICodePack.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 002582016 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\9a84d0b56645252138633d0530985e45\Microsoft.WindowsAPICodePack.Shell.ni.dll
2018-07-19 19:37 - 2018-07-19 19:37 - 000117248 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: DIALux Browser Helper Object -> {F586CB96-7091-42ec-9829-F5D5CE65AFC1} -> C:\Program Files (x86)\DIALux\Dialux.BHO_x86.dll [2013-12-10] (DIAL -> DIAL GmbH)
Handler-x32: dialux - {8352FA4C-39C6-11D3-ADBA-00A0244FB1A2} - C:\Program Files (x86)\DIALux\DLXToolBox.dll [2017-11-08] (DIAL GmbH, Germany) [File not signed]
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-07-16 12:47 - 2016-07-16 12:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-402010934-1184996246-2506667057-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-402010934-1184996246-2506667057-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\User\Pictures\1351672308349.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\StartupApproved\Run: => "Steam"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0C821B7A-05E5-4204-AEA1-94D9B21148A5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{805138B4-1D26-4EFA-B1EF-350F76F31334}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6A34BB55-6135-4921-BFFE-7B4D8D18D7F6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{451E17E6-A2B6-434F-B299-CEC087263016}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{89971355-1097-4C2A-84CB-F20AC49245F6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{531BD88B-A92C-4355-AC11-DCCD6D901368}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6761D5F3-AA1B-498D-A891-B7536D760A29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Baldur's Gate II Enhanced Edition\Baldur.exe (Overhaul Games™) [File not signed]
FirewallRules: [{438A1A7B-3341-4E85-BDF2-5E648FDDBFE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Baldur's Gate II Enhanced Edition\Baldur.exe (Overhaul Games™) [File not signed]
FirewallRules: [{2B976170-E68D-4C72-993B-49017AAA2FA2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{02D5F6C2-B958-41CD-8686-87808D1DA69E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{C03FD772-92EE-42B8-B69F-FD0E4D18D03C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2C4FCB80-F944-4BDD-9A2B-7ADA5D3F15F2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8AC2F31B-268F-4FCC-A916-5C7B86D19268}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F8BD110C-2518-4A7C-AC67-F417AD59C3B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DADD0378-D3CB-4214-B996-C53098149323}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.91\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0104EF86-1222-4907-9B69-A0E91F5950EE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{7D18A7EC-2BFB-4E10-8525-7CCA6E8FEF72}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{948A0EA5-3852-4D54-8267-2359922DDBCB}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
==================== Restore Points =========================
21-12-2023 11:13:16 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/29/2023 08:24:41 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program wscript.exe verze 5.812.10240.16384 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: a8c
Čas spuštění: 01da3a26b83ba121
Čas ukončení: 36
Cesta k aplikaci: C:\Windows\System32\wscript.exe
ID hlášení: c7b96744-7632-4730-bab4-940c885451d8
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (12/27/2023 10:04:52 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (12/21/2023 09:15:57 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (12/13/2023 06:36:04 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..
Error: (12/13/2023 06:36:04 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]
Error: (12/13/2023 06:35:55 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
Error: (12/13/2023 06:23:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: srtasks.exe, verze: 10.0.19041.3636, časové razítko: 0xd5dc1da3
Název chybujícího modulu: SRCORE.dll, verze: 10.0.19041.3636, časové razítko: 0xf286ca4e
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000243ea
ID chybujícího procesu: 0x23dc
Čas spuštění chybující aplikace: 0x01da2dd79f0324d0
Cesta k chybující aplikaci: C:\WINDOWS\system32\srtasks.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\SRCORE.dll
ID zprávy: 7059f223-3e7f-4b72-b2fe-5359906ac273
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/13/2023 06:21:56 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
System errors:
=============
Error: (12/18/2023 07:19:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AppX Deployment Service (AppXSVC) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/18/2023 07:19:45 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby AppX Deployment Service (AppXSVC) bylo dosaženo časového limitu (30000 ms).
Error: (12/17/2023 07:34:24 PM) (Source: DCOM) (EventID: 10010) (User: RADEK-PC)
Description: Server Microsoft.MicrosoftOfficeHub_18.2306.1061.0_x64__8wekyb3d8bbwe!Microsoft.MicrosoftOfficeHub.AppXvhez9tbpytkh6zv5q0bx5fj12yay14wg.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/16/2023 09:44:22 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (9:13:30, 16.12.2023) bylo neočekávané.
Error: (12/15/2023 10:48:44 PM) (Source: DCOM) (EventID: 10010) (User: RADEK-PC)
Description: Server {5F7F3F7B-1177-4D4B-B1DB-BC6F671B8F25} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/14/2023 06:35:19 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (12/13/2023 08:01:45 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (19:57:35, 13.12.2023) bylo neočekávané.
Error: (12/05/2023 09:45:33 PM) (Source: DCOM) (EventID: 10010) (User: RADEK-PC)
Description: Server microsoft.windowscommunicationsapps_16005.14326.21750.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================
Date: 2023-12-28 20:26:51
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {95D578C5-A845-40AC-ABA5-8A02E5FCE528}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-12-27 16:26:05
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A41BBD83-BBE5-4C21-A09E-6BC3691886CE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-12-26 22:10:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {5EAE4D1E-8013-43E5-9F1B-CFA1E1231F5B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-12-25 16:28:25
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {2690F2B1-2B47-4AFC-B9F8-B6EF4CBFE56A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-12-22 17:36:41
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {983A67E9-CDC9-45AD-A011-C5E7193296D1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2023-03-16 21:43:34
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.383.1851.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20000.2
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2023-02-17 17:48:53
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.381.3377.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19900.2
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2023-02-17 17:42:51
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.381.3377.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19900.2
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2023-02-17 17:42:51
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.381.3377.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19900.2
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2022-12-29 12:32:41
Description:
Modul Antivirová ochrana v programu Microsoft Defender byl ukončen z důvodu neočekávané chyby.
Typ chyby: Chyba
Kód výjimky: 0xc0000005
Prostředek: kód modulu
: %7
CodeIntegrity:
===============
Date: 2023-12-29 08:40:10
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2023-12-29 08:37:18
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. V32.0 11/14/2013
Motherboard: MSI A55M-E33 (MS-7721)
Processor: AMD A8-6600K APU with Radeon(tm) HD Graphics
Percentage of memory in use: 55%
Total physical RAM: 5336.18 MB
Available physical RAM: 2348.25 MB
Total Virtual: 6232.18 MB
Available Virtual: 2940.52 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:930.46 GB) (Free:823.18 GB) (Model: ST1000DM003-1CH162) NTFS
\\?\Volume{d6e466e7-e9bb-4496-9ffb-93f082ae012a}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{c053c73b-0d8f-4cab-b4c9-9670bab8b6e5}\ () (Fixed) (Total:0.5 GB) (Free:0.07 GB) NTFS
\\?\Volume{9c7670fa-1f0f-4714-aa80-5b737f7265a1}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{2905df9e-8b88-11e8-b646-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)
\\?\Volume{2905df9f-8b88-11e8-b646-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)
\\?\Volume{2905dfa0-8b88-11e8-b646-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)
\\?\Volume{2905dfa1-8b88-11e8-b646-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)
\\?\Volume{2905dfa2-8b88-11e8-b646-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: CBB00C4C)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o preventivku
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o preventivku
Ahoj,
v adresari tasks vymaz polozku nBackup
Restart PC
v adresari tasks vymaz polozku nBackup
Restart PC
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o preventivku
Zdravím.
Se mnou to asi bude trochu složitější
. Bavíme se o adresáři Windows/Tasks (viz foto v příloze)? Tam žádný nBackup nevidím.
R.
Se mnou to asi bude trochu složitější
. Bavíme se o adresáři Windows/Tasks (viz foto v příloze)? Tam žádný nBackup nevidím.R.
- Přílohy
-
- Tasks.jpg (54.27 KiB) Zobrazeno 607 x
Re: Prosím o preventivku
System32\Tasks\nBackup
je to v podadresari system32
je to v podadresari system32
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o preventivku
Smazáno, restartováno, ale chová se to stejně.
Abych to upřesnil.
Po zapnutí PC se začalo objevovat okno s chybovou hláškou (cosi o skriptu run.vbs). Pak jsem si nainstaloval Avast a ten při prvním spuštění PC oznámil, že soubor run.vbs je závadný a tento přesunul do karantény. Teď mi po spuštění vyskakuje okno, že skript run.vbs nebyl nalezen.
Jestli to souvisí s nějakou chybou v systému a ne s viry, tak se omlouvám. Díky.
R.
Abych to upřesnil.
Po zapnutí PC se začalo objevovat okno s chybovou hláškou (cosi o skriptu run.vbs). Pak jsem si nainstaloval Avast a ten při prvním spuštění PC oznámil, že soubor run.vbs je závadný a tento přesunul do karantény. Teď mi po spuštění vyskakuje okno, že skript run.vbs nebyl nalezen.
Jestli to souvisí s nějakou chybou v systému a ne s viry, tak se omlouvám. Díky.
R.
Re: Prosím o preventivku
Vycisti registre s Ccleanerom
Restart
Restart
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o preventivku
Vyčištěno, restart a pořád.
R.
R.
- Přílohy
-
- run_vbs.jpg (10.51 KiB) Zobrazeno 595 x
Re: Prosím o preventivku
Vloz aktualny log FRST
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o preventivku
Přeji vše nejlepší v novém roce a hodně trpělivosti s experty mého ražení
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-12-2023
Ran by User (administrator) on RADEK-PC (MSI MS-7721) (01-01-2024 09:24:29)
Running from C:\Users\User\Desktop\FRST64.exe
Loaded Profiles: User
Platform: Microsoft Windows 10 Home Version 22H2 19045.3803 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(explorer.exe ->) () [File not signed] C:\Program Files (x86)\Launchy\Launchy.exe
(explorer.exe ->) () [File not signed] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\ElsoftTray.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [417176 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4386664 2023-12-08] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\Run: [MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854280 2023-12-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44486048 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [117248 2018-07-19] (pdfforge GmbH) [File not signed]
HKLM\...\Print\Monitors\us008 Langmon: C:\WINDOWS\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\120.0.6099.130\Installer\chrmstp.exe [2023-12-27] (Google LLC -> Google LLC)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Launchy.lnk [2018-07-19]
ShortcutTarget: Launchy.lnk -> C:\Program Files (x86)\Launchy\Launchy.exe () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ElsoftTray.exe [2012-07-06] () [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {9EBB662D-7A7F-43A6-B7CD-FE725F3A172F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {A4A5A227-4317-4B29-8084-40DB78BA3BA1} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5094808 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
Task: {819F8E66-E21D-419C-889F-0E5410285C4E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-12-28] (Avast Software s.r.o. -> Avast Software)
Task: {028ACC86-FDAB-4235-B534-D94B95B48F85} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {77880B2B-CF08-4A94-A3AC-040CD6CBE40F} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "0d05f0a8-c517-4de8-a6f3-4ea035b9cc91" --version "6.19.10858" --silent
Task: {27FF6539-4222-4CDD-AEB7-9F75C22773F9} - System32\Tasks\CCleanerSkipUAC - User => C:\Program Files\CCleaner\CCleaner.exe [37458848 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {4AA9BD67-1F44-4103-BBFC-41C6F6C28275} - System32\Tasks\G2MUpdateTask-S-1-5-21-402010934-1184996246-2506667057-1001 => C:\Users\User\AppData\Local\GoToMeeting\19950\g2mupdate.exe [33456 2022-04-21] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {BD42CF62-60BA-4328-955F-8EE5969B4397} - System32\Tasks\G2MUploadTask-S-1-5-21-402010934-1184996246-2506667057-1001 => C:\Users\User\AppData\Local\GoToMeeting\19950\g2mupload.exe [33456 2022-04-21] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {F36C32F6-E01C-42F5-B8D7-13F8A1287B88} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-19] (Google Inc -> Google Inc.)
Task: {0C7FCAB5-F480-495D-BCA0-9D96E704FEC9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-19] (Google Inc -> Google Inc.)
