VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Černá obrazovka

https://forum.viry.cz:443/viewtopic.php?t=158801

Stránka 1 z 2

Černá obrazovka

Napsal: 25 zář 2022 14:13
od kudla
Dobrý den, prosím o kontrolu logu z FRST + Addition. Při přehrávání internetového videa (konkrétně na strem.cz) dochází k "zčernání" celé obrazovky počítače (laptopu). Následně zmáčknu crl-alt-delete a dám správce úloh a vše funguje chvíli zase jak má. Avšak občas dochází k tomu že počítač při zčernání obrazovky zatuhne a začně vrčet a následně jej musím natvrdo vypnout. Děkuji za pomoc


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Ran by uzivatel (administrator) on LAPTOP-NFC10F0Q (LENOVO 81HL) (25-09-2022 14:34:27)
Running from C:\Users\uzivatel\Desktop
Loaded Profiles: uzivatel
Platform: Microsoft Windows 10 Home Version 21H2 19044.2006 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe <3>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe
(explorer.exe ->) (LENOVO INC) C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.2.54.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_67ba90e0fc503cac\igfxEM.exe
(Intel\DPTF\esif_uf.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Conexant Systems LLC -> Conexant Systems, Inc.) C:\Windows\System32\CxUIUSvc32.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_67ba90e0fc503cac\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_67ba90e0fc503cac\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_67ba90e0fc503cac\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel(R) Software Development Products -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22072.207.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213728 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\Run: [OEXPRESS] => [X]
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {01da54fc-e807-11eb-ae4b-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {21fe3eae-c649-11ea-ae10-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {a5cddfd9-c005-11ec-ae6d-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {d676a1d7-8a85-11ec-ae62-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {14C87F1D-5D90-4274-B8F7-731C2373A237} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B"
Task: {18AD519C-3CE2-42D7-9A5A-78D010D8428B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1555696 2022-08-03] (Adobe Inc. -> Adobe Inc.)
Task: {22AC53D1-C710-47E8-9373-040E102C7E90} - System32\Tasks\LenovoUtility Task => C:\Windows\explorer.exe lenovo-utility://
Task: {3052C0BD-A018-4F61-8B90-6AAE39219585} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [64256 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {37226D78-C120-4CBF-9F32-6602BCF5AE7B} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {4CDA9862-83F4-439B-A5C1-1C53F2B697DD} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {60CBB87D-077B-46A5-B2DF-36B3CFD11F8B} - System32\Tasks\CCleanerSkipUAC - uzivatel => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6BAEA324-9379-4872-B019-57755825632B} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c42f738f-b160-446b-8101-e1b1d43d539c => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {887ADE05-A365-47F1-8806-8F952DBF2A74} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
Task: {88E07B7C-49CC-4F40-9003-F08F019D61F3} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4943072 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
Task: {972F90C9-6098-43C3-AF93-4F3D63A46AF0} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {9A9EAA34-A977-4DB2-98E2-50FEF557DDBD} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\2ceaff47-8a4a-416b-a4db-c098a55700d9 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {A1823D7A-BAA8-4E68-8110-42D6D3E69207} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\3190f492-be7d-4acf-aff7-fa0502729dde => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {AAF8E768-D1F5-4B1E-B5DD-D863DA6AD2D7} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\89783c1e-865e-4b24-aa7b-a02cd24841a0 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {B308F95E-60C8-4F4D-8F65-748720975BA7} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\600cb56f-250a-4196-9088-615ac33889e1 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {D156E839-E384-4ED3-9D86-D6364B809318} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software)
Task: {D5CFB10D-8F74-4EA5-8ED0-14563EC89B15} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\TXE Components\iCLS\IntelPTTEKRecertification.exe [816960 2017-09-21] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {E1F6A671-78DE-424B-AA49-E39902422751} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {ED91DAA1-3C1D-4D96-8D21-E343FAF66692} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {FC56E1A5-7F23-43B3-ACFB-C7BE94FA9BB0} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [147864 2022-05-12] (Lenovo -> Lenovo Group Ltd.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6a044dd6-f410-4274-85a3-c78042b6ad9f}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b6a8b7eb-7890-49a3-9b6a-b1c981d1fcbd}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b768de45-e400-4e28-9d7f-ab685acb2fbf}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\uzivatel\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-25]

