Také zdravím!
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-05-2021 01
Ran by Libor (administrator) on TOSHIBA (TOSHIBA Satellite L670) (31-05-2021 19:54:27)
Running from C:\Users\Libor\Downloads
Loaded Profiles: Libor & Lucka
Platform: Microsoft Windows 10 Pro Version 21H1 19043.985 (X86) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Canon Inc. -> CANON INC.) C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Canon Inc. -> CANON INC.) C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE
(Canon Inc. -> CANON INC.) C:\Program Files\Canon\Quick Menu\CNQMUPDT.EXE
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft\Edge\Application\msedge.exe <25>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2105.19601.0_x86__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x86__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x86__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x86__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [748744 2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (Canon Inc. -> CANON INC.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3537088 2016-11-23] (Synaptics Incorporated -> Synaptics Incorporated)
HKU\S-1-5-21-3008401269-3218036977-856998312-1003\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46638976 2021-03-12] (Google LLC -> )
HKU\S-1-5-21-3008401269-3218036977-856998312-1003\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3008401269-3218036977-856998312-1003\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Libor\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-3008401269-3218036977-856998312-1003\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Libor\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-3008401269-3218036977-856998312-1003\...\RunOnce: [Uninstall 21.073.0411.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Libor\AppData\Local\Microsoft\OneDrive\21.073.0411.0002"
HKU\S-1-5-21-3008401269-3218036977-856998312-1005\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3008401269-3218036977-856998312-1005\...\MountPoints2: F - "F:\Autorun.exe"
HKU\S-1-5-21-3008401269-3218036977-856998312-1006\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3008401269-3218036977-856998312-1006\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Klárka\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-3008401269-3218036977-856998312-1006\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Klárka\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-3008401269-3218036977-856998312-1006\...\RunOnce: [Uninstall 21.073.0411.0002] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Klárka\AppData\Local\Microsoft\OneDrive\21.073.0411.0002"
HKU\S-1-5-21-3008401269-3218036977-856998312-1012\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows NT x86\Print Processors\Canon MG3500 series Print Processor: C:\Windows\System32\spool\prtprocs\W32X86\CNMPDBV.DLL [29184 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows NT x86\Print Processors\Canon MG6100 series Print Processor: C:\Windows\System32\spool\prtprocs\W32X86\CNMPDAG.DLL [29184 2012-03-14] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3500 series: C:\WINDOWS\system32\CNMLMBV.DLL [317952 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3500 series XPS: C:\WINDOWS\system32\CNMXLMBV.DLL [320000 2013-04-04] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG6100 series: C:\WINDOWS\system32\CNMLMAG.DLL [311296 2012-03-14] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMNPPM.DLL [366592 2013-01-24] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [98816 2020-11-02] (pdfforge GmbH) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-13] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {26046804-0E2D-4F65-A35A-4BA51E4C9D2C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [504544 2021-05-19] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4B681EDB-B894-4A74-B256-920DF02A2EAF} - System32\Tasks\klcp_update => C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-06-17] () [File not signed]
Task: {5835F66C-40D1-4288-AB94-DB911EF89544} - System32\Tasks\CCleanerClean => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6D4CDD5D-3178-4347-A9F4-369E438F54B7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-05-20] (Piriform Software Ltd -> Piriform)
Task: {70A02FA5-A69B-4E89-952F-281AA9AAC437} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [504544 2021-05-19] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7F99F091-3061-492F-9C0D-8CC511ACE891} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [282800 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {8C586B90-E6F8-4FAC-996E-7C3BAE94BFFD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [504544 2021-05-19] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BAB6DAD2-2195-43D7-839A-3C8010251825} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [282800 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {BE588E8D-01D6-48A9-8294-8A90BE6919F2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C40E89EB-DA4E-4FA7-BB49-FE511721CFAC} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1051864 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7894A93-7278-4E31-A692-5B2E98818388} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [155432 2019-11-22] (Google Inc -> Google LLC)
Task: {CC345878-1171-44B2-AEDD-0E5E51232306} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [504544 2021-05-19] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CDE78E56-137B-4357-A50A-EB84C2E70CED} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [155432 2019-11-22] (Google Inc -> Google LLC)
Task: {ED9760A4-17DA-4050-82CD-821101046849} - System32\Tasks\DriverToolkit Autorun => C:\Program Files\DriverToolkit\DriverToolkit.exe
Task: {F851CB4D-A292-499E-A130-690F5970FD17} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerClean.job => C:\Program Files\CCleaner\CCleaner.exe
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files\DriverToolkit\DriverToolkit.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{036201c7-9aab-407e-9f16-5ae1c0493cce}: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{8c532214-16fa-4ff5-b854-440eabccce0b}: [DhcpNameServer] 10.0.1.138
Edge:
=======
DownloadDir: C:\Users\Libor\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-3008401269-3218036977-856998312-1003 -> hxxp://
www.seznam.cz/
Edge Session Restore: HKU\S-1-5-21-3008401269-3218036977-856998312-1003 -> is enabled.
Edge Notifications: HKU\S-1-5-21-3008401269-3218036977-856998312-1003 -> hxxps://photos.google.com
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Libor\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-31]
Edge DownloadDir: Default -> C:\Users\Libor\Downloads
Edge Notifications: Default -> hxxps://photos.google.com
Edge HomePage: Default -> hxxp://
www.seznam.cz/
Edge Session Restore: Default -> is enabled.