Task: {877745AB-6F8E-4131-AEFD-9D60B76EA1BD} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => %windir%\system32\EOSNotify.exe (No File)
Task: {AFD177AC-22BF-4429-AE12-10134A95F9FA} - System32\Tasks\nBackup => run.vbs (No File)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-402010934-1184996246-2506667057-1001.job => C:\Users\User\AppData\Local\GoToMeeting\19950\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-402010934-1184996246-2506667057-1001.job => C:\Users\User\AppData\Local\GoToMeeting\19950\g2mupload.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b36844f9-0b6d-4b2d-9744-002b8d5f08c5}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{d1fbc0a9-2813-4433-bece-010e9ed26abf}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-01]
Edge Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-29]
Edge Extension: (Edge relevant text changes) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-11-30]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-11-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Profile 2
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2023-12-31]
CHR Extension: (Nordic Forest) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\amekpplpfocpmaimnmgfjoibodpjedie [2023-07-15]
CHR Extension: (uBlock Origin) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-11-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-12-31]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-12-31]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-17]
CHR Extension: (Under The Leaf) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ighhdikapddjihgaphbnbcgipafcamjk [2022-12-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-15]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-01-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-16]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-12-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-29]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2023-12-31]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [9065880 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [753048 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1157528 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
S3 DialComService; C:\Program Files (x86)\DIAL GmbH\DIAL Communication Framework\DialComService.exe [2183440 2014-12-10] (DIAL -> DIAL GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31528 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [243136 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [394008 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297984 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [96064 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [26616 2023-12-28] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39752 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [276848 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [561888 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105352 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80528 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [952856 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [711664 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [213296 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319672 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 clwvd9; C:\WINDOWS\System32\drivers\clwvd9.sys [60984 2019-09-08] (CyberLink Corp. -> CyberLink Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55856 2023-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [594304 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-01-01 09:24 - 2024-01-01 09:26 - 000017071 _____ C:\Users\User\Desktop\FRST.txt
2024-01-01 09:24 - 2024-01-01 09:24 - 000000000 ____D C:\Users\User\Desktop\FRST-OlderVersion
2023-12-31 23:59 - 2024-01-01 00:00 - 000000000 ____D C:\Users\User\Documents\Assassin's Creed IV Black Flag
2023-12-31 23:42 - 2023-12-31 23:42 - 000000233 _____ C:\Users\User\Desktop\Assassin's Creed IV Black Flag.url
2023-12-31 23:35 - 2024-01-01 01:46 - 000000000 ____D C:\Users\User\AppData\Local\Ubisoft Game Launcher
2023-12-31 23:35 - 2023-12-31 23:35 - 000001323 _____ C:\Users\User\Desktop\Ubisoft Connect.lnk
2023-12-31 23:35 - 2023-12-31 23:35 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2023-12-31 23:35 - 2023-12-31 23:35 - 000000000 ____D C:\ProgramData\Ubisoft
2023-12-31 23:35 - 2023-12-31 23:35 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2023-12-31 23:34 - 2023-12-31 23:34 - 234916808 _____ (Ubisoft) C:\Users\User\Downloads\UbisoftConnectInstaller.exe
2023-12-31 21:26 - 2023-12-31 21:26 - 000342752 _____ C:\Users\User\Documents\cc_20231231_212616.reg
2023-12-31 21:09 - 2024-01-01 08:53 - 000000000 ____D C:\Program Files\CCleaner
2023-12-31 21:09 - 2024-01-01 02:00 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-12-31 21:09 - 2024-01-01 02:00 - 000002952 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-12-31 21:09 - 2024-01-01 02:00 - 000002250 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - User
2023-12-31 21:09 - 2024-01-01 02:00 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-12-31 21:09 - 2023-12-31 21:09 - 000000823 _____ C:\Users\Public\Desktop\CCleaner.lnk
2023-12-31 21:09 - 2023-12-31 21:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2023-12-31 21:08 - 2023-12-31 21:09 - 078179328 _____ (Piriform Software Ltd) C:\Users\User\Downloads\ccsetup619.exe
2023-12-31 19:16 - 2023-12-31 19:19 - 2110772938 _____ C:\Users\User\Downloads\Assassin's Creed.mkv
2023-12-31 18:50 - 2024-01-01 02:00 - 000002648 _____ C:\WINDOWS\system32\Tasks\nBackup
2023-12-31 18:04 - 2023-12-31 18:04 - 000000000 ___HD C:\OneDriveTemp
2023-12-30 19:21 - 2023-12-30 19:22 - 000000000 ____D C:\Users\User\Downloads\Obrazy
2023-12-29 08:52 - 2024-01-01 09:25 - 000000000 ____D C:\FRST
2023-12-29 08:49 - 2024-01-01 09:24 - 002387456 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2023-12-29 08:24 - 2023-12-29 08:24 - 000000000 ___HD C:\$AV_ASW
2023-12-28 21:14 - 2023-12-28 21:14 - 000000000 ____D C:\Users\User\AppData\Local\Avast Software
2023-12-28 21:12 - 2023-12-28 21:12 - 000000000 ____D C:\Users\User\AppData\Roaming\Avast Software
2023-12-28 21:11 - 2023-12-28 21:11 - 000002120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2023-12-28 21:11 - 2023-12-28 21:11 - 000002108 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2023-12-28 21:09 - 2024-01-01 01:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-12-28 21:09 - 2023-12-29 16:35 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-12-28 21:08 - 2023-12-28 21:08 - 000314264 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-12-28 21:08 - 2023-12-28 21:08 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2023-12-28 21:07 - 2023-12-28 21:07 - 000000000 ____D C:\Program Files\Avast Software
2023-12-28 21:06 - 2023-12-31 21:30 - 000000000 ____D C:\ProgramData\Avast Software
2023-12-28 21:06 - 2023-12-28 21:06 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll
2023-12-14 18:47 - 2023-12-14 18:47 - 000000000 ____D C:\Users\User\AppData\Local\Backup
2023-12-13 20:02 - 2023-12-13 20:03 - 000000000 ____D C:\WINDOWS\InboxApps
2023-12-13 17:12 - 2023-12-13 17:12 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-12-13 16:19 - 2023-12-13 16:19 - 000000000 ___HD C:\$WinREAgent
2023-12-07 16:46 - 2023-12-07 16:46 - 000042621 _____ C:\Users\User\Downloads\zaloha202312_pisek_8161001.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-01-01 09:18 - 2020-09-21 09:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-01-01 09:18 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-01-01 09:08 - 2021-12-21 23:44 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-01-01 09:08 - 2018-07-19 19:33 - 000000000 ____D C:\Program Files (x86)\Google
2024-01-01 08:53 - 2018-07-19 19:30 - 000000000 ___RD C:\Users\User\OneDrive
2024-01-01 02:00 - 2021-12-11 00:23 - 000003062 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-402010934-1184996246-2506667057-1001
2024-01-01 02:00 - 2021-04-22 09:02 - 000003240 _____ C:\WINDOWS\system32\Tasks\G2MUploadTask-S-1-5-21-402010934-1184996246-2506667057-1001
2024-01-01 02:00 - 2021-04-22 09:02 - 000003144 _____ C:\WINDOWS\system32\Tasks\G2MUpdateTask-S-1-5-21-402010934-1184996246-2506667057-1001
2024-01-01 02:00 - 2021-04-22 09:02 - 000000646 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-402010934-1184996246-2506667057-1001.job
2024-01-01 02:00 - 2021-04-22 09:02 - 000000550 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-402010934-1184996246-2506667057-1001.job
2024-01-01 02:00 - 2020-09-21 10:08 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-01-01 02:00 - 2020-09-21 10:08 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-01-01 02:00 - 2020-09-21 10:08 - 000003410 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2024-01-01 02:00 - 2020-09-21 10:08 - 000003342 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-01-01 02:00 - 2020-09-21 10:08 - 000003186 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2024-01-01 02:00 - 2020-09-21 10:08 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-402010934-1184996246-2506667057-1001
2024-01-01 01:50 - 2021-12-31 16:37 - 000000000 ____D C:\Program Files (x86)\Steam
2023-12-31 23:20 - 2021-12-31 16:40 - 000000000 ____D C:\Users\User\AppData\Local\Steam
2023-12-31 21:30 - 2020-09-21 10:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-12-31 21:30 - 2020-09-21 09:48 - 000008192 ___SH C:\DumpStack.log.tmp
2023-12-31 21:29 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-12-31 21:29 - 2018-07-20 00:51 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2023-12-31 21:14 - 2018-07-19 19:37 - 000000000 ____D C:\Users\User\AppData\Local\PDFCreator
2023-12-31 21:14 - 2018-07-19 19:36 - 000000000 ____D C:\Program Files\PDFCreator
2023-12-31 21:12 - 2020-11-26 11:25 - 000000000 ____D C:\WINDOWS\Minidump
2023-12-31 21:12 - 2020-09-09 11:44 - 000000000 ___DC C:\WINDOWS\Panther
2023-12-31 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-12-31 21:08 - 2019-02-27 13:21 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc
2023-12-31 18:15 - 2023-10-19 13:44 - 000000000 ____D C:\Users\User\Downloads\X
2023-12-31 17:11 - 2020-02-21 16:59 - 000000000 ____D C:\Users\User\AppData\Roaming\GoPanda2
2023-12-29 08:58 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-12-29 08:42 - 2018-07-19 19:28 - 000000000 ____D C:\Users\User\AppData\Local\VirtualStore
2023-12-29 08:24 - 2018-07-19 20:33 - 000000000 ____D C:\Users\nBackup
2023-12-28 21:36 - 2018-07-19 19:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2023-12-28 21:36 - 2018-07-19 19:35 - 000000000 ____D C:\Program Files\7-Zip
2023-12-28 21:08 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-12-27 08:55 - 2018-07-19 19:34 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-12-24 18:18 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-24 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-12-24 17:11 - 2020-06-09 12:07 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-24 17:11 - 2020-06-09 12:07 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-12-16 09:51 - 2020-09-21 10:03 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-12-16 09:51 - 2019-12-07 15:41 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2023-12-16 09:51 - 2019-12-07 15:41 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2023-12-14 18:26 - 2018-07-19 19:28 - 000000000 ____D C:\Users\User\AppData\Local\ConnectedDevicesPlatform
2023-12-13 22:41 - 2018-07-19 19:28 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-12-13 20:09 - 2018-07-19 19:28 - 000000000 ____D C:\Users\User\AppData\Local\Packages
2023-12-13 20:06 - 2020-09-21 09:48 - 000376784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-12-13 20:03 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2023-12-13 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-12-13 17:22 - 2019-12-07 15:44 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-12-13 17:22 - 2019-12-07 15:44 - 000020827 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2023-12-13 17:22 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-12-13 17:12 - 2020-09-21 09:51 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-12-12 15:58 - 2020-09-21 09:51 - 000002374 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-12-07 16:04 - 2018-07-20 00:59 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
==================== Files in the root of some directories ========
2021-03-03 19:16 - 2022-01-05 19:46 - 000000014 _____ () C:\Users\User\AppData\Roaming\obs-virtualcam.txt
2022-01-15 14:42 - 2022-01-15 14:42 - 000000218 _____ () C:\Users\User\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-12-2023
Ran by User (01-01-2024 09:31:54)
Running from C:\Users\User\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3803 (X64) (2020-09-21 09:09:17)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-402010934-1184996246-2506667057-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-402010934-1184996246-2506667057-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-402010934-1184996246-2506667057-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-402010934-1184996246-2506667057-501 - Limited - Disabled)
User (S-1-5-21-402010934-1184996246-2506667057-1001 - Administrator - Enabled) => C:\Users\User
WDAGUtilityAccount (S-1-5-21-402010934-1184996246-2506667057-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
7-Zip 23.01 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2301-000001000000}) (Version: 23.01.00.0 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 23.006.20380 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.12.6094 - Avast Software)
Catalyst Control Center - Branding (HKLM-x32\...\{11087D24-567D-7D88-69C6-D7A08B5F4C47}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.19 - Piriform)
CEWE FOTOLAB fotosvet (HKLM-x32\...\CEWE FOTOLAB fotosvet) (Version: 7.1.4 - CEWE Stiftung u Co. KGaA)
CGoban (HKLM\...\{06648D2D-3B0D-3BE3-9466-C9BE616C6AAC}) (Version: 3.5.124 - Unknown)
DIAL Communication Framework (HKLM-x32\...\{562D0D31-FBAF-4505-8B27-4EC92EEA91D6}) (Version: 1.3.1.215 - DIAL GmbH)
DIAL Data Dispatcher (HKLM-x32\...\DIAL Data Dispatcher1.0) (Version: 1.0 - DIAL GmbH)
DIALux 4.13 (HKLM-x32\...\DIALux) (Version: 4.13.0.2 - DIAL GmbH)
Double Commander 0.7.5 beta (HKLM\...\Double Commander_is1) (Version: - )
Elektromotory - aplikace (HKLM-x32\...\Elektromotory - aplikace_is1) (Version: - Elektromotory - aplikace)
Elektrovýpočty Plus (HKLM-x32\...\Elektrovýpočty Plus_is1) (Version: - El soft)
Elsoft Tray (HKLM-x32\...\Elsoft Tray_is1) (Version: - Klimsa)
Google Chrome (HKLM\...\{6BE8C6A1-54E8-312E-A876-FF27463F3324}) (Version: 120.0.6099.130 - Google, Inc.)