FireFox:
========
FF DefaultProfile: ss9gw53z.default
FF ProfilePath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ss9gw53z.default [2022-09-25]
FF Homepage: Mozilla\Firefox\Profiles\ss9gw53z.default -> hxxps://www.seznam.cz/
FF Notifications: Mozilla\Firefox\Profiles\ss9gw53z.default -> hxxps://hqq.tv; hxxps://www.mesec.cz; hxxps://emefka.sk; hxxps://www.slando.sk; hxxps://eur.shein.com; hxxps://mapio.net; hxxps://www.enviweb.cz; hxxps://www.gebraucht-kaufen.de; hxxps://www.luxor.cz; hxxps://newconverter.online; hxxps://y2mate.mx; hxxps://www.liverpoolecho.co.uk; hxxps://polemag.sk; hxxps://www.podnikatel.cz; hxxps://www.vitalia.cz
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-09-08] (Adobe Inc. -> Adobe Systems Inc.)

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172264 2022-08-03] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8523800 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [589536 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [589536 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-26] (Avast Software s.r.o. -> AVAST Software)
R3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [602768 2018-12-20] (Dolby Laboratories, Inc. -> )
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [360320 2019-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\LenovoVantageService.exe [18360 2020-07-09] (Lenovo -> Lenovo Group Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-03-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-03-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [41760 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237632 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [389064 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [257992 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [104904 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [24528 2022-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [47936 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [274976 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [553880 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [113920 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88984 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [861936 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [671216 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221464 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327408 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
S3 ETD_Keyboard; C:\WINDOWS\System32\drivers\ETD.sys [733720 2018-01-17] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2022-03-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [438520 2022-03-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-03-07] (Microsoft Windows -> Microsoft Corporation)
S3 MBAMSwissArmy; \SystemRoot\System32\Drivers\mbamswissarmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-25 14:34 - 2022-09-25 14:35 - 000019202 _____ C:\Users\uzivatel\Desktop\FRST.txt
2022-09-24 07:37 - 2022-09-24 07:37 - 000000000 ____D C:\Users\uzivatel\AppData\Roaming\com.adobe.dunamis
2022-09-23 17:22 - 2022-09-23 17:22 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-09-23 17:21 - 2022-09-23 17:21 - 000413696 _____ C:\WINDOWS\system32\AzureCheck.dll
2022-09-23 17:21 - 2022-09-23 17:21 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-09-23 17:21 - 2022-09-23 17:21 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2022-09-23 17:21 - 2022-09-23 17:21 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-09-23 17:06 - 2022-09-23 17:06 - 000000000 ___HD C:\$WinREAgent
2022-08-30 19:53 - 2022-08-30 19:53 - 000270560 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-08-30 19:53 - 2022-08-30 19:53 - 000221464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-08-27 07:06 - 2022-08-27 07:06 - 000000000 ____D C:\WINDOWS\Panther