FireFox:
========
FF DefaultProfile: ud5396wf.default
FF ProfilePath: C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\ud5396wf.default [2019-11-23]
FF ProfilePath: C:\Users\Libor\AppData\Roaming\Mozilla\Firefox\Profiles\pwk5fq5c.default-release [2021-05-31]
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2019-07-02] (CANON INC.) [File not signed]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default [2021-05-23]
CHR Extension: (Prezentace) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-11-22]
CHR Extension: (Dokumenty) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-11-22]
CHR Extension: (Disk Google) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-26]
CHR Extension: (YouTube) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-11-22]
CHR Extension: (Tabulky) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-11-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-03]
CHR Extension: (Gmail) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-26]
CHR Extension: (Chrome Media Router) - C:\Users\Libor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-17]
CHR Profile: C:\Users\Libor\AppData\Local\Google\Chrome\User Data\System Profile [2021-05-23]
CHR HKU\S-1-5-21-3008401269-3218036977-856998312-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [223216 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4120648 2021-05-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [225984 2016-11-23] (Synaptics Incorporated -> Synaptics Incorporated)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [263504 2021-03-23] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\NisSrv.exe [1716720 2021-05-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe [87640 2021-05-19] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [19525104 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [542192 2015-12-16] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT3.sys [82432 2015-07-21] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63.sys [6811648 2019-12-07] (Microsoft Windows -> Broadcom Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [746752 2017-01-23] (Realtek Semiconductor Corp -> Realtek)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [44224 2016-11-23] (Synaptics Incorporated -> Synaptics Incorporated)
R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [42088 2015-12-30] (TOSHIBA CORPORATION -> Toshiba Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [39320 2021-05-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [327904 2021-05-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53480 2021-05-19] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-05-31 19:54 - 2021-05-31 19:55 - 000018837 _____ C:\Users\Libor\Downloads\FRST.txt
2021-05-31 19:54 - 2021-05-31 19:54 - 000000000 ____D C:\FRST
2021-05-31 19:51 - 2021-05-31 19:53 - 002012672 _____ (Farbar) C:\Users\Libor\Downloads\FRST.exe
2021-05-31 19:43 - 2021-05-31 19:43 - 001107968 _____ C:\Users\Libor\Downloads\RSIT.exe
2021-05-31 19:43 - 2021-05-31 19:43 - 000000000 ____D C:\rsit
2021-05-31 19:43 - 2021-05-31 19:43 - 000000000 ____D C:\Program Files\trend micro
2021-05-31 19:39 - 2021-05-31 19:39 - 002012672 _____ (Farbar) C:\Users\Libor\Downloads\Nepotvrzeno 44174.crdownload
2021-05-29 07:50 - 2021-05-30 08:46 - 000000000 ____D C:\Users\Libor\AppData\Local\Avast Software
2021-05-29 07:48 - 2021-05-29 07:48 - 000000000 ____D C:\Users\Petra Bastlová\AppData\Local\CEF
2021-05-29 07:44 - 2021-05-30 08:46 - 000000000 ____D C:\ProgramData\Avast Software
2021-05-13 21:27 - 2021-05-13 21:27 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-13 21:27 - 2021-05-13 21:27 - 001434352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-13 21:27 - 2021-05-13 21:27 - 001356800 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-13 21:27 - 2021-05-13 21:27 - 001128528 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-13 21:27 - 2021-05-13 21:27 - 000941568 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-13 21:27 - 2021-05-13 21:27 - 000475648 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-13 21:27 - 2021-05-13 21:27 - 000115200 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-05-13 20:43 - 2021-05-13 20:43 - 000001759 _____ C:\Users\Petra Bastlová\Documents\Kde jsou moje soubory.lnk
2021-05-13 20:43 - 2021-05-13 20:43 - 000001561 _____ C:\Users\Petra Bastlová\Desktop\Kde jsou moje soubory.lnk
2021-05-02 18:40 - 2021-05-02 18:40 - 000022721 _____ C:\Users\Lucka\Downloads\luciebastlova-2021-0007.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-05-31 19:53 - 2020-04-04 07:51 - 000000000 ____D C:\Program Files\CCleaner
2021-05-31 19:44 - 2019-12-07 08:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-31 19:38 - 2019-11-22 19:11 - 000000000 ____D C:\Users\Libor\Documents\Poznámky outlook
2021-05-31 19:23 - 2019-12-03 00:21 - 000000000 ___HD C:\Users\Libor\Documents\.tmp.drivedownload
2021-05-31 19:21 - 2020-09-19 19:15 - 000003362 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3008401269-3218036977-856998312-1003
2021-05-31 19:21 - 2020-09-19 08:24 - 000002361 _____ C:\Users\Libor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-31 19:21 - 2019-11-22 18:59 - 000000000 ___RD C:\Users\Libor\OneDrive
2021-05-31 19:18 - 2020-09-19 19:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-30 10:45 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-30 10:32 - 2019-11-24 08:57 - 000000000 ____D C:\Users\Petra Bastlová\AppData\Local\Packages
2021-05-30 10:31 - 2020-09-19 19:15 - 000002890 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-05-30 10:30 - 2020-09-19 19:14 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-30 10:30 - 2019-12-07 14:21 - 000717844 _____ C:\WINDOWS\system32\perfh005.dat
2021-05-30 10:30 - 2019-12-07 14:21 - 000144986 _____ C:\WINDOWS\system32\perfc005.dat
2021-05-30 10:30 - 2019-12-07 08:10 - 000000000 ____D C:\WINDOWS\INF
2021-05-30 08:47 - 2019-12-03 00:20 - 000000000 ___RD C:\Users\Libor\Disk Google
2021-05-30 08:46 - 2020-09-19 19:15 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-30 08:46 - 2020-09-19 19:07 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-30 08:46 - 2019-12-07 08:03 - 001835008 _____ C:\WINDOWS\system32\config\BBI
2021-05-30 08:45 - 2019-12-07 08:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-05-30 08:37 - 2019-12-07 08:12 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-30 07:57 - 2020-06-04 23:45 - 000002382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-30 07:57 - 2019-11-22 19:50 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-30 07:54 - 2019-12-07 08:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-30 07:53 - 2020-09-19 19:15 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-05-29 07:47 - 2019-12-07 08:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-05-26 08:17 - 2020-09-19 19:15 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3008401269-3218036977-856998312-1006
2021-05-26 08:17 - 2020-09-19 08:24 - 000002364 _____ C:\Users\Klárka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-26 08:17 - 2019-12-02 20:53 - 000000000 ___RD C:\Users\Klárka\OneDrive
2021-05-26 08:16 - 2019-12-07 08:12 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-23 07:01 - 2020-04-04 08:31 - 000000000 ____D C:\Users\Public\Documents\Registry záloha