GoPanda2 2.6.12 (HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\{e2f36056-c0db-5e0d-88c2-1e8cef3b389d}) (Version: 2.6.12 - Pandanet Inc.)
GoPanda2 2.8.1 (HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\e2f36056-c0db-5e0d-88c2-1e8cef3b389d) (Version: 2.8.1 - Pandanet Inc.)
GoTo Opener (HKLM-x32\...\{E69269DB-A77B-4BC1-8F39-241107B09F26}) (Version: 1.0.539 - LogMeIn, Inc.)
GoToMeeting 10.19.0.19950 (HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\GoToMeeting) (Version: 10.19.0.19950 - LogMeIn, Inc.)
IrfanView 4.51 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.51 - Irfan Skiljan)
Jištění kabelů (HKLM-x32\...\Jištění kabelů_is1) (Version: - El soft)
KlimsaZAKLAD (HKLM-x32\...\KlimsaZAKLAD_is1) (Version: - KLIMSA Software)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Launchy 2.5 (HKLM-x32\...\Launchy_21344213_is1) (Version: - Code Jelly)
LibreOffice 5.4.7.2 (HKLM\...\{26D12F93-E454-4637-9A5C-D52F6B4CC0DD}) (Version: 5.4.7.2 - The Document Foundation)
MaR SW (HKLM-x32\...\MaR SW_is1) (Version: - MaR SW)
Microsoft Access Runtime 2013 (HKLM\...\{90150000-001C-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Access Runtime 2013 (HKLM\...\Office15.AccessRT) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Access Runtime MUI (Czech) 2013 (HKLM\...\{90150000-001C-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 120.0.2210.91 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 120.0.2210.91 - Microsoft Corporation)
Microsoft Office 32-bit Components 2013 (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Czech) 2013 (HKLM\...\{90150000-00C1-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2013 (HKLM\...\{90150000-006E-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\OneDriveSetup.exe) (Version: 23.246.1127.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29325 (HKLM\...\{26AF0C35-55EC-4025-8D83-349E8FB1419F}) (Version: 14.28.29325 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29325 (HKLM\...\{7D0362D5-C699-4403-BC09-0C1DAD1D93AB}) (Version: 14.28.29325 - Microsoft Corporation) Hidden
nanoCAD 5.0 (HKLM-x32\...\{6D4250F7-DB33-4530-A9BD-A9D66BA34586}) (Version: 5.0.2520.2000 - Nanosoft)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.7 - Notepad++ Team)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.0.2 - OBS Project)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.2.2 - pdfforge GmbH)
POV-Ray for Windows v3.6.0 (HKLM-x32\...\POV-Ray for Windows v3.6) (Version: 3.6 - Persistence of Vision Raytracer Pty. Ltd.)
Skype verze 8.39 (HKLM-x32\...\Skype_is1) (Version: 8.39 - Skype Technologies S.A.)
Soudobost (HKLM-x32\...\Soudobost_is1) (Version: - KLIMSA Software)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.10 - Ghisler Software GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 148.2.10984 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{A7B60FC9-A750-43C7-B7EC-892CD09147C7}) (Version: 1.18.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.3 - VideoLAN)
Vnější vlivy QUICK (HKLM-x32\...\Vnější vlivy QUICK_is1) (Version: - KLIMSA Software)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2023-11-16] ()
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.41.11.0_x64__kgqvnymyfvs32 [2023-12-14] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.258.100.0_x64__kgqvnymyfvs32 [2023-12-14] (king.com)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.20.5101.0_x64__8wekyb3d8bbwe [2023-12-16] (Microsoft Studios)
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2018-09-05] (Samsung Electronics Co. Ltd.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-18] (Microsoft Studios) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-402010934-1184996246-2506667057-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-12-28] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-12-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2018-06-30] (Notepad++ -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-12-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2017-10-19] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-12-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-12-28] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-07-19 19:36 - 2009-12-17 00:18 - 000233472 _____ () [File not signed] C:\Program Files (x86)\Launchy\imageformats\qmng4.dll
2018-07-19 19:36 - 2010-04-03 13:06 - 000081920 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\calcy.dll
2018-07-19 19:36 - 2010-04-03 13:05 - 000090112 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\controly.dll
2018-07-19 19:36 - 2010-04-03 13:06 - 000024064 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\gcalc.dll
2018-07-19 19:36 - 2010-04-03 13:06 - 000094208 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\runner.dll
2018-07-19 19:36 - 2010-04-03 13:05 - 000057344 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\verby.dll
2018-07-19 19:36 - 2010-04-03 13:05 - 000122880 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\weby.dll
2018-07-19 19:36 - 2009-12-16 21:54 - 002236416 _____ () [File not signed] C:\Program Files (x86)\Launchy\QtCore4.dll
2018-07-19 19:36 - 2009-12-16 22:13 - 008314880 _____ () [File not signed] C:\Program Files (x86)\Launchy\QtGui4.dll
2018-07-19 19:36 - 2009-12-16 21:56 - 000712704 _____ () [File not signed] C:\Program Files (x86)\Launchy\QtNetwork4.dll
2014-02-11 05:08 - 2014-02-11 05:08 - 000817152 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2015-11-04 15:43 - 2015-11-04 15:43 - 000214528 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2015-11-04 15:43 - 2015-11-04 15:43 - 000102400 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-02-11 05:08 - 2014-02-11 05:08 - 003650560 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2023-09-14 05:59 - 2023-09-14 05:59 - 000031232 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\A4.Foundation\481ffab5232d1254e92b4e2c4e470c3e\A4.Foundation.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\148c0b3431bb9eb8273207336081bfbe\AEM.Actions.CCAA.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\f1aa81cf97759f5d1d59fdfb7feaa8f9\AEM.Plugin.EEU.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\70f28493778d0e67698d628ea2376c7d\AEM.Plugin.Hotkeys.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.4adf1574#\a7e8bd90f01cc7c7fa877d7ed9f4abea\AEM.Plugin.Audio.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.54d8abe3#\9f9687c706d22a70fb676264dd5537d7\AEM.Plugin.DPPE.Shared.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000315904 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\97ff049e800c754353d5b00a9b1cfc0f\AEM.Plugin.Source.Kit.Server.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\88737cd3439e6057b1ff9b5f1391c801\AEM.Plugin.WinMessages.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\433707a9d103ea4e53f5ef91a9277dfa\AEM.Plugin.REG.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\d3cfaedfbc789efad9981d6e03aeb43f\AEM.Plugin.GD.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\78dcc26b1eb2c71c3bb7811d002813b3\AEM.Server.Shared.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000267776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server\39b1a2067dd59827c558f60f025d4e50\AEM.Server.ni.dll
2023-09-14 06:01 - 2023-09-14 06:01 - 000055808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Foundation\ce91c2f062d7a2c5bfaecf569c1620f3\APM.Foundation.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000122880 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ATICCCom\09a83f5026ac06a6d254117b19ee3b13\ATICCCom.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000203776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\e21ff9b83c6fc12617acab083cc2427b\CCC.Implementation.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.2042675f#\39e03391e163f59329c02f5b55cf225f\CLI.Aspect.CPUPStates.Fuel.Dashboard.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000128000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\e52f7c5a049d625afee950f00df092c5\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\b73b6d9a2470a21f03607799afe546b0\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2023-09-14 06:10 - 2023-09-14 06:10 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\794c62afbd28d58d01605fdbed27a264\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2023-09-14 06:07 - 2023-09-14 06:07 - 000107008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\beb1a4d88548e6332719b5a85b3ab6fb\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000209920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4542c692#\9f691579579636d4ce36d3e80c8ff402\CLI.Aspect.DeviceCRT.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.46819220#\599c6ff42b8e6b823d9ef3d54d11868f\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\c2c8e6fdddc1ea71823310a67d045af5\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000152576 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4ede500c#\8be42fd02a77b75a30ca150ceee16e4d\CLI.Aspect.DPPE.Fuel.Dashboard.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\f3f86b1537fd14618a789c833ca7a3c9\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2023-09-14 06:05 - 2023-09-14 06:05 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.59a12d95#\dd11a2ee1d66235180667750810df359\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000111616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.5a772e69#\099d0f5796264ef61aa1d558c7058f19\CLI.Aspect.Fets.Fuel.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000070656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.648b65fc#\25353301051de5cd62f982c9da97503b\CLI.Aspect.WiFi.Fuel.Dashboard.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\90d0b53f65741eab59303489cc2db276\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000364544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\16318c6925b33de6a1338d7c1bf1bad3\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000064000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\73e470460b2ef3e336a30798a3a738bf\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000677888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.846fa813#\6f5fae9759ba0e96767e2f1dbf7c7b3b\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000745984 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\de9e275c73d871c02188488ad0b28779\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000449536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\a7a0be71294c91b9bc7d4986fa8f90dd\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\bf40c069731935f46d124ce7327be077\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000158208 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a0ae52bc#\5481889ae3e4ea891c40d718630f3571\CLI.Aspect.DeviceLCD.Graphics.Shared.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\6e2f7051afedb7fa2d93a85e95082fa4\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000082944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\3cdbc26e44a99fb54d3259d7d83c3adf\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000462336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\f7b5ea3eb14b4a5dbe55edc4e1474329\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000086528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ae5e117c#\873924d0500d226cb383241446d97544\CLI.Aspect.DisplaysColour2.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000067072 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\0c93a0ff5217dcaa78b1ba21acd5ec20\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2023-09-14 06:07 - 2023-09-14 06:07 - 000023552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c2a2b491#\5043fac7dc9569f70527a70497269900\CLI.Aspect.WiFi.Fuel.Shared.ni.dll
2023-09-14 06:05 - 2023-09-14 06:05 - 000340992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\5b8b8621387c962ca46b8d5129e22897\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\eb456f0115c339383aafab61976657b4\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000081408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.caa5cc64#\3b9e4fae0d48b272409f5d35276287e4\CLI.Aspect.Fets.Fuel.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 001315840 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.d7e090dc#\f09ded1a9fc16b3048eaadc28e927dae\CLI.Aspect.User.Fuel.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000276480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\b86c1d1fc903e85bd73724dc2a6bcfa3\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 003313664 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\d64b6cdd350315abed8e3e587ba9e0af\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000240640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\f0b5880da65a47a25cbc8be6937f5464\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2023-09-14 06:07 - 2023-09-14 06:07 - 000047616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\5fc67e564cca847b093cce50e8d03674\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000070656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.efd83192#\cb56d3fbb154a21420a3221643cea3fc\CLI.Aspect.CPUPStates.Fuel.Shared.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f45bd021#\aff09b36c196163c704c2dfac60e9b98\CLI.Aspect.DPPE.Fuel.Shared.ni.dll
2023-09-14 06:07 - 2023-09-14 06:07 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\0355c46469110a7e16364c53a6f923d2\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000051200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\575983ebb8f8f465130664e5f547346f\CLI.Caste.A4.Runtime.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\1f232c46f6ebeaebeef3dc31b361ff65\CLI.Caste.A4.Shared.ni.dll
2023-10-29 11:51 - 2023-10-29 11:51 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\fe669f5f096682457447308b1b871f78\CLI.Caste.A4.Dashboard.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\37c4836a2cb1cc039594fefd65566430\CLI.Caste.Fuel.Shared.ni.dll
2023-09-14 06:08 - 2023-09-14 06:08 - 000311296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\eeb1507a8234cc5a1b55a1dd16698ebe\CLI.Caste.Fuel.Runtime.ni.dll