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-25 14:34 - 2020-12-28 18:37 - 000000000 ____D C:\FRST
2022-09-25 14:34 - 2020-12-28 14:22 - 002371072 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST64.exe
2022-09-25 14:33 - 2019-05-30 12:46 - 000000000 ____D C:\Users\uzivatel\AppData\LocalLow\Mozilla
2022-09-25 14:32 - 2020-10-11 01:17 - 001706576 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-09-25 14:32 - 2019-12-07 16:41 - 000719496 _____ C:\WINDOWS\system32\perfh005.dat
2022-09-25 14:32 - 2019-12-07 16:41 - 000145622 _____ C:\WINDOWS\system32\perfc005.dat
2022-09-25 14:32 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-09-25 14:30 - 2019-05-30 11:26 - 000000000 ____D C:\Users\uzivatel\AppData\Local\D3DSCache
2022-09-25 14:29 - 2020-12-19 09:26 - 000000000 ____D C:\Program Files\CCleaner
2022-09-25 14:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-09-25 14:29 - 2019-10-15 06:34 - 000000000 ____D C:\Users\uzivatel\AppData\Local\CrashDumps
2022-09-25 14:28 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-25 14:28 - 2019-05-29 09:10 - 000000000 __SHD C:\Users\uzivatel\IntelGraphicsProfiles
2022-09-25 14:26 - 2020-10-11 01:18 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-25 14:26 - 2020-10-11 01:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-25 14:26 - 2020-10-11 01:07 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-25 14:26 - 2020-06-12 17:13 - 000000134 _____ C:\WINDOWS\system32\regtest.txt
2022-09-25 14:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-09-25 14:23 - 2022-02-09 08:23 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-09-25 11:54 - 2020-10-11 01:18 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-09-25 09:08 - 2020-10-11 01:10 - 000000000 ____D C:\Users\uzivatel
2022-09-24 20:50 - 2021-12-07 08:36 - 000002258 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - uzivatel
2022-09-24 20:50 - 2020-10-11 01:18 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-09-24 20:50 - 2020-10-11 01:18 - 000003492 _____ C:\WINDOWS\system32\Tasks\LenovoUtility Task
2022-09-24 20:50 - 2020-10-11 01:18 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-09-24 20:50 - 2020-10-11 01:18 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-09-24 20:50 - 2020-10-11 01:18 - 000003134 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2022-09-24 20:50 - 2020-10-11 01:18 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-09-24 20:50 - 2020-10-11 01:18 - 000002768 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task v2
2022-09-24 20:49 - 2020-10-11 01:18 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-09-24 19:19 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-09-24 19:19 - 2019-12-06 07:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2022-09-24 19:19 - 2019-05-30 12:46 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-09-24 19:19 - 2019-05-29 10:13 - 000000000 ____D C:\ProgramData\AVAST Software
2022-09-24 12:49 - 2021-08-25 18:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-09-24 12:48 - 2019-05-30 12:46 - 000001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-09-24 07:32 - 2020-06-10 18:22 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-24 07:32 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-24 07:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-23 22:26 - 2020-10-11 01:08 - 000540824 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-09-23 20:57 - 2019-05-29 10:34 - 000000000 ____D C:\Users\uzivatel\AppData\Roaming\vlc
2022-09-23 20:21 - 2019-08-09 12:02 - 000029782 _____ C:\Users\uzivatel\Desktop\Interpreti na poslech.txt
2022-09-23 17:27 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-09-23 17:20 - 2020-10-11 01:10 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-09-23 16:39 - 2019-05-29 09:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-09-23 16:39 - 2019-05-29 09:10 - 000000000 ____D C:\Users\uzivatel\AppData\Local\Packages
2022-09-23 16:33 - 2019-05-29 09:49 - 141646296 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-09-23 16:10 - 2021-12-28 23:28 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-09-23 16:10 - 2021-12-28 23:28 - 000002072 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2022-09-01 18:25 - 2019-08-09 12:02 - 000231402 _____ C:\Users\uzivatel\Desktop\Plán výletů, knihy ke čtení.txt
2022-08-30 19:53 - 2021-04-24 20:30 - 000553880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-08-30 19:53 - 2020-10-19 23:16 - 000274976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-08-30 19:53 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-08-30 19:53 - 2019-05-29 10:14 - 000861936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000671216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000389064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000327408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000257992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000237632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000113920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000104904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000088984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000047936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000041760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys

==================== Files in the root of some directories ========

2021-03-22 00:09 - 2021-03-25 21:03 - 000005120 _____ () C:\Users\uzivatel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-12-26 14:42 - 2020-12-26 14:42 - 000007632 _____ () C:\Users\uzivatel\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================









Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-08-2022
Ran by uzivatel (25-09-2022 14:35:55)
Running from C:\Users\uzivatel\Desktop
Microsoft Windows 10 Home Version 21H2 19044.2006 (X64) (2020-10-10 23:19:04)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-750213588-4175554276-3786025397-500 - Administrator - Disabled)
ASPNET (S-1-5-21-750213588-4175554276-3786025397-1002 - Limited - Enabled)
DefaultAccount (S-1-5-21-750213588-4175554276-3786025397-503 - Limited - Disabled)
Guest (S-1-5-21-750213588-4175554276-3786025397-501 - Limited - Disabled)
uzivatel (S-1-5-21-750213588-4175554276-3786025397-1001 - Administrator - Enabled) => C:\Users\uzivatel
WDAGUtilityAccount (S-1-5-21-750213588-4175554276-3786025397-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 22.002.20212 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601013}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 22.8.6030 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 6.03 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1208.2 - Piriform Software) Hidden
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM\...\{C3F938DB-732F-4A2B-BB44-42233484D098}) (Version: 10.1.17479.8054 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{9154f79b-8fb8-46ef-b7a6-95f136391303}) (Version: 10.1.17479.8054 - Intel(R) Corporation) Hidden
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1743.4.0.1217 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{2928EECD-AC08-4844-9F7D-3AD6646236CE}) (Version: 1.1.1.1 - Intel Corporation) Hidden
Intel(R) Trusted Execution Engine Driver (HKLM\...\{0E882099-29A1-4228-A598-39A5985D9FEC}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) TXE Storage Proxy Driver (HKLM\...\{B012B970-C905-49C4-A6AB-832EDB43F696}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Software Guard Extensions Platform Software (HKLM\...\{5F18BC08-2885-4755-A5C6-020A335DE5D4}) (Version: 1.8.108.41160 - Intel Corporation) Hidden
Intel® Software Guard Extensions Platform Software (HKLM-x32\...\ARP_for_prd_SGX_1.8.108.41160) (Version: 1.8.108.41160 - Intel Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 105.0.1343.50 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 105.0.1343.42 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 Finalizer (HKLM-x32\...\{5950473A-825B-3019-AF86-55F2F9A95FCB}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - Module linguistique Français (HKLM\...\{BA14C6F7-A633-3E88-831B-FCC197A5A17D}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - DEU-Sprachpaket (HKLM\...\{36B98E65-CA52-348C-9ED7-77B926A16C2D}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - Language Pack ITA (HKLM\...