2021-05-23 07:01 - 2020-04-04 08:31 - 000000000 ____D C:\ProgramData\Documents\Registry záloha
2021-05-22 17:22 - 2019-11-22 19:23 - 000000000 ____D C:\Users\Lucka\AppData\Local\PlaceholderTileLogoFolder
2021-05-19 19:27 - 2019-11-22 18:15 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-05-13 22:06 - 2020-09-19 19:07 - 000343888 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-13 22:05 - 2019-12-07 14:23 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-05-13 22:05 - 2019-12-07 14:22 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-13 22:05 - 2019-12-07 08:12 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-13 22:05 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-13 22:05 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-13 22:05 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-13 22:05 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-13 22:05 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-13 22:05 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-13 22:05 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-13 22:05 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-05-13 22:05 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-13 22:05 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-13 22:05 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-13 22:05 - 2019-12-07 08:12 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-13 21:50 - 2019-12-07 14:22 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2021-05-13 21:29 - 2019-12-07 14:23 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-13 21:20 - 2019-11-23 20:39 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-13 21:16 - 2019-11-23 20:39 - 128989056 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-13 21:15 - 2019-11-22 20:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2021-05-13 20:47 - 2019-11-22 19:14 - 000000000 ____D C:\Users\Klárka\AppData\Local\Packages
2021-05-13 20:43 - 2020-09-19 08:24 - 000000000 ____D C:\Users\Petra Bastlová
2021-05-13 20:41 - 2019-11-24 09:02 - 000000000 ___RD C:\Users\Petra Bastlová\OneDrive
2021-05-13 20:20 - 2019-11-22 19:44 - 000002106 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-04 04:08 - 2021-03-01 10:18 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-05-02 18:41 - 2020-09-19 19:15 - 000003572 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-05-02 18:41 - 2020-09-19 19:15 - 000003448 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-05-02 18:40 - 2020-09-19 19:15 - 000003362 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3008401269-3218036977-856998312-1005
2021-05-02 18:40 - 2020-09-19 08:24 - 000002361 _____ C:\Users\Lucka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-02 18:40 - 2019-11-22 19:20 - 000000000 ___RD C:\Users\Lucka\OneDrive
2021-05-02 18:40 - 2019-11-22 19:17 - 000000000 ____D C:\Users\Lucka\AppData\Local\Packages
2021-05-01 11:34 - 2020-09-19 19:15 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3008401269-3218036977-856998312-1012
2021-05-01 11:34 - 2020-09-19 08:24 - 000002388 _____ C:\Users\Petra Bastlová\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-01 07:39 - 2020-09-19 19:15 - 000003460 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-05-01 07:39 - 2020-09-19 19:15 - 000003336 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-05-01 07:38 - 2019-11-24 09:00 - 000000000 ____D C:\Users\Petra Bastlová\AppData\Local\PlaceholderTileLogoFolder
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-05-2021 01
Ran by Libor (31-05-2021 19:55:51)
Running from C:\Users\Libor\Downloads
Microsoft Windows 10 Pro Version 21H1 19043.985 (X86) (2020-09-19 17:15:38)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3008401269-3218036977-856998312-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3008401269-3218036977-856998312-503 - Limited - Disabled)
Guest (S-1-5-21-3008401269-3218036977-856998312-501 - Limited - Disabled)
Klárka (S-1-5-21-3008401269-3218036977-856998312-1006 - Administrator - Enabled) => C:\Users\Klárka
Libor (S-1-5-21-3008401269-3218036977-856998312-1003 - Administrator - Enabled) => C:\Users\Libor
Lucka (S-1-5-21-3008401269-3218036977-856998312-1005 - Administrator - Enabled) => C:\Users\Lucka
petra (S-1-5-21-3008401269-3218036977-856998312-1007 - Limited - Disabled)
Petra Bastlová (S-1-5-21-3008401269-3218036977-856998312-1012 - Administrator - Enabled) => C:\Users\Petra Bastlová
WDAGUtilityAccount (S-1-5-21-3008401269-3218036977-856998312-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.001.20155 - Adobe Systems Incorporated)
AMD Catalyst Control Center (HKLM\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Backup and Sync from Google (HKLM\...\{A90F4C82-A9E4-4A9A-8CE0-FB59F1D59E20}) (Version: 3.55.3625.9414 - Google, Inc.)
Canon Easy-WebPrint EX (HKLM\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM\...\Canon_IJ_Network_UTILITY) (Version: 3.3.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG3500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3500_series) (Version: 1.01 - Canon Inc.)
Canon MG3500 series On-screen Manual (HKLM\...\Canon MG3500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM\...\Canon My Image Garden) (Version: 3.6.4 - Canon Inc.)
Canon My Image Garden Design Files (HKLM\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.80 - Piriform)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Excel (HKU\S-1-5-21-3008401269-3218036977-856998312-1012\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
Gmail (HKLM\...\Gmail_is1) (Version: - Buster Collings)
Google Chrome (HKLM\...\Google Chrome) (Version: 90.0.4430.212 - Google LLC)
K-Lite Codec Pack 15.7.0 Full (HKLM\...\KLiteCodecPack_is1) (Version: 15.7.0 - KLCP)
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 91.0.864.37 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3008401269-3218036977-856998312-1003\...\OneDriveSetup.exe) (Version: 21.083.0425.0003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3008401269-3218036977-856998312-1005\...\OneDriveSetup.exe) (Version: 21.073.0411.0002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3008401269-3218036977-856998312-1006\...\OneDriveSetup.exe) (Version: 21.083.0425.0003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3008401269-3218036977-856998312-1012\...\OneDriveSetup.exe) (Version: 21.073.0411.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{389456AD-8CD0-42D6-866A-531330AE8372}) (Version: 2.77.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 67.0 (x86 cs) (HKLM\...\Mozilla Firefox 67.0 (x86 cs)) (Version: 67.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 67.0 - Mozilla)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM\...\{90150000-001F-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM\...\{90150000-001F-041B-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Outlook (HKU\S-1-5-21-3008401269-3218036977-856998312-1012\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
PDFCreator (HKLM\...\{00010FEF-82A2-497E-983A-7105A0364FA7}) (Version: 4.2.0 - pdfforge GmbH)
PowerPoint (HKU\S-1-5-21-3008401269-3218036977-856998312-1012\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Registrace uživatele zařízení Canon MG3500 series (HKLM\...\Registrace uživatele zařízení Canon MG3500 series) (Version: - Canon Inc.)