2023-10-29 11:51 - 2023-10-29 11:51 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\469e91e0e8b2efb9cdcd28d855e11c72\CLI.Caste.Fuel.Dashboard.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\9d2d84387295d1ea0c9ed1aba20f06b0\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 001556480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\1a11830ccb1c725b8b7b06549e952149\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000587776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\daf11e9b601ac5557172562ce249ff6b\CLI.Caste.Graphics.Dashboard.ni.dll
2023-09-14 06:09 - 2023-09-14 06:09 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\39ab0e32960148069bc89c0362c80e3d\CLI.Caste.HydraVision.Runtime.ni.dll
2023-09-14 06:09 - 2023-09-14 06:09 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\d8876fe3fe13050f5bbb6201c4c123dc\CLI.Caste.HydraVision.Shared.ni.dll
2023-10-29 11:52 - 2023-10-29 11:52 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\e79974662f270088eebe4dd9ee79db5b\CLI.Caste.HydraVision.Dashboard.ni.dll
2023-09-14 06:09 - 2023-09-14 06:09 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\94608adb60c21e19633ce2596ce44e61\CLI.Caste.Platform.Shared.ni.dll
2023-09-14 06:09 - 2023-09-14 06:09 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\a4255fe3ad4485d225da85d8611025ac\CLI.Caste.Platform.Runtime.ni.dll
2023-10-29 11:52 - 2023-10-29 11:52 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\f9972a6c8d988ada9863722ae76aa12a\CLI.Caste.Platform.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000350208 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combinee84f0351#\d83eb12edc3c62e0715f17442224aba5\CLI.Combined.Fusion.Aspects.Runtime.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\fdbe7c1dbbee2f2ca8c812da5455ffe5\CLI.Component.Runtime.Shared.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000901632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\1f3dfd2848fced58908b67834c1fd49c\CLI.Component.Systemtray.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000173568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\f39e8f09372995516af50fa875adff03\CLI.Component.Dashboard.ProfileManager2.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\32f935aa27a3335dfbcafd328225655e\CLI.Component.Runtime.Shared.Private.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\8631c248d557ed68eb0093ba23d73762\CLI.Component.Runtime.Extension.EEU.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 001609728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\d77a07957556a3d9b623bda60aedec2b\CLI.Component.Dashboard.Shared.Private.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\04f954006faaffcfabdfcf7985e50759\CLI.Component.Client.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\5f2a362b97f3c1d083ebc8cb5a51da3f\CLI.Component.Dashboard.Shared.ni.dll
2023-09-14 06:01 - 2023-09-14 06:01 - 000089600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\183079995032e8cbcedda1b9f46ff5b9\CLI.Foundation.Private.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\69cd35b7f248c256bfa07db79865ccd2\CLI.Foundation.XManifest.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000091136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\e669b554abf8ac526294f5b38062b74f\CLI.Foundation.CoreAudioAPI.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 001080320 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\ca6f57cd1ed98aa43941d424ca9ad84d\CLI.Foundation.Client.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\bb150fb8254c7702a3ce1d702b9ee027\CLI.Foundation.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\7452095f8ae4958faa06a27a798e888b\DEM.Foundation.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000115200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\5366429cee88f11debbc72f3d9d0ba44\DEM.Graphics.I0601.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\fd515db4fe1d24647e3e73e4924a78e2\DEM.Graphics.ni.dll
2023-09-14 06:08 - 2023-09-14 06:08 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\2b0838ff37a991812a212f5c7fbaa965\Fuel.Foundation.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000297472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\ba74ec66405c721ea90669b2c60ccb6c\LOG.Foundation.Implementation.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\6dda88337122d5425acb5599842adb77\LOG.Foundation.Private.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\539eaaeb20f83855c030870b76eda7de\LOG.Foundation.Implementation.Private.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\e72e3134ec5e2d3d99d28ab87cf38a9a\LOG.Foundation.ni.dll
2023-09-14 06:01 - 2023-09-14 06:01 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\641553296904fee8092e40b7d91ad9c5\MOM.Foundation.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000402432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\c62f6f049d0d34ee0d24ac877abbae96\MOM.Implementation.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\bb7e855917ce8469a0a1891ab2ba975c\NEWAEM.Foundation.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\e580a5ccc646df4dc2eaa6e81e139fe6\ADL.Foundation.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000256000 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Server\e907c129e0636143bca779f3049192e1\APM.Server.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000298496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9b707b25#\8172c3594beff61d53e738a7b71703cc\CLI.Aspect.DeviceProperty.Graphics.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 001654272 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.aa59351a#\c927d74e9d664effd3fb993ee9d6602c\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 006336512 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e6d9f3a8#\b7db85121993b31e3937f245840e63d4\CLI.Aspect.DeviceDFP.Graphics.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 008028160 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\7ea5f35a10c4635247ce717272cee867\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 001160192 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine7332395e#\6b7c6212edc3195d41aba84c7830309e\CLI.Combined.Graphics.Aspects2.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000136704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\39f3ef970e2d00b8bb2865dda147fe3a\CLI.Component.Client.Shared.Private.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000235008 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\d84b454d53526566d8f0e4ad0fbe65e1\CLI.Component.Runtime.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000929280 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\67bc8fff449fa94976c39be26c5ce967\CLI.Component.Dashboard.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0706\8a2485e5b161b1422e82ec86c0316a55\DEM.Graphics.I0706.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000084480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\c721ba5b66a059d9a82d5b07f3162ab8\DEM.Graphics.I0709.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000012288 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\b17d04bcda14f6455cc104ee9783c9c5\DEM.Graphics.I0712.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000018432 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\16dde392ebdd22bd55aa93f66bc22843\DEM.Graphics.I0804.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0805\f4c2a9208b4b95ec74656407206fa260\DEM.Graphics.I0805.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0812\d8148a0e5542279acc32f7c685e64748\DEM.Graphics.I0812.ni.dll
2023-09-14 06:08 - 2023-09-14 06:08 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0906\d15cdcd4953024ffa327fba2b4acc841\DEM.Graphics.I0906.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0912\0ca62694d5afc8dad4740afd4f565792\DEM.Graphics.I0912.ni.dll
2023-09-14 06:08 - 2023-09-14 06:08 - 000035840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\476d401f42da64616ccb8b009a9231ec\DEM.Graphics.I1010.ni.dll
2023-09-14 06:01 - 2023-09-14 06:01 - 001139200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\6682ab50c98f3f1dc1ff64845f8f9ba1\Localization.Foundation.Private.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000244736 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\eb0c7188342b00921b2fecfee2b1e629\ResourceManagement.Foundation.Implementation.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\ee600ecb40f828fc86b041fc6cb11d07\ResourceManagement.Foundation.Private.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000091648 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\710b3d0df4860447f5487af3df745bed\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 002845696 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\7acaffd7089ff7c1e86a44fcc2b53548\CLI.Caste.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 003267584 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\431a4c0a70df6c335d475497bb3456b7\CLI.Caste.Graphics.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000335360 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\6b543036388ea8365f269b7850503400\Microsoft.WindowsAPICodePack.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 002582016 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\9a84d0b56645252138633d0530985e45\Microsoft.WindowsAPICodePack.Shell.ni.dll
2018-07-19 19:37 - 2018-07-19 19:37 - 000117248 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: DIALux Browser Helper Object -> {F586CB96-7091-42ec-9829-F5D5CE65AFC1} -> C:\Program Files (x86)\DIALux\Dialux.BHO_x86.dll [2013-12-10] (DIAL -> DIAL GmbH)
Handler-x32: dialux - {8352FA4C-39C6-11D3-ADBA-00A0244FB1A2} - C:\Program Files (x86)\DIALux\DLXToolBox.dll [2017-11-08] (DIAL GmbH, Germany) [File not signed]
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-07-16 12:47 - 2016-07-16 12:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-402010934-1184996246-2506667057-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-402010934-1184996246-2506667057-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\User\Pictures\1351672308349.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\StartupApproved\Run: => "Steam"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0C821B7A-05E5-4204-AEA1-94D9B21148A5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{805138B4-1D26-4EFA-B1EF-350F76F31334}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6A34BB55-6135-4921-BFFE-7B4D8D18D7F6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{451E17E6-A2B6-434F-B299-CEC087263016}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{89971355-1097-4C2A-84CB-F20AC49245F6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{531BD88B-A92C-4355-AC11-DCCD6D901368}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6761D5F3-AA1B-498D-A891-B7536D760A29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Baldur's Gate II Enhanced Edition\Baldur.exe (Overhaul Games™) [File not signed]
FirewallRules: [{438A1A7B-3341-4E85-BDF2-5E648FDDBFE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Baldur's Gate II Enhanced Edition\Baldur.exe (Overhaul Games™) [File not signed]
FirewallRules: [{2B976170-E68D-4C72-993B-49017AAA2FA2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{02D5F6C2-B958-41CD-8686-87808D1DA69E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{C03FD772-92EE-42B8-B69F-FD0E4D18D03C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2C4FCB80-F944-4BDD-9A2B-7ADA5D3F15F2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8AC2F31B-268F-4FCC-A916-5C7B86D19268}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F8BD110C-2518-4A7C-AC67-F417AD59C3B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DADD0378-D3CB-4214-B996-C53098149323}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.91\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0104EF86-1222-4907-9B69-A0E91F5950EE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{7D18A7EC-2BFB-4E10-8525-7CCA6E8FEF72}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{948A0EA5-3852-4D54-8267-2359922DDBCB}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E9C55BB5-0E6F-4FB8-BB71-1E69913394AA}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{2751AE58-D74D-4B54-8261-46EC16D393F2}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{57B3B818-2437-46BC-8227-A59BF4FF12F7}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{BF330337-410A-4701-B1AE-3A99A21BF622}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
==================== Restore Points =========================
21-12-2023 11:13:16 Naplánovaný kontrolní bod
30-12-2023 10:16:42 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/31/2023 11:57:45 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač..
Operace:
Spouštění asynchronní operace
Kontext:
Aktuální stav: DoSnapshotSet
Error: (12/31/2023 06:10:45 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Users\User\Downloads\X\Autoruns.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.3636_none_a863d714867441db.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.3636_none_60b6a03d71f818d5.manifest.
Error: (12/29/2023 08:24:41 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program wscript.exe verze 5.812.10240.16384 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: a8c
Čas spuštění: 01da3a26b83ba121
Čas ukončení: 36
Cesta k aplikaci: C:\Windows\System32\wscript.exe
ID hlášení: c7b96744-7632-4730-bab4-940c885451d8
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (12/27/2023 10:04:52 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (12/21/2023 09:15:57 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (12/13/2023 06:36:04 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..
Error: (12/13/2023 06:36:04 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]
Error: (12/13/2023 06:35:55 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
System errors:
=============
Error: (12/31/2023 11:59:48 PM) (Source: DCOM) (EventID: 10010) (User: RADEK-PC)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/31/2023 11:19:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/31/2023 11:19:58 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).