\{73A36613-1F8F-3D94-B28A-4CC0E3CAECB5}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - Paquete de idioma ESN (HKLM\...\{DDDF762A-2D1D-36A3-9B70-70BD62B4EDCF}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - 한국어 언어 팩 (HKLM\...\{2F884A17-E051-3DB7-B093-6274C98740F6}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - 日本語 Language Pack (HKLM\...\{73A64813-E631-3807-8E78-BA679EDA09A8}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support (HKLM\...\{5707EC26-AA9F-32C6-B7C1-347A3482CEC0}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 主控支援 - 繁體中文語言套件 (HKLM\...\{FB501A6E-CA6D-36DA-8860-17F0E6D89155}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 托管支持 - 简体中文语言包 (HKLM\...\{CD56C9B9-FB98-372B-8BC7-FDA312CD2511}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - DEU-Sprachpaket (HKLM-x32\...\{CAAC553D-EE02-32D2-9F7E-FBC5C22E4C08}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - Language Pack ITA (HKLM-x32\...\{B8FD8F53-7E58-3DE5-A8FC-CB2B5CCF38CE}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - Module linguistique Français (HKLM-x32\...\{3371699A-C1EF-3AC3-B094-D338191FA6E9}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - Paquete de idioma ESN (HKLM-x32\...\{A3EB1DE3-9D3F-34C2-BDE6-5A8A4B98CC37}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - 한국어 언어 팩 (HKLM-x32\...\{955E1388-E1F1-320A-A018-24616ED60F95}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - 日本語 Language Pack (HKLM-x32\...\{859C7535-6862-3867-B97E-816795E8AB65}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support (HKLM-x32\...\{CF06B8C4-F6FC-3A4B-ADD0-04A1CAC3DD86}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 主控支援 - 繁體中文語言套件 (HKLM-x32\...\{0FE6DE07-8CBA-3F73-86B4-51B91E506D24}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 托管支持 - 简体中文语言包 (HKLM-x32\...\{7259BDDA-D888-309D-ADE1-84AA0CB24FE9}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Mozilla Firefox (x86 cs) (HKLM-x32\...\Mozilla Firefox 105.0.1 (x86 cs)) (Version: 105.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.1 - Mozilla)
NVIDIA PhysX (Legacy) (HKLM-x32\...\{6F9D5A0B-202C-4161-BC7F-0664EA39E7E7}) (Version: 9.12.1031 - NVIDIA Corporation)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (HKLM\...\{E237254B-36A1-3D27-815E-B37C13BE0796}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (HKLM-x32\...\{03077B58-6ACF-32CA-B42A-EAA458C295A1}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
PaperScan 3 Free Edition (HKLM-x32\...\{2D29089C-E7F1-47AF-901A-91CBCEBF83BF}) (Version: 3.0.13 - ORPALIS)
Služba Lenovo Vantage (HKLM-x32\...\VantageSRV_is1) (Version: 3.8.23.0 - Lenovo Group Ltd.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{2E8B8BDD-03DF-4C1C-8C99-E6A4BCBF43CE}) (Version: 2.51.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-3) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (HKLM\...\{25FB53C5-BE4C-3B6C-A0C9-D49A39227E1E}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (HKLM-x32\...\{68DC347D-C1C0-3DE2-A53E-CCC71DA53E57}) (Version: 11.0.51108 - Microsoft Corporation) Hidden