Registrace uživatele zařízení Canon MG6100 series (HKLM\...\Registrace uživatele zařízení Canon MG6100 series) (Version: - )
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.16.3 - Synaptics Incorporated)
The Sims 2 (HKLM\...\{6E7DD182-9FC6-4651-0095-2E666CC6AF35}) (Version: - )
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 9.22a - Ghisler Software GmbH)
Update for Skype for Business 2015 (KB4484289) 32-Bit Edition (HKLM\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{F97B139A-D8BF-46FF-A6F6-50710FED8644}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 32-Bit Edition (HKLM\...\{90150000-012B-0405-0000-0000000FF1CE}_Office15.PROPLUS_{F97B139A-D8BF-46FF-A6F6-50710FED8644}) (Version: - Microsoft)
Word (HKU\S-1-5-21-3008401269-3218036977-856998312-1012\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)
Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x86__8wekyb3d8bbwe [2020-02-13] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.5170.0_x86__8wekyb3d8bbwe [2021-05-30] (Microsoft Studios) [MS Ad]
OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_19.23.16.0_x86__8wekyb3d8bbwe [2021-05-30] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2021-03-12] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2021-03-12] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2021-03-12] (Google LLC -> Google)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell.dll [2020-06-22] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2021-03-12] (Google LLC -> Google)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2020-07-10] (Dev Code-Sign -> pdfforge GmbH) [File not signed] [File is in use]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2021-03-12] (Google LLC -> Google)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell.dll [2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll [2015-11-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell.dll [2020-06-22] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell.dll [2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\system32\vp6vfw.dll [442368 2005-02-26] (On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\system32\vp6vfw.dll [442368 2005-02-26] (On2.com) [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2021-05-30 08:47 - 2021-05-30 08:47 - 000089088 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\_ctypes.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000134656 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\_elementtree.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 001625600 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\_hashlib.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000027648 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\_multiprocessing.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000036864 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\_psutil_windows.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000046080 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\_socket.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 002049024 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\_ssl.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000020480 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\_yappi.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000069120 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\bz2.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000013312 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\common.time34.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000007168 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\hashobjs_ext.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000218624 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\PIL._imaging.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000132608 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\pyexpat.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000736256 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\pysqlite2._sqlite.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000364544 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\pythoncom27.dll
2021-05-30 08:47 - 2021-05-30 08:47 - 000110080 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\pywintypes27.dll
2021-05-30 08:47 - 2021-05-30 08:47 - 000010240 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\select.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000017920 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\thumbnails_ext.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000686080 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\unicodedata.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000083456 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\usb_ext.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000098816 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\win32api.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000320512 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\win32com.shell.shell.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000011264 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\win32crypt.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000018432 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\win32event.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000119808 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\win32file.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000167936 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\win32gui.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000038912 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\win32inet.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000025600 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\win32pdh.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000024064 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\win32pipe.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000035840 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\win32process.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000017408 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\win32profile.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000108544 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\win32security.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000022528 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\win32ts.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000027136 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\windows.conditional.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000031232 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\windows.connectivity.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000055296 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\windows.device_monitor.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000082432 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\windows.volumes.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000016896 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\windows.winwrap.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 001067520 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\wx._controls_.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 001177088 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\wx._core_.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000806912 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\wx._gdi_.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000077824 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\wx._html2.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000733696 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\wx._misc_.pyd
2021-05-30 08:47 - 2021-05-30 08:47 - 000816640 _____ () [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\wx._windows_.pyd