Error: (12/31/2023 09:27:16 PM) (Source: DCOM) (EventID: 10000) (User: RADEK-PC)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (12/30/2023 01:00:57 PM) (Source: DCOM) (EventID: 10010) (User: RADEK-PC)
Description: Server Microsoft.MicrosoftOfficeHub_18.2306.1061.0_x64__8wekyb3d8bbwe!Microsoft.MicrosoftOfficeHub.AppXvhez9tbpytkh6zv5q0bx5fj12yay14wg.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/29/2023 04:35:22 PM) (Source: DCOM) (EventID: 10010) (User: RADEK-PC)
Description: Server microsoft.windowscommunicationsapps_16005.14326.21768.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/18/2023 07:19:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AppX Deployment Service (AppXSVC) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/18/2023 07:19:45 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby AppX Deployment Service (AppXSVC) bylo dosaženo časového limitu (30000 ms).
Windows Defender:
================
Date: 2023-12-28 20:26:51
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {95D578C5-A845-40AC-ABA5-8A02E5FCE528}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-12-27 16:26:05
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A41BBD83-BBE5-4C21-A09E-6BC3691886CE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-12-26 22:10:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {5EAE4D1E-8013-43E5-9F1B-CFA1E1231F5B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-12-25 16:28:25
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {2690F2B1-2B47-4AFC-B9F8-B6EF4CBFE56A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-12-22 17:36:41
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {983A67E9-CDC9-45AD-A011-C5E7193296D1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2023-03-16 21:43:34
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.383.1851.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20000.2
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2023-02-17 17:48:53
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.381.3377.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19900.2
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2023-02-17 17:42:51
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.381.3377.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19900.2
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2023-02-17 17:42:51
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.381.3377.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19900.2
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2022-12-29 12:32:41
Description:
Modul Antivirová ochrana v programu Microsoft Defender byl ukončen z důvodu neočekávané chyby.
Typ chyby: Chyba
Kód výjimky: 0xc0000005
Prostředek: kód modulu
: %7
CodeIntegrity:
===============
Date: 2024-01-01 08:55:48
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. V32.0 11/14/2013
Motherboard: MSI A55M-E33 (MS-7721)
Processor: AMD A8-6600K APU with Radeon(tm) HD Graphics
Percentage of memory in use: 53%
Total physical RAM: 5336.18 MB
Available physical RAM: 2472.53 MB
Total Virtual: 7453.6 MB
Available Virtual: 4314.21 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:930.46 GB) (Free:796.63 GB) (Model: ST1000DM003-1CH162) NTFS
\\?\Volume{d6e466e7-e9bb-4496-9ffb-93f082ae012a}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{c053c73b-0d8f-4cab-b4c9-9670bab8b6e5}\ () (Fixed) (Total:0.5 GB) (Free:0.07 GB) NTFS
\\?\Volume{9c7670fa-1f0f-4714-aa80-5b737f7265a1}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{2905df9e-8b88-11e8-b646-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)
\\?\Volume{2905df9f-8b88-11e8-b646-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)
\\?\Volume{2905dfa0-8b88-11e8-b646-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)
\\?\Volume{2905dfa1-8b88-11e8-b646-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)
\\?\Volume{2905dfa2-8b88-11e8-b646-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: CBB00C4C)
Partition: GPT.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-12-2023
Ran by User (administrator) on RADEK-PC (MSI MS-7721) (01-01-2024 09:24:29)
Running from C:\Users\User\Desktop\FRST64.exe
Loaded Profiles: User
Platform: Microsoft Windows 10 Home Version 22H2 19045.3803 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(explorer.exe ->) () [File not signed] C:\Program Files (x86)\Launchy\Launchy.exe
(explorer.exe ->) () [File not signed] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\ElsoftTray.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [417176 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4386664 2023-12-08] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\Run: [MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3854280 2023-12-21] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44486048 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [117248 2018-07-19] (pdfforge GmbH) [File not signed]
HKLM\...\Print\Monitors\us008 Langmon: C:\WINDOWS\system32\us008lm.dll [31256 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\120.0.6099.130\Installer\chrmstp.exe [2023-12-27] (Google LLC -> Google LLC)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Launchy.lnk [2018-07-19]
ShortcutTarget: Launchy.lnk -> C:\Program Files (x86)\Launchy\Launchy.exe () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ElsoftTray.exe [2012-07-06] () [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {9EBB662D-7A7F-43A6-B7CD-FE725F3A172F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {A4A5A227-4317-4B29-8084-40DB78BA3BA1} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5094808 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
Task: {819F8E66-E21D-419C-889F-0E5410285C4E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2144664 2023-12-28] (Avast Software s.r.o. -> Avast Software)
Task: {028ACC86-FDAB-4235-B534-D94B95B48F85} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {77880B2B-CF08-4A94-A3AC-040CD6CBE40F} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "0d05f0a8-c517-4de8-a6f3-4ea035b9cc91" --version "6.19.10858" --silent
Task: {27FF6539-4222-4CDD-AEB7-9F75C22773F9} - System32\Tasks\CCleanerSkipUAC - User => C:\Program Files\CCleaner\CCleaner.exe [37458848 2023-12-05] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {4AA9BD67-1F44-4103-BBFC-41C6F6C28275} - System32\Tasks\G2MUpdateTask-S-1-5-21-402010934-1184996246-2506667057-1001 => C:\Users\User\AppData\Local\GoToMeeting\19950\g2mupdate.exe [33456 2022-04-21] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {BD42CF62-60BA-4328-955F-8EE5969B4397} - System32\Tasks\G2MUploadTask-S-1-5-21-402010934-1184996246-2506667057-1001 => C:\Users\User\AppData\Local\GoToMeeting\19950\g2mupload.exe [33456 2022-04-21] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {F36C32F6-E01C-42F5-B8D7-13F8A1287B88} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-19] (Google Inc -> Google Inc.)
Task: {0C7FCAB5-F480-495D-BCA0-9D96E704FEC9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-19] (Google Inc -> Google Inc.)
Task: {877745AB-6F8E-4131-AEFD-9D60B76EA1BD} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => %windir%\system32\EOSNotify.exe (No File)
Task: {AFD177AC-22BF-4429-AE12-10134A95F9FA} - System32\Tasks\nBackup => run.vbs (No File)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-402010934-1184996246-2506667057-1001.job => C:\Users\User\AppData\Local\GoToMeeting\19950\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-402010934-1184996246-2506667057-1001.job => C:\Users\User\AppData\Local\GoToMeeting\19950\g2mupload.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b36844f9-0b6d-4b2d-9744-002b8d5f08c5}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{d1fbc0a9-2813-4433-bece-010e9ed26abf}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-01]
Edge Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-29]
Edge Extension: (Edge relevant text changes) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-11-30]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-11-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Profile 2
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2023-12-31]
CHR Extension: (Nordic Forest) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\amekpplpfocpmaimnmgfjoibodpjedie [2023-07-15]
CHR Extension: (uBlock Origin) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-11-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-12-31]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-12-31]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-11-17]
CHR Extension: (Under The Leaf) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ighhdikapddjihgaphbnbcgipafcamjk [2022-12-14]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-15]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-01-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-16]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-12-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-12-29]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2023-12-31]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [9065880 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [753048 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [1157528 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2023-12-28] (Avast Software s.r.o. -> AVAST Software)
S3 DialComService; C:\Program Files (x86)\DIAL GmbH\DIAL Communication Framework\DialComService.exe [2183440 2014-12-10] (DIAL -> DIAL GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31528 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [243136 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [394008 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297984 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [96064 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [26616 2023-12-28] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39752 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [276848 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [561888 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105352 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80528 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [952856 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [711664 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [213296 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [319672 2023-12-28] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 clwvd9; C:\WINDOWS\System32\drivers\clwvd9.sys [60984 2019-09-08] (CyberLink Corp. -> CyberLink Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [55856 2023-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [594304 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-01-01 09:24 - 2024-01-01 09:26 - 000017071 _____ C:\Users\User\Desktop\FRST.txt
2024-01-01 09:24 - 2024-01-01 09:24 - 000000000 ____D C:\Users\User\Desktop\FRST-OlderVersion
2023-12-31 23:59 - 2024-01-01 00:00 - 000000000 ____D C:\Users\User\Documents\Assassin's Creed IV Black Flag
2023-12-31 23:42 - 2023-12-31 23:42 - 000000233 _____ C:\Users\User\Desktop\Assassin's Creed IV Black Flag.url
2023-12-31 23:35 - 2024-01-01 01:46 - 000000000 ____D C:\Users\User\AppData\Local\Ubisoft Game Launcher
2023-12-31 23:35 - 2023-12-31 23:35 - 000001323 _____ C:\Users\User\Desktop\Ubisoft Connect.lnk
2023-12-31 23:35 - 2023-12-31 23:35 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2023-12-31 23:35 - 2023-12-31 23:35 - 000000000 ____D C:\ProgramData\Ubisoft
2023-12-31 23:35 - 2023-12-31 23:35 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2023-12-31 23:34 - 2023-12-31 23:34 - 234916808 _____ (Ubisoft) C:\Users\User\Downloads\UbisoftConnectInstaller.exe
2023-12-31 21:26 - 2023-12-31 21:26 - 000342752 _____ C:\Users\User\Documents\cc_20231231_212616.reg
2023-12-31 21:09 - 2024-01-01 08:53 - 000000000 ____D C:\Program Files\CCleaner
2023-12-31 21:09 - 2024-01-01 02:00 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-12-31 21:09 - 2024-01-01 02:00 - 000002952 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-12-31 21:09 - 2024-01-01 02:00 - 000002250 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - User
2023-12-31 21:09 - 2024-01-01 02:00 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-12-31 21:09 - 2023-12-31 21:09 - 000000823 _____ C:\Users\Public\Desktop\CCleaner.lnk