Packages:
=========
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20201.255.0_x64__rz1tebttyb220 [2019-05-29] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-06-06] (Microsoft Corporation)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.2.54.0_x64__5grkq8ppsgwt4 [2022-06-26] (LENOVO INC) [Startup Task]
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2208.12.0_x64__k1h2ywk1493x8 [2022-09-23] (LENOVO INC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-05-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-05-29] (Microsoft Corporation) [MS Ad]
Power2Go for Lenovo -> C:\Program Files\WindowsApps\CyberLinkCorp.th.Power2GoforLenovo_8.0.12518.0_x86__m916jedk64snt [2021-06-18] (CYBERLINKCOM CORPORATION) [Startup Task]
PowerDVD for Lenovo -> C:\Program Files\WindowsApps\CyberLinkCorp.th.PowerDVDforLenovo_14.2.4112.0_x86__m916jedk64snt [2021-12-28] (CYBERLINKCOM CORPORATION)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-04-27] (Microsoft Corporation)
SmartAudio 2 -> C:\Program Files\WindowsApps\22094SynapticsIncorporate.SmartAudio2_1.1.53.0_x86__qt57b6kdvhcfw [2020-06-09] (Synaptics Hong Kong Limited, Taiwan Branch (H.K.))

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: No Name - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-08-30] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-08-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-08-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-08-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_67ba90e0fc503cac\igfxDTCM.dll [2018-03-06] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-08-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-08-12 05:48 - 2020-05-30 20:04 - 001638912 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\x64\SQLite.Interop.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-750213588-4175554276-3786025397-1001 -> DefaultScope {792CC13B-5738-428D-A4F9-3C853C4EED39} URL =

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-04-12 01:38 - 2018-04-12 01:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2021-12-14 23:43 - 2022-07-07 11:04 - 000000446 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%C_EM64T_REDIST11%bin\Intel64;C:\Program Files (x86)\Intel\TXE Components\iCLS\;C:\Program Files\Intel\TXE Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\TXE Components\DAL\;C:\Program Files (x86)\Intel\TXE Components\DAL\;C:\Program Files\Intel\TXE Components\IPT\;C:\Program Files (x86)\Intel\TXE Components\IPT\
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "GrooveMonitor"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\StartupApproved\Run: => "CCleanerBrowserAutoLaunch_06985918F36AA703ADE80622D5BC2466"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{AEEA0257-83EC-4F21-B0E4-72CB94F8E95D}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{A520C61D-0541-435E-8588-1B7F70CC6225}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{6B233EF8-3535-4A3E-9583-C73CB2964721}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{77855665-B26A-4F37-A406-CD5075D2F1B2}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{F18F9AF8-BF87-4C42-AAA6-B696E2E31627}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{71238036-FB38-4556-9255-873ACCFE999B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{98B12D8A-A318-418E-A414-DF23EDAB72DF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11601.20230.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CDA5C1AF-8109-43B7-95E3-CD90F8BF609D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3D7A74A7-B20B-4F62-9D59-C830779845D0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F39380B8-6947-4B56-9113-205884BA5CC4}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{58CE4893-5089-4604-9AB6-407771A764A7}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [TCP Query User{1EB85616-A05F-46A7-92F7-F41FA07D82A7}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{5D3CEFFE-CFAC-4DD3-A079-A4E23ECF2CA9}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{C5F14632-347D-48A8-86A7-976CBE3F5B17}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{226EE5C0-FBDE-4AE1-9EEB-A08F9471B7C5}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9F046DAC-9D36-4A41-AEE3-456B89FA3987}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{872DB3ED-9D08-48EA-84BA-AAECD6C958AA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{008E95ED-AED8-4783-B66F-018F283AD3FD}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{15D47597-76FB-437E-B57C-4A4035B8483F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DF95D68D-5C18-4969-8A48-F7332A991F3B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{385785A0-DCD8-48C7-9474-9FB13127B87C}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E3F71CBA-4E4B-4089-9EF9-9C9CA448C8D8}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C8A321C6-7119-4A03-99C6-03559745070D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1BA27C22-8974-42C6-96CA-438569AA903D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9C0529C5-2792-4AE9-8F73-D628E2E42EFE}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E115719E-EE10-4734-9528-240EC80FFDD0}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3C6B6153-9593-45AF-ACD1-CB271324AFEA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A1D9BEB4-B471-45C3-8560-0CDC7934D856}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{63CBFC7A-DA2D-4140-8CD5-8C46EF89637C}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6E7B6A39-ED00-4891-895E-98CB76DCDAA5}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0C235757-D8AB-49C1-9E07-141F5DDF8EFC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CE9D0736-D57B-42DA-9973-F56E9C5BBCFE}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{770F3630-B9A6-4C70-88B2-8B8E2A292A70}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1DFF3532-4D83-49C9-BA7E-69E77A4891EA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5CB45257-A4EA-43AF-B2D2-CCBA522C3074}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C35850EF-34E1-4A9D-9DBB-C975BF3A0519}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3CBCE6B5-827B-4A09-BB19-129C4900B004}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{803109EF-7F83-4E0B-BB2A-AFEB5EBE88CA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D42900D2-42CA-4915-9A62-927E0EEF366C}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{24195CEF-87FA-4E98-86B2-217B30992D1E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{779B2008-45A5-4FD4-88BE-4599B6B84E46}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E7B724F8-1D30-441B-8B09-83CB14BFA2D3}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\105.0.1343.42\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

25-09-2022 11:48:58 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================

System errors:
=============
Error: (09/25/2022 02:29:56 PM) (Source: DCOM) (EventID: 10000) (User: LAPTOP-NFC10F0Q)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (09/25/2022 02:28:05 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby LenovoVantageService bylo dosaženo časového limitu (30000 ms).