2021-05-26 08:35 - 2021-05-26 08:35 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\A4.Foundation\95c18d9f6ad7b22014cd86ab18314f90\A4.Foundation.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000019456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AEM.Actions5dc83b46#\3bb8946083d49242f04dcf3da3d46ba5\AEM.Actions.CCAA.Shared.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000011264 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AEM.Plugin.0a1309f7#\3013a0d374c4db35a2a7d36e9a5021aa\AEM.Plugin.EEU.Shared.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000014336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AEM.Plugin.2b6a6775#\12d34b0644fd9d5d714fe1d09ec311fe\AEM.Plugin.Hotkeys.Shared.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AEM.Plugin.54d8abe3#\b900b8cb4f97455335efdf300f97421b\AEM.Plugin.DPPE.Shared.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000227840 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AEM.Plugin.5d945b6b#\6d87cf190a31966ec1f9ed585b921f43\AEM.Plugin.Source.Kit.Server.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AEM.Plugin.674d2b8a#\2a00e171c108f6be7de6d3ef60feb49d\AEM.Plugin.WinMessages.Shared.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000010752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AEM.Plugin.88aba5d2#\7a3964a9f58fe90ac9e7ae3c6889874b\AEM.Plugin.REG.Shared.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000009728 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AEM.Plugin.GD.Shared\f5f06c1da4ac3e3a86a75b73add2fc61\AEM.Plugin.GD.Shared.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000011264 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AEM.Server.Shared\dc4a7492816c68bb89da80bc1fa4d936\AEM.Server.Shared.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000209920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\AEM.Server\c023f0bd51142b0d6f4e0932f453caee\AEM.Server.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\APM.Foundation\a127912c170d76a0dd286517a349ab59\APM.Foundation.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000092160 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ATICCCom\98d2c426f5ba16691e7fc91f22e8c6f8\ATICCCom.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000166400 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CCC.Implementation\ebba3ea841528e64f6751181b603c3cd\CCC.Implementation.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000139264 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.21d2ac78#\a3f90dfd374654d319cb97d71960642f\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000105472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.3399d0ec#\c95505e1f197ece71202400ed6c0cfd7\CLI.Aspect.CustomFormats.Graphics.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000022016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.37d3d968#\73ccfc8d7e3e3ce4cd1e9b9b0e5e95bc\CLI.Aspect.AMDHome.Graphics.Shared.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.382a3def#\31e7010be91fc62078b38599717170f8\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000088576 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.3a6f1658#\5781b578e4050faf8731ecd58c16124c\CLI.Aspect.TransCode.Graphics.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000171520 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.4542c692#\d6b78b51b3f87753877c5e3c01d1f18c\CLI.Aspect.DeviceCRT.Graphics.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000109568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.46819220#\eb625d5aef3e2f51ad102bd71a689787\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000063488 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.4bbb0755#\fb4ce0f334d3a8bf386a6c4cf5480dbf\CLI.Aspect.TransCode.Graphics.Dashboard.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000031232 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.52c6dbaa#\5581f114e7a26ba03c707baeb5b29664\CLI.Aspect.FPS.Graphics.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000061952 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.59a12d95#\23d1c1fdc9ae04028b2225417ad561eb\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000207360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.73911eb5#\4f712a3095209a7b6ef881a53ac9d2cd\CLI.Aspect.WirelessDisplay.Graphics.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000295936 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.7ec2db45#\8cb032d3c91d91cde7ceda4f3cffb400\CLI.Aspect.DeviceDFP.Graphics.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000054784 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.8350f5c6#\41beb247a14a3f33117938446b2496b8\CLI.Aspect.UpdateNotification.Graphics.Runtime.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000586752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.846fa813#\35c7086dcb825535ee5ae52c11abd819\CLI.Aspect.MMVideo.Graphics.Dashboard.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000605184 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.8d333b6b#\3a4534b0ea2a3f578f13e2be3717ca6a\CLI.Aspect.Radeon3D.Graphics.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000431104 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.8e996306#\de83a30026a9e915260d1cc101912f38\CLI.Aspect.CrossDisplay.Graphics.Dashboard.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000075776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.9cd1e9e7#\affe8ae79717e63784f1336540dfdbf4\CLI.Aspect.FPS.Graphics.Dashboard.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000129024 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.a0ae52bc#\e23bbdf28f6177b035d9ede5958beb9c\CLI.Aspect.DeviceLCD.Graphics.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000048640 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.a6cd7fff#\20292c7d1510a3af345cdde5d602cb77\CLI.Aspect.FPS.Graphics.Runtime.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000070144 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.a765109e#\09430c6cd5f8cd21ac34ef88e29f79df\CLI.Aspect.UpdateNotification.Graphics.Dashboard.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000382976 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.acb9d930#\275ed599461cd27068b97cd3d09e1858\CLI.Aspect.DeviceProperty.Graphics.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000071680 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.ae5e117c#\253df1b91b113ae348a5461932007188\CLI.Aspect.DisplaysColour2.Graphics.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000055808 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.b0a7c1fb#\62894ab27c15f37de1f9480ae225231d\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000279552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.c7aaa0f8#\c61ce8af4b83da8f788f6c3fa20c94ee\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.c854b457#\b68b823ade3e79f2594965b7bd2c4788\CLI.Aspect.HotkeysHandling.Graphics.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000224768 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.e8635fc7#\201aa438cf0cfa84ca8908ff8bcd0fbf\CLI.Aspect.InfoCentre.Graphics.Dashboard.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 003188224 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.e9fd7406#\de8294d1a75812d54cb260cea78573c6\CLI.Aspect.Radeon3D.Graphics.Dashboard.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000198656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.eda8935e#\6ed88f7fdb45ff5dd75d251436f1b1e8\CLI.Aspect.MMVideo.Graphics.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000038400 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.ef3eaa4d#\395e817a0b7af0afb7378838bd385f5b\CLI.Aspect.TransCode.Graphics.Runtime.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000041472 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.f480a2f3#\7c3b3d6cf1e5465745504839477cddd5\CLI.Aspect.UpdateNotification.Graphics.Shared.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000043008 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.A4.Runtime\afc961099b661f7b182d8bb7291b5316\CLI.Caste.A4.Runtime.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.A4.Shared\858d3487a46cbb7d68d9c61f12eb5442\CLI.Caste.A4.Shared.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000022016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Af820fedc#\d5e401f1e59033e32b425e39616fda01\CLI.Caste.A4.Dashboard.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.F24de14fe#\7573890432a3b131453fa5fc260f5d05\CLI.Caste.Fuel.Shared.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000255488 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.F36b07a2b#\03b9059d33b68b1f991e956372926fff\CLI.Caste.Fuel.Runtime.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000022016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Ff3085433#\632d74d26f8d3e1a51034fb5505923d9\CLI.Caste.Fuel.Dashboard.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000029696 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.G60338cc0#\a1b5c75c93511ef67b927b890c5b59dd\CLI.Caste.Graphics.Runtime.Shared.Private.