2023-12-31 21:09 - 2023-12-31 21:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2023-12-31 21:08 - 2023-12-31 21:09 - 078179328 _____ (Piriform Software Ltd) C:\Users\User\Downloads\ccsetup619.exe
2023-12-31 19:16 - 2023-12-31 19:19 - 2110772938 _____ C:\Users\User\Downloads\Assassin's Creed.mkv
2023-12-31 18:50 - 2024-01-01 02:00 - 000002648 _____ C:\WINDOWS\system32\Tasks\nBackup
2023-12-31 18:04 - 2023-12-31 18:04 - 000000000 ___HD C:\OneDriveTemp
2023-12-30 19:21 - 2023-12-30 19:22 - 000000000 ____D C:\Users\User\Downloads\Obrazy
2023-12-29 08:52 - 2024-01-01 09:25 - 000000000 ____D C:\FRST
2023-12-29 08:49 - 2024-01-01 09:24 - 002387456 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2023-12-29 08:24 - 2023-12-29 08:24 - 000000000 ___HD C:\$AV_ASW
2023-12-28 21:14 - 2023-12-28 21:14 - 000000000 ____D C:\Users\User\AppData\Local\Avast Software
2023-12-28 21:12 - 2023-12-28 21:12 - 000000000 ____D C:\Users\User\AppData\Roaming\Avast Software
2023-12-28 21:11 - 2023-12-28 21:11 - 000002120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2023-12-28 21:11 - 2023-12-28 21:11 - 000002108 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2023-12-28 21:09 - 2024-01-01 01:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-12-28 21:09 - 2023-12-29 16:35 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-12-28 21:08 - 2023-12-28 21:08 - 000314264 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-12-28 21:08 - 2023-12-28 21:08 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2023-12-28 21:07 - 2023-12-28 21:07 - 000000000 ____D C:\Program Files\Avast Software
2023-12-28 21:06 - 2023-12-31 21:30 - 000000000 ____D C:\ProgramData\Avast Software
2023-12-28 21:06 - 2023-12-28 21:06 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll
2023-12-14 18:47 - 2023-12-14 18:47 - 000000000 ____D C:\Users\User\AppData\Local\Backup
2023-12-13 20:02 - 2023-12-13 20:03 - 000000000 ____D C:\WINDOWS\InboxApps
2023-12-13 17:12 - 2023-12-13 17:12 - 000016707 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-12-13 16:19 - 2023-12-13 16:19 - 000000000 ___HD C:\$WinREAgent
2023-12-07 16:46 - 2023-12-07 16:46 - 000042621 _____ C:\Users\User\Downloads\zaloha202312_pisek_8161001.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-01-01 09:18 - 2020-09-21 09:48 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-01-01 09:18 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-01-01 09:08 - 2021-12-21 23:44 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-01-01 09:08 - 2018-07-19 19:33 - 000000000 ____D C:\Program Files (x86)\Google
2024-01-01 08:53 - 2018-07-19 19:30 - 000000000 ___RD C:\Users\User\OneDrive
2024-01-01 02:00 - 2021-12-11 00:23 - 000003062 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-402010934-1184996246-2506667057-1001
2024-01-01 02:00 - 2021-04-22 09:02 - 000003240 _____ C:\WINDOWS\system32\Tasks\G2MUploadTask-S-1-5-21-402010934-1184996246-2506667057-1001
2024-01-01 02:00 - 2021-04-22 09:02 - 000003144 _____ C:\WINDOWS\system32\Tasks\G2MUpdateTask-S-1-5-21-402010934-1184996246-2506667057-1001
2024-01-01 02:00 - 2021-04-22 09:02 - 000000646 _____ C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-402010934-1184996246-2506667057-1001.job
2024-01-01 02:00 - 2021-04-22 09:02 - 000000550 _____ C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-402010934-1184996246-2506667057-1001.job
2024-01-01 02:00 - 2020-09-21 10:08 - 000003566 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-01-01 02:00 - 2020-09-21 10:08 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-01-01 02:00 - 2020-09-21 10:08 - 000003410 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2024-01-01 02:00 - 2020-09-21 10:08 - 000003342 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-01-01 02:00 - 2020-09-21 10:08 - 000003186 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2024-01-01 02:00 - 2020-09-21 10:08 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-402010934-1184996246-2506667057-1001
2024-01-01 01:50 - 2021-12-31 16:37 - 000000000 ____D C:\Program Files (x86)\Steam
2023-12-31 23:20 - 2021-12-31 16:40 - 000000000 ____D C:\Users\User\AppData\Local\Steam
2023-12-31 21:30 - 2020-09-21 10:08 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-12-31 21:30 - 2020-09-21 09:48 - 000008192 ___SH C:\DumpStack.log.tmp
2023-12-31 21:29 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-12-31 21:29 - 2018-07-20 00:51 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2023-12-31 21:14 - 2018-07-19 19:37 - 000000000 ____D C:\Users\User\AppData\Local\PDFCreator
2023-12-31 21:14 - 2018-07-19 19:36 - 000000000 ____D C:\Program Files\PDFCreator
2023-12-31 21:12 - 2020-11-26 11:25 - 000000000 ____D C:\WINDOWS\Minidump
2023-12-31 21:12 - 2020-09-09 11:44 - 000000000 ___DC C:\WINDOWS\Panther
2023-12-31 21:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-12-31 21:08 - 2019-02-27 13:21 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc
2023-12-31 18:15 - 2023-10-19 13:44 - 000000000 ____D C:\Users\User\Downloads\X
2023-12-31 17:11 - 2020-02-21 16:59 - 000000000 ____D C:\Users\User\AppData\Roaming\GoPanda2
2023-12-29 08:58 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-12-29 08:42 - 2018-07-19 19:28 - 000000000 ____D C:\Users\User\AppData\Local\VirtualStore
2023-12-29 08:24 - 2018-07-19 20:33 - 000000000 ____D C:\Users\nBackup
2023-12-28 21:36 - 2018-07-19 19:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2023-12-28 21:36 - 2018-07-19 19:35 - 000000000 ____D C:\Program Files\7-Zip
2023-12-28 21:08 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-12-27 08:55 - 2018-07-19 19:34 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-12-24 18:18 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-24 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-12-24 17:11 - 2020-06-09 12:07 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-24 17:11 - 2020-06-09 12:07 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-12-16 09:51 - 2020-09-21 10:03 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-12-16 09:51 - 2019-12-07 15:41 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2023-12-16 09:51 - 2019-12-07 15:41 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2023-12-14 18:26 - 2018-07-19 19:28 - 000000000 ____D C:\Users\User\AppData\Local\ConnectedDevicesPlatform
2023-12-13 22:41 - 2018-07-19 19:28 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-12-13 20:09 - 2018-07-19 19:28 - 000000000 ____D C:\Users\User\AppData\Local\Packages
2023-12-13 20:06 - 2020-09-21 09:48 - 000376784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-12-13 20:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-12-13 20:03 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2023-12-13 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-12-13 17:22 - 2019-12-07 15:44 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-12-13 17:22 - 2019-12-07 15:44 - 000020827 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2023-12-13 17:22 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-12-13 17:12 - 2020-09-21 09:51 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-12-12 15:58 - 2020-09-21 09:51 - 000002374 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-12-07 16:04 - 2018-07-20 00:59 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
==================== Files in the root of some directories ========
2021-03-03 19:16 - 2022-01-05 19:46 - 000000014 _____ () C:\Users\User\AppData\Roaming\obs-virtualcam.txt
2022-01-15 14:42 - 2022-01-15 14:42 - 000000218 _____ () C:\Users\User\AppData\Local\recently-used.xbel
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-12-2023
Ran by User (01-01-2024 09:31:54)
Running from C:\Users\User\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3803 (X64) (2020-09-21 09:09:17)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-402010934-1184996246-2506667057-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-402010934-1184996246-2506667057-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-402010934-1184996246-2506667057-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-402010934-1184996246-2506667057-501 - Limited - Disabled)
User (S-1-5-21-402010934-1184996246-2506667057-1001 - Administrator - Enabled) => C:\Users\User
WDAGUtilityAccount (S-1-5-21-402010934-1184996246-2506667057-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
7-Zip 23.01 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2301-000001000000}) (Version: 23.01.00.0 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 23.006.20380 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 23.12.6094 - Avast Software)
Catalyst Control Center - Branding (HKLM-x32\...\{11087D24-567D-7D88-69C6-D7A08B5F4C47}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.19 - Piriform)
CEWE FOTOLAB fotosvet (HKLM-x32\...\CEWE FOTOLAB fotosvet) (Version: 7.1.4 - CEWE Stiftung u Co. KGaA)
CGoban (HKLM\...\{06648D2D-3B0D-3BE3-9466-C9BE616C6AAC}) (Version: 3.5.124 - Unknown)
DIAL Communication Framework (HKLM-x32\...\{562D0D31-FBAF-4505-8B27-4EC92EEA91D6}) (Version: 1.3.1.215 - DIAL GmbH)
DIAL Data Dispatcher (HKLM-x32\...\DIAL Data Dispatcher1.0) (Version: 1.0 - DIAL GmbH)
DIALux 4.13 (HKLM-x32\...\DIALux) (Version: 4.13.0.2 - DIAL GmbH)
Double Commander 0.7.5 beta (HKLM\...\Double Commander_is1) (Version: - )
Elektromotory - aplikace (HKLM-x32\...\Elektromotory - aplikace_is1) (Version: - Elektromotory - aplikace)
Elektrovýpočty Plus (HKLM-x32\...\Elektrovýpočty Plus_is1) (Version: - El soft)
Elsoft Tray (HKLM-x32\...\Elsoft Tray_is1) (Version: - Klimsa)
Google Chrome (HKLM\...\{6BE8C6A1-54E8-312E-A876-FF27463F3324}) (Version: 120.0.6099.130 - Google, Inc.)
GoPanda2 2.6.12 (HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\{e2f36056-c0db-5e0d-88c2-1e8cef3b389d}) (Version: 2.6.12 - Pandanet Inc.)
GoPanda2 2.8.1 (HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\e2f36056-c0db-5e0d-88c2-1e8cef3b389d) (Version: 2.8.1 - Pandanet Inc.)
GoTo Opener (HKLM-x32\...\{E69269DB-A77B-4BC1-8F39-241107B09F26}) (Version: 1.0.539 - LogMeIn, Inc.)
GoToMeeting 10.19.0.19950 (HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\GoToMeeting) (Version: 10.19.0.19950 - LogMeIn, Inc.)
IrfanView 4.51 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.51 - Irfan Skiljan)
Jištění kabelů (HKLM-x32\...\Jištění kabelů_is1) (Version: - El soft)
KlimsaZAKLAD (HKLM-x32\...\KlimsaZAKLAD_is1) (Version: - KLIMSA Software)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Launchy 2.5 (HKLM-x32\...\Launchy_21344213_is1) (Version: - Code Jelly)
LibreOffice 5.4.7.2 (HKLM\...\{26D12F93-E454-4637-9A5C-D52F6B4CC0DD}) (Version: 5.4.7.2 - The Document Foundation)
MaR SW (HKLM-x32\...\MaR SW_is1) (Version: - MaR SW)
Microsoft Access Runtime 2013 (HKLM\...\{90150000-001C-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Access Runtime 2013 (HKLM\...\Office15.AccessRT) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Access Runtime MUI (Czech) 2013 (HKLM\...\{90150000-001C-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 120.0.2210.91 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 120.0.2210.91 - Microsoft Corporation)
Microsoft Office 32-bit Components 2013 (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Czech) 2013 (HKLM\...\{90150000-00C1-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2013 (HKLM\...\{90150000-006E-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\OneDriveSetup.exe) (Version: 23.246.1127.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29325 (HKLM\...\{26AF0C35-55EC-4025-8D83-349E8FB1419F}) (Version: 14.28.29325 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29325 (HKLM\...\{7D0362D5-C699-4403-BC09-0C1DAD1D93AB}) (Version: 14.28.29325 - Microsoft Corporation) Hidden
nanoCAD 5.0 (HKLM-x32\...\{6D4250F7-DB33-4530-A9BD-A9D66BA34586}) (Version: 5.0.2520.2000 - Nanosoft)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.7 - Notepad++ Team)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.0.2 - OBS Project)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.2.2 - pdfforge GmbH)
POV-Ray for Windows v3.6.0 (HKLM-x32\...\POV-Ray for Windows v3.6) (Version: 3.6 - Persistence of Vision Raytracer Pty. Ltd.)
Skype verze 8.39 (HKLM-x32\...\Skype_is1) (Version: 8.39 - Skype Technologies S.A.)