Error: (09/25/2022 02:27:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (09/25/2022 02:27:26 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Presentation Foundation Font Cache 3.0.0.0 bylo dosaženo časového limitu (30000 ms).

Error: (09/25/2022 02:26:29 PM) (Source: Netwtw04) (EventID: 5010) (User: )
Description: Intel(R) Dual Band Wireless-AC 3165 : Síťový adaptér vrátil ovladači neplatnou hodnotu.
5010 - Driver DBG_ASSERT - instead of BSOD

Error: (09/25/2022 02:26:37 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (14:21:36, ‎25.‎09.‎2022) bylo neočekávané.

Error: (09/25/2022 02:21:28 PM) (Source: Netwtw04) (EventID: 5010) (User: )
Description: Intel(R) Dual Band Wireless-AC 3165 : Síťový adaptér vrátil ovladači neplatnou hodnotu.
5010 - Driver DBG_ASSERT - instead of BSOD

Error: (09/25/2022 02:21:36 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (14:09:24, ‎25.‎09.‎2022) bylo neočekávané.


Windows Defender:
================
Date: 2021-04-23 19:10:31
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {F64D441B-E037-48E0-BD4D-C7142BACE861}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-04-22 16:14:11
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {348F4A26-9F33-40AB-B950-CC76092AAF81}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-04-21 17:13:51
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {9AB154C7-DAAB-4088-8ED7-B472F09B3D5D}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-04-20 20:37:07
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {88729569-7F80-4C0E-B0D7-87335F39D4E6}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-04-19 19:40:41
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {4E25BD87-5256-4391-BB73-ECDE15AED7A3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:

Date: 2022-03-07 06:39:00
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.335.1587.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18000.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2022-03-07 06:39:00
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.335.1587.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18000.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2022-03-07 06:39:00
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.335.1587.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18000.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2022-03-07 06:39:00
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.335.1587.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18000.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2022-03-07 06:39:00
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.335.1587.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18000.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

CodeIntegrity:
===============
Date: 2022-09-25 14:30:58
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2022-09-25 14:29:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2022-09-25 14:29:01
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\Temp\asw4a397252add279ca.tmp because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

BIOS: LENOVO 6VCN43WW 11/26/2021
Motherboard: LENOVO LNVNB161216
Processor: Intel(R) Pentium(R) Silver N5000 CPU @ 1.10GHz
Percentage of memory in use: 76%
Total physical RAM: 3917.23 MB
Available physical RAM: 930.27 MB
Total Virtual: 7834.46 MB
Available Virtual: 4761.31 MB

==================== Drives ================================

Drive c: (Windows-SSD) (Fixed) (Total:118 GB) (Free:9.42 GB) (Model: INTEL SSDSC2KF128G8L) NTFS

\\?\Volume{c6e9ba6b-0f5b-43df-b408-b784733a2e45}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.49 GB) NTFS
\\?\Volume{86687436-e4f6-407d-8127-1e52d1f0049e}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: B433460B)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Černá obrazovka

Napsal: 25 zář 2022 14:21
od Rudy
Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Černá obrazovka

Napsal: 25 zář 2022 16:35
od kudla
Posílám log:


# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-08-22.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 09-25-2022
# Duration: 00:00:03
# OS: Windows 10 (Build 19044.2006)
# Cleaned: 5
# Awaiting reboot:1
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.LenovoIMController Folder C:\ProgramData\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Users\uzivatel\AppData\Local\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Folder C:\Windows\System32\Tasks\LENOVO\IMCONTROLLER
Deleted Preinstalled.LenovoIMController Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Lenovo Dependency Package_is1
Needs Reboot Preinstalled.LenovoIMController Folder C:\Windows\LENOVO\IMCONTROLLER