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 001476608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Gd9d9b43b#\4cfd752df2d94f8a8e65d0e4adb54324\CLI.Caste.Graphics.Dashboard.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000497152 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Gee7d2dbc#\fa4fb2f7d0047923014276a76bad129c\CLI.Caste.Graphics.Dashboard.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000036864 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.H18c99613#\15e949c5ca4d13d33949ea1c72c86ece\CLI.Caste.HydraVision.Runtime.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000025088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.H92ba4e46#\d2e3cf8beca6a866939e4b8b4adcd374\CLI.Caste.HydraVision.Shared.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000020992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Hbb906c0b#\f04c2c4fd809a748b957436129688a30\CLI.Caste.HydraVision.Dashboard.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000025088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Pac40511b#\a1d1ff8d2daccf78bcbea7d39ca6db10\CLI.Caste.Platform.Shared.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000035840 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Pdb36d56e#\769b15dd221e0e9dd466bb4476b45602\CLI.Caste.Platform.Runtime.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000019456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Pfeefa2b6#\003dbd3f4a01e896d89f25ba5099fb9f\CLI.Caste.Platform.Dashboard.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000010240 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Compone1b4a8c97#\aac563fe56e9e934a56d842a3261c4fd\CLI.Component.Runtime.Shared.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000815104 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Compone26c9c557#\12f29ab9706d1225e021897d8445dfab\CLI.Component.Systemtray.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000149504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Compone29e547cc#\3bc2dd5748666ac3291ec2141c0a5133\CLI.Component.Dashboard.ProfileManager2.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000124928 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Compone59f353b4#\3ebb67c22f2b37854a678504d60e2522\CLI.Component.Runtime.Shared.Private.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Componeb4d0485c#\7ea265c755b17512245f1764fab55be6\CLI.Component.Runtime.Extension.EEU.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 001570304 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Componec89c3bec#\77a06d413ecfaf4965aa7bc396f01aad\CLI.Component.Dashboard.Shared.Private.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Componef1fd67b2#\557ce3affccdf1980c51bf62a39aba42\CLI.Component.Client.Shared.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000068608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Componef4cf054f#\8bef6353a8d22a31d01c4e387e0bc4a0\CLI.Component.Dashboard.Shared.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000076800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Foundat3d5d3945#\6f677ed2a9ae0857c441bbad1aa09a3a\CLI.Foundation.Private.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Foundat60cdf5df#\b476e34029d92e72d93fa69fbe38dd2b\CLI.Foundation.XManifest.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000069120 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Foundat619559bd#\39b03eaa511cc5009c17b215546f05f4\CLI.Foundation.CoreAudioAPI.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000921088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Foundatd3771151#\3f280df19ff2ed58da8a6f1104f3f6d1\CLI.Foundation.Client.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000249344 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Foundation\cc867a7bd47c46f8ad4dd19dc67a64bc\CLI.Foundation.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000019456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DEM.Foundation\67903765b9a6f6079b574764a56b6119\DEM.Foundation.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000086528 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DEM.Graphics.I0601\e0353de77469470b44308c5559955bec\DEM.Graphics.I0601.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DEM.Graphics\88850e2d9488922ba30c4fbef6c24e0c\DEM.Graphics.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000030720 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Fuel.Foundation\a353bdaef9748bda9edf54cadb4b6571\Fuel.Foundation.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000239104 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\LOG.Foundat03490438#\01156761f2e6f40ec3596ccb98b34f6d\LOG.Foundation.Implementation.ni.dll
2021-05-26 08:35 - 2021-05-26 08:35 - 000123392 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\LOG.Foundat5023f8e7#\2e43bfc71433b09c850b8a9583e6761c\LOG.Foundation.Private.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000068608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\LOG.Foundatcaafa75b#\29b389bdc111e9aa522c78e40883c61b\LOG.Foundation.Implementation.Private.ni.dll
2021-05-26 08:35 - 2021-05-26 08:35 - 000104448 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\LOG.Foundation\004ff768153abfac2d2c24d5c4796f8d\LOG.Foundation.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000010240 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MOM.Foundation\f02d21c85884aa4b48d718c5b428f699\MOM.Foundation.ni.dll
2021-05-26 08:39 - 2021-05-26 08:39 - 000335360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\MOM.Implementation\b74a525705b401a74f838e987f69e4b9\MOM.Implementation.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NEWAEM.Foundation\a9644d694e109987ca446bfce987f195\NEWAEM.Foundation.ni.dll
2015-11-04 17:40 - 2015-11-04 17:40 - 000005120 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiamcsy.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000692224 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ADL.Foundation\1fceb05c3a36324ceea88f0340bd1892\ADL.Foundation.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000216576 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\APM.Server\bc50cf19c5138b3a841595347e5329de\APM.Server.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000250368 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.9b707b25#\cc5c1ed849174f56e570c128fe2ab35c\CLI.Aspect.DeviceProperty.Graphics.Runtime.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 001597440 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.aa59351a#\8acbdf8fb07f46a9bd1704d3ae1eccd2\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 006256128 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.e6d9f3a8#\2a6db46933dd8639a4ad083d4e2fff3d\CLI.Aspect.DeviceDFP.Graphics.Dashboard.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 007810560 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Combine0616f305#\e54e034df29308013bb53dcce5f015c6\CLI.Combined.Graphics.Aspects1.Dashboard.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000972288 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Combine7332395e#\a152d4eb8653584f47e2a79266b5f46d\CLI.Combined.Graphics.Aspects2.Runtime.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000112128 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Compone168638d1#\d8602b4679cb3e43b9015352d95ae67a\CLI.Component.Client.Shared.Private.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000194560 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Compone6692ca50#\b42b4e61cd8692856e0a45d985523888\CLI.Component.Runtime.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000791040 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Compone6bf88b08#\6810cc76b43be269cf07297949011ab7\CLI.Component.Dashboard.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DEM.Graphics.I0706\9ec830fa7afdbd683243d2070f5ecd0a\DEM.Graphics.I0706.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000067072 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DEM.Graphics.I0709\ad14e7391ac961fcffaa272e2904debe\DEM.Graphics.I0709.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000010240 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DEM.Graphics.I0712\de01a006c32568a1aac4b8a8814f54ca\DEM.Graphics.I0712.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000014336 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DEM.Graphics.I0804\92f7316aece7584710913682f529c9fe\DEM.Graphics.I0804.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000009216 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DEM.Graphics.I0805\e3bfedaea1f50281662a9569ebebb301\DEM.Graphics.I0805.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000009216 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DEM.Graphics.I0812\8baac0bcdf6d90394078fe0c91ea0ed3\DEM.Graphics.I0812.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000010752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DEM.Graphics.I0906\255e448bce2ed6b04aa86b0b5c9ad02c\DEM.Graphics.I0906.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000011264 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DEM.Graphics.I0912\0e2c8e2535813ff6775344392e88e93f\DEM.Graphics.I0912.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 000025088 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\DEM.Graphics.I1010\381558f489b7eb75951d5ab521fb7351\DEM.Graphics.I1010.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 001038848 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Localizatio01dbc1c0#\73683ad2769b5b76ac7e32943c92e0ae\Localization.Foundation.Private.ni.dll