Soudobost (HKLM-x32\...\Soudobost_is1) (Version: - KLIMSA Software)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.10 - Ghisler Software GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 148.2.10984 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{A7B60FC9-A750-43C7-B7EC-892CD09147C7}) (Version: 1.18.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.3 - VideoLAN)
Vnější vlivy QUICK (HKLM-x32\...\Vnější vlivy QUICK_is1) (Version: - KLIMSA Software)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2023-11-16] ()
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.41.11.0_x64__kgqvnymyfvs32 [2023-12-14] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.258.100.0_x64__kgqvnymyfvs32 [2023-12-14] (king.com)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.20.5101.0_x64__8wekyb3d8bbwe [2023-12-16] (Microsoft Studios)
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2018-09-05] (Samsung Electronics Co. Ltd.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-18] (Microsoft Studios) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-402010934-1184996246-2506667057-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-12-28] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-12-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2018-06-30] (Notepad++ -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-12-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2017-10-19] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-12-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2023-06-20] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2023-12-28] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-07-19 19:36 - 2009-12-17 00:18 - 000233472 _____ () [File not signed] C:\Program Files (x86)\Launchy\imageformats\qmng4.dll
2018-07-19 19:36 - 2010-04-03 13:06 - 000081920 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\calcy.dll
2018-07-19 19:36 - 2010-04-03 13:05 - 000090112 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\controly.dll
2018-07-19 19:36 - 2010-04-03 13:06 - 000024064 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\gcalc.dll
2018-07-19 19:36 - 2010-04-03 13:06 - 000094208 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\runner.dll
2018-07-19 19:36 - 2010-04-03 13:05 - 000057344 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\verby.dll
2018-07-19 19:36 - 2010-04-03 13:05 - 000122880 _____ () [File not signed] C:\Program Files (x86)\Launchy\plugins\weby.dll
2018-07-19 19:36 - 2009-12-16 21:54 - 002236416 _____ () [File not signed] C:\Program Files (x86)\Launchy\QtCore4.dll
2018-07-19 19:36 - 2009-12-16 22:13 - 008314880 _____ () [File not signed] C:\Program Files (x86)\Launchy\QtGui4.dll
2018-07-19 19:36 - 2009-12-16 21:56 - 000712704 _____ () [File not signed] C:\Program Files (x86)\Launchy\QtNetwork4.dll
2014-02-11 05:08 - 2014-02-11 05:08 - 000817152 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2015-11-04 15:43 - 2015-11-04 15:43 - 000214528 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2015-11-04 15:43 - 2015-11-04 15:43 - 000102400 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2014-02-11 05:08 - 2014-02-11 05:08 - 003650560 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2023-09-14 05:59 - 2023-09-14 05:59 - 000031232 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\A4.Foundation\481ffab5232d1254e92b4e2c4e470c3e\A4.Foundation.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000022528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Actions5dc83b46#\148c0b3431bb9eb8273207336081bfbe\AEM.Actions.CCAA.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.0a1309f7#\f1aa81cf97759f5d1d59fdfb7feaa8f9\AEM.Plugin.EEU.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.2b6a6775#\70f28493778d0e67698d628ea2376c7d\AEM.Plugin.Hotkeys.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.4adf1574#\a7e8bd90f01cc7c7fa877d7ed9f4abea\AEM.Plugin.Audio.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.54d8abe3#\9f9687c706d22a70fb676264dd5537d7\AEM.Plugin.DPPE.Shared.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000315904 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.5d945b6b#\97ff049e800c754353d5b00a9b1cfc0f\AEM.Plugin.Source.Kit.Server.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.674d2b8a#\88737cd3439e6057b1ff9b5f1391c801\AEM.Plugin.WinMessages.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.88aba5d2#\433707a9d103ea4e53f5ef91a9277dfa\AEM.Plugin.REG.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Plugin.GD.Shared\d3cfaedfbc789efad9981d6e03aeb43f\AEM.Plugin.GD.Shared.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server.Shared\78dcc26b1eb2c71c3bb7811d002813b3\AEM.Server.Shared.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000267776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\AEM.Server\39b1a2067dd59827c558f60f025d4e50\AEM.Server.ni.dll
2023-09-14 06:01 - 2023-09-14 06:01 - 000055808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Foundation\ce91c2f062d7a2c5bfaecf569c1620f3\APM.Foundation.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000122880 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ATICCCom\09a83f5026ac06a6d254117b19ee3b13\ATICCCom.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000203776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\e21ff9b83c6fc12617acab083cc2427b\CCC.Implementation.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.2042675f#\39e03391e163f59329c02f5b55cf225f\CLI.Aspect.CPUPStates.Fuel.Dashboard.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000128000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3399d0ec#\e52f7c5a049d625afee950f00df092c5\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.37d3d968#\b73b6d9a2470a21f03607799afe546b0\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2023-09-14 06:10 - 2023-09-14 06:10 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.382a3def#\794c62afbd28d58d01605fdbed27a264\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2023-09-14 06:07 - 2023-09-14 06:07 - 000107008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.3a6f1658#\beb1a4d88548e6332719b5a85b3ab6fb\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000209920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4542c692#\9f691579579636d4ce36d3e80c8ff402\CLI.Aspect.DeviceCRT.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.46819220#\599c6ff42b8e6b823d9ef3d54d11868f\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4bbb0755#\c2c8e6fdddc1ea71823310a67d045af5\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000152576 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.4ede500c#\8be42fd02a77b75a30ca150ceee16e4d\CLI.Aspect.DPPE.Fuel.Dashboard.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.52c6dbaa#\f3f86b1537fd14618a789c833ca7a3c9\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2023-09-14 06:05 - 2023-09-14 06:05 - 000074752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.59a12d95#\dd11a2ee1d66235180667750810df359\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000111616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.5a772e69#\099d0f5796264ef61aa1d558c7058f19\CLI.Aspect.Fets.Fuel.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000070656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.648b65fc#\25353301051de5cd62f982c9da97503b\CLI.Aspect.WiFi.Fuel.Dashboard.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000263168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.73911eb5#\90d0b53f65741eab59303489cc2db276\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000364544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.7ec2db45#\16318c6925b33de6a1338d7c1bf1bad3\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000064000 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8350f5c6#\73e470460b2ef3e336a30798a3a738bf\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000677888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.846fa813#\6f5fae9759ba0e96767e2f1dbf7c7b3b\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000745984 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8d333b6b#\de9e275c73d871c02188488ad0b28779\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000449536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.8e996306#\a7a0be71294c91b9bc7d4986fa8f90dd\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000089088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9cd1e9e7#\bf40c069731935f46d124ce7327be077\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000158208 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a0ae52bc#\5481889ae3e4ea891c40d718630f3571\CLI.Aspect.DeviceLCD.Graphics.Shared.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a6cd7fff#\6e2f7051afedb7fa2d93a85e95082fa4\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000082944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.a765109e#\3cdbc26e44a99fb54d3259d7d83c3adf\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000462336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.acb9d930#\f7b5ea3eb14b4a5dbe55edc4e1474329\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000086528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ae5e117c#\873924d0500d226cb383241446d97544\CLI.Aspect.DisplaysColour2.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000067072 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.b0a7c1fb#\0c93a0ff5217dcaa78b1ba21acd5ec20\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2023-09-14 06:07 - 2023-09-14 06:07 - 000023552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c2a2b491#\5043fac7dc9569f70527a70497269900\CLI.Aspect.WiFi.Fuel.Shared.ni.dll
2023-09-14 06:05 - 2023-09-14 06:05 - 000340992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c7aaa0f8#\5b8b8621387c962ca46b8d5129e22897\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000017920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.c854b457#\eb456f0115c339383aafab61976657b4\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000081408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.caa5cc64#\3b9e4fae0d48b272409f5d35276287e4\CLI.Aspect.Fets.Fuel.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 001315840 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.d7e090dc#\f09ded1a9fc16b3048eaadc28e927dae\CLI.Aspect.User.Fuel.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000276480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e8635fc7#\b86c1d1fc903e85bd73724dc2a6bcfa3\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 003313664 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e9fd7406#\d64b6cdd350315abed8e3e587ba9e0af\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000240640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.eda8935e#\f0b5880da65a47a25cbc8be6937f5464\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2023-09-14 06:07 - 2023-09-14 06:07 - 000047616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ef3eaa4d#\5fc67e564cca847b093cce50e8d03674\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000070656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.efd83192#\cb56d3fbb154a21420a3221643cea3fc\CLI.Aspect.CPUPStates.Fuel.Shared.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000057856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f45bd021#\aff09b36c196163c704c2dfac60e9b98\CLI.Aspect.DPPE.Fuel.Shared.ni.dll
2023-09-14 06:07 - 2023-09-14 06:07 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.f480a2f3#\0355c46469110a7e16364c53a6f923d2\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000051200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Runtime\575983ebb8f8f465130664e5f547346f\CLI.Caste.A4.Runtime.ni.dll
2023-09-14 06:02 - 2023-09-14 06:02 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.A4.Shared\1f232c46f6ebeaebeef3dc31b361ff65\CLI.Caste.A4.Shared.ni.dll
2023-10-29 11:51 - 2023-10-29 11:51 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Af820fedc#\fe669f5f096682457447308b1b871f78\CLI.Caste.A4.Dashboard.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F24de14fe#\37c4836a2cb1cc039594fefd65566430\CLI.Caste.Fuel.Shared.ni.dll
2023-09-14 06:08 - 2023-09-14 06:08 - 000311296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.F36b07a2b#\eeb1507a8234cc5a1b55a1dd16698ebe\CLI.Caste.Fuel.Runtime.ni.dll
2023-10-29 11:51 - 2023-10-29 11:51 - 000027136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Ff3085433#\469e91e0e8b2efb9cdcd28d855e11c72\CLI.Caste.Fuel.Dashboard.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60338cc0#\9d2d84387295d1ea0c9ed1aba20f06b0\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 001556480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gd9d9b43b#\1a11830ccb1c725b8b7b06549e952149\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000587776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Gee7d2dbc#\daf11e9b601ac5557172562ce249ff6b\CLI.Caste.Graphics.Dashboard.ni.dll
2023-09-14 06:09 - 2023-09-14 06:09 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H18c99613#\39ab0e32960148069bc89c0362c80e3d\CLI.Caste.HydraVision.Runtime.ni.dll
2023-09-14 06:09 - 2023-09-14 06:09 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.H92ba4e46#\d8876fe3fe13050f5bbb6201c4c123dc\CLI.Caste.HydraVision.Shared.ni.dll
2023-10-29 11:52 - 2023-10-29 11:52 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Hbb906c0b#\e79974662f270088eebe4dd9ee79db5b\CLI.Caste.HydraVision.Dashboard.ni.dll
2023-09-14 06:09 - 2023-09-14 06:09 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pac40511b#\94608adb60c21e19633ce2596ce44e61\CLI.Caste.Platform.Shared.ni.dll
2023-09-14 06:09 - 2023-09-14 06:09 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pdb36d56e#\a4255fe3ad4485d225da85d8611025ac\CLI.Caste.Platform.Runtime.ni.dll
2023-10-29 11:52 - 2023-10-29 11:52 - 000024064 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.Pfeefa2b6#\f9972a6c8d988ada9863722ae76aa12a\CLI.Caste.Platform.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000350208 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combinee84f0351#\d83eb12edc3c62e0715f17442224aba5\CLI.Combined.Fusion.Aspects.Runtime.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone1b4a8c97#\fdbe7c1dbbee2f2ca8c812da5455ffe5\CLI.Component.Runtime.Shared.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000901632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone26c9c557#\1f3dfd2848fced58908b67834c1fd49c\CLI.Component.Systemtray.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000173568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone29e547cc#\f39e8f09372995516af50fa875adff03\CLI.Component.Dashboard.ProfileManager2.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000151040 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone59f353b4#\32f935aa27a3335dfbcafd328225655e\CLI.Component.Runtime.Shared.Private.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000017408 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componeb4d0485c#\8631c248d557ed68eb0093ba23d73762\CLI.Component.Runtime.Extension.EEU.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 001609728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componec89c3bec#\d77a07957556a3d9b623bda60aedec2b\CLI.Component.Dashboard.Shared.Private.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef1fd67b2#\04f954006faaffcfabdfcf7985e50759\CLI.Component.Client.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000085504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Componef4cf054f#\5f2a362b97f3c1d083ebc8cb5a51da3f\CLI.Component.Dashboard.Shared.ni.dll