2021-05-26 08:39 - 2021-05-26 08:39 - 000228864 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ResourceMan446ca0e5#\e12495ebb12002b46cea32442274ffc3\ResourceManagement.Foundation.Implementation.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 000019968 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ResourceManf163905a#\3a52d6acfffd2f1194a66a0b048db9d1\ResourceManagement.Foundation.Private.ni.dll
2021-05-26 08:37 - 2021-05-26 08:37 - 000078336 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.ec8786e5#\316b986a5c2460df23ccb8a34e1914b8\CLI.Aspect.AMDHome.Graphics.Dashboard.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 002351104 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.G60a7b4d1#\58bb2fd44cd4676fe629a36e10e2ae10\CLI.Caste.Graphics.Shared.ni.dll
2021-05-26 08:38 - 2021-05-26 08:38 - 002763776 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CLI.Caste.G962aa464#\071107b0a41b23f20bcdabdb190caee2\CLI.Caste.Graphics.Runtime.ni.dll
2020-07-07 17:43 - 2017-07-05 13:49 - 000593920 _____ (CANON INC.) [File not signed] [File is in use] C:\Program Files\Canon\Quick Menu\CNQMMWRP.dll
2020-07-07 19:48 - 2013-02-19 16:37 - 000008192 _____ (CANON INC.) [File not signed] C:\Program Files\Canon\IJ Network Scanner Selector EX\CNSS_CSY.DLL
2020-07-07 19:48 - 2013-02-19 16:36 - 000307200 _____ (CANON INC.) [File not signed] C:\Program Files\Canon\IJ Network Scanner Selector EX\CNSS_IMG.dll
2020-07-07 17:43 - 2017-07-05 13:43 - 000561152 _____ (CANON INC.) [File not signed] C:\Program Files\Canon\Quick Menu\CCL.dll
2020-03-03 23:06 - 2012-03-14 06:00 - 000311296 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMLMAG.DLL
2020-07-07 17:44 - 2013-01-24 09:23 - 000366592 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMNPPM.DLL
2019-12-14 15:51 - 2012-03-14 06:00 - 000029184 _____ (CANON INC.) [File not signed] C:\WINDOWS\system32\spool\PRTPROCS\W32X86\CNMPDAG.DLL
2021-05-26 08:36 - 2021-05-26 08:36 - 000269312 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.W8090224c#\4cdeb6a9388b2f52de8e75ed05b56caf\Microsoft.WindowsAPICodePack.ni.dll
2021-05-26 08:36 - 2021-05-26 08:36 - 002021888 _____ (Microsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.Wfbf9373c#\697b1aa8b71fa5d0831d94ba65fb60d0\Microsoft.WindowsAPICodePack.Shell.ni.dll
2020-11-02 18:11 - 2020-11-02 18:11 - 000098816 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll
2021-05-30 08:47 - 2021-05-30 08:47 - 002480128 _____ (Python Software Foundation) [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\python27.dll
2021-05-30 08:47 - 2021-05-30 08:47 - 000155136 _____ (wxWidgets development team) [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\wxbase30u_net_vc90.dll
2021-05-30 08:47 - 2021-05-30 08:47 - 002030592 _____ (wxWidgets development team) [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\wxbase30u_vc90.dll
2021-05-30 08:47 - 2021-05-30 08:47 - 001251328 _____ (wxWidgets development team) [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\wxmsw30u_adv_vc90.dll
2021-05-30 08:47 - 2021-05-30 08:47 - 004796928 _____ (wxWidgets development team) [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\wxmsw30u_core_vc90.dll
2021-05-30 08:47 - 2021-05-30 08:47 - 000601088 _____ (wxWidgets development team) [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\wxmsw30u_html_vc90.dll
2021-05-30 08:47 - 2021-05-30 08:47 - 000110080 _____ (wxWidgets development team) [File not signed] C:\Users\Libor\AppData\Local\Temp\_MEI73282\wxmsw30u_webview_vc90.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-3008401269-3218036977-856998312-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://
www.seznam.cz/
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2019-08-19] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 04:43 - 2019-03-19 04:43 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3008401269-3218036977-856998312-1003\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-3008401269-3218036977-856998312-1005\Control Panel\Desktop\\Wallpaper -> C:\Users\Lucka\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-3008401269-3218036977-856998312-1006\Control Panel\Desktop\\Wallpaper -> C:\Users\Klárka\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-3008401269-3218036977-856998312-1012\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.1.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-3008401269-3218036977-856998312-1003\...\StartupApproved\Run: => "OneDrive"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{9E919E20-BE88-4A5B-923B-46B62D1FB037}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D9E93667-0143-49F6-B33F-F757600F0334}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{6B5BDFE0-F615-47BC-867B-CFFF10EE34D6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A98FA4EC-56F6-440C-98B9-B1BD5B2DE891}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C581A757-E005-4FF6-85E3-CE9C31FEEE73}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{42F63722-FCAC-493F-A49F-427C6C5E40B3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2EB94702-4B8C-4DA1-BA45-34BC5E661C1A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C3F814A8-5A91-456C-883E-DBC55F2BE906}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1C3D4AFB-0F86-422E-9A3D-9BB4EA2C773F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4B69AAAC-414C-48D4-B809-AD7336BF225A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4DD42813-1885-4F48-B84B-F1BCCDA8A058}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7822122D-81D7-40EB-B027-6A1C8A6278A4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C0EBF6B8-9A16-475F-93CA-85757FB79C01}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2A6C4C54-02C8-47E9-BE22-FEBE6C42F335}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B366935F-57A7-49C5-8C75-900956281B27}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B3ED128A-543D-4B52-B8EE-D03EB1402484}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E2D98136-F848-4F97-99BD-56C0893368CB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AB495C8C-215B-4C91-A33D-5CC6D2498AE7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E353FF9B-6D63-4D2E-B683-A90F9058DA99}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1718DAD0-D58B-4827-88B1-BDE2457377CF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{694B1E35-1F3F-48A5-99D8-07308159A43E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{98D25274-4371-4D74-AD7F-6D157E70B72A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B189D311-1E23-4D41-B0AB-C65680DBD631}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.160.672.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
==================== Restore Points =========================
01-05-2021 07:38:21 Instalační služba modulů systému Windows
13-05-2021 21:20:25 Instalační služba modulů systému Windows
26-05-2021 08:46:36 Naplánovaný kontrolní bod
30-05-2021 07:54:17 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/30/2021 07:56:08 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (05/30/2021 07:56:08 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (05/30/2021 07:56:08 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (05/30/2021 07:56:08 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (05/30/2021 07:54:20 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (05/26/2021 08:46:39 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (05/26/2021 08:16:13 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 2804, identifikátor PID ProfSvc: 1648.
Error: (05/26/2021 08:16:13 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 1312, identifikátor PID ProfSvc: 1648.
System errors:
=============
Error: (05/30/2021 12:58:06 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (05/30/2021 10:47:29 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (05/30/2021 08:50:52 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (05/30/2021 08:36:40 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (05/30/2021 08:07:36 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (05/30/2021 08:05:28 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Aktualizovat službu Orchestrator se po přijetí pokynu pro vypnutí neukončila správně.
Error: (05/29/2021 08:02:47 AM) (Source: DCOM) (EventID: 10010) (User: TOSHIBA)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/29/2021 08:02:47 AM) (Source: DCOM) (EventID: 10010) (User: TOSHIBA)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================
Date: 2021-05-31 19:50:55
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Fuerboos.B!cl
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Libor\Downloads\FRST.exe; webfile:_C:\Users\Libor\Downloads\FRST.exe|
https://download.bleepingcomputer.com/d ... 0541277311
Původ detekce: Internet
Typ detekce: Konkrétní
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: TOSHIBA\Libor
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.339.1761.0, AS: 1.339.1761.0, NIS: 1.339.1761.0
Verze modulu: AM: 1.1.18100.6, NIS: 1.1.18100.6
Date: 2021-05-31 19:50:54
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Fuerboos.B!cl
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Libor\Downloads\FRST.exe; webfile:_C:\Users\Libor\Downloads\FRST.exe|
https://download.bleepingcomputer.com/d ... 0541277311
Původ detekce: Internet
Typ detekce: FastPath
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: TOSHIBA\Libor
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.339.1761.0, AS: 1.339.1761.0, NIS: 1.339.1761.0
Verze modulu: AM: 1.1.18100.6, NIS: 1.1.18100.6
Date: 2021-05-31 19:47:33
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Fuerboos.B!cl
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Libor\AppData\Local\Temp\MicrosoftEdgeDownloads\bd084ef9-cb61-43db-a9b3-602081e1bd6a\FRST.exe; webfile:_C:\Users\Libor\AppData\Local\Temp\MicrosoftEdgeDownloads\bd084ef9-cb61-43db-a9b3-602081e1bd6a\FRST.exe|
https://download.bleepingcomputer.com/d ... 8528227650
Původ detekce: Internet
Typ detekce: FastPath
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: TOSHIBA\Libor
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.339.1761.0, AS: 1.339.1761.0, NIS: 1.339.1761.0
Verze modulu: AM: 1.1.18100.6, NIS: 1.1.18100.6
Date: 2021-05-31 19:39:37
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Fuerboos.B!cl
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Libor\Downloads\FRST.exe; webfile:_C:\Users\Libor\Downloads\FRST.exe|
https://download.bleepingcomputer.com/d ... 3743693264
Původ detekce: Internet
Typ detekce: FastPath
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: TOSHIBA\Libor
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.339.1761.0, AS: 1.339.1761.0, NIS: 1.339.1761.0
Verze modulu: AM: 1.1.18100.6, NIS: 1.1.18100.6
Date: 2021-05-28 19:19:15
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {F1866D6B-C591-46D0-B9AB-71322B8E764C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-05-13 20:22:41
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.339.615.0
Předchozí verze bezpečnostních informací: 1.337.549.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18100.6
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.
Date: 2021-05-13 20:22:41
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.339.615.0
Předchozí verze bezpečnostních informací: 1.337.549.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18100.6
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.
Date: 2021-05-13 20:22:41
Description:
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.18100.6
Předchozí verze modulu: 1.1.18100.5
Uživatel: NT AUTHORITY\SYSTEM
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.
Date: 2021-05-01 11:33:33
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.335.1114.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18000.5
Kód chyby: 0x80070643
Popis chyby: Při instalaci došlo k závažné chybě.
Date: 2021-05-01 11:33:30
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.337.321.0
Předchozí verze bezpečnostních informací: 1.335.1114.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18100.5
Předchozí verze modulu: 1.1.18000.5
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.
CodeIntegrity:
===============
Date: 2021-05-30 08:41:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: TOSHIBA 2.30 08/02/11
Motherboard: TOSHIBA NALAA
Processor: Intel(R) Core(TM) i5 CPU M 460 @ 2.53GHz
Percentage of memory in use: 75%
Total physical RAM: 3058.67 MB
Available physical RAM: 744.78 MB
Total Virtual: 7026.67 MB
Available Virtual: 3908.6 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.19 GB) (Free:149.76 GB) NTFS
\\?\Volume{b084c610-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.57 GB) (Free:0.13 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: B084C610)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Než to zase zavřou 