2023-09-14 06:01 - 2023-09-14 06:01 - 000089600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat3d5d3945#\183079995032e8cbcedda1b9f46ff5b9\CLI.Foundation.Private.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\69cd35b7f248c256bfa07db79865ccd2\CLI.Foundation.XManifest.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000091136 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundat619559bd#\e669b554abf8ac526294f5b38062b74f\CLI.Foundation.CoreAudioAPI.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 001080320 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundatd3771151#\ca6f57cd1ed98aa43941d424ca9ad84d\CLI.Foundation.Client.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\bb150fb8254c7702a3ce1d702b9ee027\CLI.Foundation.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Foundation\7452095f8ae4958faa06a27a798e888b\DEM.Foundation.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000115200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0601\5366429cee88f11debbc72f3d9d0ba44\DEM.Graphics.I0601.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics\fd515db4fe1d24647e3e73e4924a78e2\DEM.Graphics.ni.dll
2023-09-14 06:08 - 2023-09-14 06:08 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Fuel.Foundation\2b0838ff37a991812a212f5c7fbaa965\Fuel.Foundation.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000297472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\ba74ec66405c721ea90669b2c60ccb6c\LOG.Foundation.Implementation.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\6dda88337122d5425acb5599842adb77\LOG.Foundation.Private.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\539eaaeb20f83855c030870b76eda7de\LOG.Foundation.Implementation.Private.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\e72e3134ec5e2d3d99d28ab87cf38a9a\LOG.Foundation.ni.dll
2023-09-14 06:01 - 2023-09-14 06:01 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\641553296904fee8092e40b7d91ad9c5\MOM.Foundation.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000402432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\c62f6f049d0d34ee0d24ac877abbae96\MOM.Implementation.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000055296 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\NEWAEM.Foundation\bb7e855917ce8469a0a1891ab2ba975c\NEWAEM.Foundation.ni.dll
2023-09-14 06:00 - 2023-09-14 06:00 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ADL.Foundation\e580a5ccc646df4dc2eaa6e81e139fe6\ADL.Foundation.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 000256000 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\APM.Server\e907c129e0636143bca779f3049192e1\APM.Server.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000298496 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.9b707b25#\8172c3594beff61d53e738a7b71703cc\CLI.Aspect.DeviceProperty.Graphics.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 001654272 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.aa59351a#\c927d74e9d664effd3fb993ee9d6602c\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 006336512 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.e6d9f3a8#\b7db85121993b31e3937f245840e63d4\CLI.Aspect.DeviceDFP.Graphics.Dashboard.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 008028160 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine0616f305#\7ea5f35a10c4635247ce717272cee867\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 001160192 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Combine7332395e#\6b7c6212edc3195d41aba84c7830309e\CLI.Combined.Graphics.Aspects2.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000136704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone168638d1#\39f3ef970e2d00b8bb2865dda147fe3a\CLI.Component.Client.Shared.Private.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000235008 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6692ca50#\d84b454d53526566d8f0e4ad0fbe65e1\CLI.Component.Runtime.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000929280 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Compone6bf88b08#\67bc8fff449fa94976c39be26c5ce967\CLI.Component.Dashboard.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0706\8a2485e5b161b1422e82ec86c0316a55\DEM.Graphics.I0706.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000084480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0709\c721ba5b66a059d9a82d5b07f3162ab8\DEM.Graphics.I0709.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000012288 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0712\b17d04bcda14f6455cc104ee9783c9c5\DEM.Graphics.I0712.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000018432 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0804\16dde392ebdd22bd55aa93f66bc22843\DEM.Graphics.I0804.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0805\f4c2a9208b4b95ec74656407206fa260\DEM.Graphics.I0805.ni.dll
2023-09-14 06:11 - 2023-09-14 06:11 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0812\d8148a0e5542279acc32f7c685e64748\DEM.Graphics.I0812.ni.dll
2023-09-14 06:08 - 2023-09-14 06:08 - 000013312 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0906\d15cdcd4953024ffa327fba2b4acc841\DEM.Graphics.I0906.ni.dll
2023-09-14 06:03 - 2023-09-14 06:03 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I0912\0ca62694d5afc8dad4740afd4f565792\DEM.Graphics.I0912.ni.dll
2023-09-14 06:08 - 2023-09-14 06:08 - 000035840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DEM.Graphics.I1010\476d401f42da64616ccb8b009a9231ec\DEM.Graphics.I1010.ni.dll
2023-09-14 06:01 - 2023-09-14 06:01 - 001139200 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Localizatio01dbc1c0#\6682ab50c98f3f1dc1ff64845f8f9ba1\Localization.Foundation.Private.ni.dll
2023-11-17 18:26 - 2023-11-17 18:26 - 000244736 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceMan446ca0e5#\eb0c7188342b00921b2fecfee2b1e629\ResourceManagement.Foundation.Implementation.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000023552 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\ResourceManf163905a#\ee600ecb40f828fc86b041fc6cb11d07\ResourceManagement.Foundation.Private.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000091648 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Aspect.ec8786e5#\710b3d0df4860447f5487af3df745bed\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2023-11-17 18:24 - 2023-11-17 18:24 - 002845696 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G60a7b4d1#\7acaffd7089ff7c1e86a44fcc2b53548\CLI.Caste.Graphics.Shared.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 003267584 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\CLI.Caste.G962aa464#\431a4c0a70df6c335d475497bb3456b7\CLI.Caste.Graphics.Runtime.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 000335360 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.W8090224c#\6b543036388ea8365f269b7850503400\Microsoft.WindowsAPICodePack.ni.dll
2023-11-17 18:25 - 2023-11-17 18:25 - 002582016 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.Wfbf9373c#\9a84d0b56645252138633d0530985e45\Microsoft.WindowsAPICodePack.Shell.ni.dll
2018-07-19 19:37 - 2018-07-19 19:37 - 000117248 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: DIALux Browser Helper Object -> {F586CB96-7091-42ec-9829-F5D5CE65AFC1} -> C:\Program Files (x86)\DIALux\Dialux.BHO_x86.dll [2013-12-10] (DIAL -> DIAL GmbH)
Handler-x32: dialux - {8352FA4C-39C6-11D3-ADBA-00A0244FB1A2} - C:\Program Files (x86)\DIALux\DLXToolBox.dll [2017-11-08] (DIAL GmbH, Germany) [File not signed]
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2016-07-16 12:47 - 2016-07-16 12:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-402010934-1184996246-2506667057-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-402010934-1184996246-2506667057-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\User\Pictures\1351672308349.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-402010934-1184996246-2506667057-1001\...\StartupApproved\Run: => "Steam"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0C821B7A-05E5-4204-AEA1-94D9B21148A5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{805138B4-1D26-4EFA-B1EF-350F76F31334}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6A34BB55-6135-4921-BFFE-7B4D8D18D7F6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{451E17E6-A2B6-434F-B299-CEC087263016}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{89971355-1097-4C2A-84CB-F20AC49245F6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{531BD88B-A92C-4355-AC11-DCCD6D901368}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6761D5F3-AA1B-498D-A891-B7536D760A29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Baldur's Gate II Enhanced Edition\Baldur.exe (Overhaul Games™) [File not signed]
FirewallRules: [{438A1A7B-3341-4E85-BDF2-5E648FDDBFE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Baldur's Gate II Enhanced Edition\Baldur.exe (Overhaul Games™) [File not signed]
FirewallRules: [{2B976170-E68D-4C72-993B-49017AAA2FA2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{02D5F6C2-B958-41CD-8686-87808D1DA69E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{C03FD772-92EE-42B8-B69F-FD0E4D18D03C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2C4FCB80-F944-4BDD-9A2B-7ADA5D3F15F2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8AC2F31B-268F-4FCC-A916-5C7B86D19268}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F8BD110C-2518-4A7C-AC67-F417AD59C3B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DADD0378-D3CB-4214-B996-C53098149323}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.91\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0104EF86-1222-4907-9B69-A0E91F5950EE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{7D18A7EC-2BFB-4E10-8525-7CCA6E8FEF72}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{948A0EA5-3852-4D54-8267-2359922DDBCB}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E9C55BB5-0E6F-4FB8-BB71-1E69913394AA}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{2751AE58-D74D-4B54-8261-46EC16D393F2}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{57B3B818-2437-46BC-8227-A59BF4FF12F7}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{BF330337-410A-4701-B1AE-3A99A21BF622}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
==================== Restore Points =========================
21-12-2023 11:13:16 Naplánovaný kontrolní bod
30-12-2023 10:16:42 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/31/2023 11:57:45 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač..
Operace:
Spouštění asynchronní operace
Kontext:
Aktuální stav: DoSnapshotSet
Error: (12/31/2023 06:10:45 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Users\User\Downloads\X\Autoruns.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.3636_none_a863d714867441db.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.3636_none_60b6a03d71f818d5.manifest.
Error: (12/29/2023 08:24:41 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program wscript.exe verze 5.812.10240.16384 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: a8c
Čas spuštění: 01da3a26b83ba121
Čas ukončení: 36
Cesta k aplikaci: C:\Windows\System32\wscript.exe
ID hlášení: c7b96744-7632-4730-bab4-940c885451d8
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (12/27/2023 10:04:52 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (12/21/2023 09:15:57 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (12/13/2023 06:36:04 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..
Error: (12/13/2023 06:36:04 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]
Error: (12/13/2023 06:35:55 PM) (Source: ATIeRecord) (EventID: 16391) (User: )
Description: ATI EEU maximum number of session has been surpassed
System errors:
=============
Error: (12/31/2023 11:59:48 PM) (Source: DCOM) (EventID: 10010) (User: RADEK-PC)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/31/2023 11:19:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/31/2023 11:19:58 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).
Error: (12/31/2023 09:27:16 PM) (Source: DCOM) (EventID: 10000) (User: RADEK-PC)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (12/30/2023 01:00:57 PM) (Source: DCOM) (EventID: 10010) (User: RADEK-PC)
Description: Server Microsoft.MicrosoftOfficeHub_18.2306.1061.0_x64__8wekyb3d8bbwe!Microsoft.MicrosoftOfficeHub.AppXvhez9tbpytkh6zv5q0bx5fj12yay14wg.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/29/2023 04:35:22 PM) (Source: DCOM) (EventID: 10010) (User: RADEK-PC)
Description: Server microsoft.windowscommunicationsapps_16005.14326.21768.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/18/2023 07:19:45 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AppX Deployment Service (AppXSVC) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/18/2023 07:19:45 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby AppX Deployment Service (AppXSVC) bylo dosaženo časového limitu (30000 ms).
Windows Defender:
================
Date: 2023-12-28 20:26:51
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {95D578C5-A845-40AC-ABA5-8A02E5FCE528}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-12-27 16:26:05
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A41BBD83-BBE5-4C21-A09E-6BC3691886CE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-12-26 22:10:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {5EAE4D1E-8013-43E5-9F1B-CFA1E1231F5B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-12-25 16:28:25
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {2690F2B1-2B47-4AFC-B9F8-B6EF4CBFE56A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-12-22 17:36:41
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {983A67E9-CDC9-45AD-A011-C5E7193296D1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2023-03-16 21:43:34
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.383.1851.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20000.2
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2023-02-17 17:48:53
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.381.3377.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19900.2
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2023-02-17 17:42:51
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.381.3377.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19900.2
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2023-02-17 17:42:51
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.381.3377.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19900.2
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.
Date: 2022-12-29 12:32:41
Description:
Modul Antivirová ochrana v programu Microsoft Defender byl ukončen z důvodu neočekávané chyby.
Typ chyby: Chyba
Kód výjimky: 0xc0000005
Prostředek: kód modulu
: %7
CodeIntegrity:
===============
Date: 2024-01-01 08:55:48
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. V32.0 11/14/2013
Motherboard: MSI A55M-E33 (MS-7721)
Processor: AMD A8-6600K APU with Radeon(tm) HD Graphics
Percentage of memory in use: 53%
Total physical RAM: 5336.18 MB
Available physical RAM: 2472.53 MB
Total Virtual: 7453.6 MB
Available Virtual: 4314.21 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:930.46 GB) (Free:796.63 GB) (Model: ST1000DM003-1CH162) NTFS
\\?\Volume{d6e466e7-e9bb-4496-9ffb-93f082ae012a}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{c053c73b-0d8f-4cab-b4c9-9670bab8b6e5}\ () (Fixed) (Total:0.5 GB) (Free:0.07 GB) NTFS
\\?\Volume{9c7670fa-1f0f-4714-aa80-5b737f7265a1}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{2905df9e-8b88-11e8-b646-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)
\\?\Volume{2905df9f-8b88-11e8-b646-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)
\\?\Volume{2905dfa0-8b88-11e8-b646-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)
\\?\Volume{2905dfa1-8b88-11e8-b646-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)
\\?\Volume{2905dfa2-8b88-11e8-b646-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: CBB00C4C)
Partition: GPT.
==================== End of Addition.txt =======================
Re: Prosím o preventivku
pouzi fixlist:
Kód: Vybrat vše
Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {F36C32F6-E01C-42F5-B8D7-13F8A1287B88} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-19] (Google Inc -> Google Inc.)
Task: {0C7FCAB5-F480-495D-BCA0-9D96E704FEC9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-07-19] (Google Inc -> Google Inc.)
Task: {877745AB-6F8E-4131-AEFD-9D60B76EA1BD} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => %windir%\system32\EOSNotify.exe (No File)
Task: {AFD177AC-22BF-4429-AE12-10134A95F9FA} - System32\Tasks\nBackup => run.vbs (No File)
EmptyTemp:
End
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?