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

***** Reboot Required to Complete *****


***** [ Folders ] *****

Cleaning failed C:\Windows\LENOVO\IMCONTROLLER

*************************

AdwCleaner[S00].txt - [2563 octets] - [30/12/2020 13:24:06]
AdwCleaner[C00].txt - [2646 octets] - [30/12/2020 13:24:59]
AdwCleaner[S01].txt - [1581 octets] - [30/12/2020 13:28:50]
AdwCleaner[C01].txt - [1751 octets] - [30/12/2020 13:29:19]
AdwCleaner[S02].txt - [1650 octets] - [30/12/2020 22:03:13]
AdwCleaner[S03].txt - [1711 octets] - [31/12/2020 06:52:04]
AdwCleaner[S04].txt - [2230 octets] - [28/04/2021 21:02:33]
AdwCleaner[S05].txt - [2305 octets] - [25/09/2022 17:27:23]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C05].txt ##########

Re: Černá obrazovka

Napsal: 25 zář 2022 18:08
od Rudy
Dejte nové logy FRST+Addition.

Re: Černá obrazovka

Napsal: 25 zář 2022 18:27
od kudla
Posílám nové logy:



Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Ran by uzivatel (administrator) on LAPTOP-NFC10F0Q (LENOVO 81HL) (25-09-2022 19:23:10)
Running from C:\Users\uzivatel\Desktop
Loaded Profiles: uzivatel
Platform: Microsoft Windows 10 Home Version 21H2 19044.2006 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe
(explorer.exe ->) (LENOVO INC) C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.2.54.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe
(explorer.exe ->) (VideoLAN -> VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_67ba90e0fc503cac\igfxEM.exe
(Intel\DPTF\esif_uf.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <43>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Conexant Systems LLC -> Conexant Systems, Inc.) C:\Windows\System32\CxUIUSvc32.exe
(services.exe ->) (Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_67ba90e0fc503cac\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_67ba90e0fc503cac\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_67ba90e0fc503cac\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(services.exe ->) (Intel(R) Software Development Products -> Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22072.207.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213728 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\Run: [OEXPRESS] => [X]
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {01da54fc-e807-11eb-ae4b-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {21fe3eae-c649-11ea-ae10-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {a5cddfd9-c005-11ec-ae6d-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {d676a1d7-8a85-11ec-ae62-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {14C87F1D-5D90-4274-B8F7-731C2373A237} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B"
Task: {18AD519C-3CE2-42D7-9A5A-78D010D8428B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1555696 2022-08-03] (Adobe Inc. -> Adobe Inc.)
Task: {22AC53D1-C710-47E8-9373-040E102C7E90} - System32\Tasks\LenovoUtility Task => C:\Windows\explorer.exe lenovo-utility://
Task: {3052C0BD-A018-4F61-8B90-6AAE39219585} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {37226D78-C120-4CBF-9F32-6602BCF5AE7B} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {4CDA9862-83F4-439B-A5C1-1C53F2B697DD} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {60CBB87D-077B-46A5-B2DF-36B3CFD11F8B} - System32\Tasks\CCleanerSkipUAC - uzivatel => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6BAEA324-9379-4872-B019-57755825632B} - \Lenovo\ImController\TimeBasedEvents\c42f738f-b160-446b-8101-e1b1d43d539c -> No File <==== ATTENTION
Task: {7270269C-4F73-4EF8-A766-E973711658A6} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE
Task: {7270269C-4F73-4EF8-A766-E973711658A6} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {7270269C-4F73-4EF8-A766-E973711658A6} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\CCleanerSkipUAC - uzivatel" /ENABLE
Task: {7270269C-4F73-4EF8-A766-E973711658A6} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\Intel PTT EK Recertification" /ENABLE
Task: {7270269C-4F73-4EF8-A766-E973711658A6} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\LenovoUtility Task" /ENABLE
Task: {7270269C-4F73-4EF8-A766-E973711658A6} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
Task: {7270269C-4F73-4EF8-A766-E973711658A6} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
Task: {7270269C-4F73-4EF8-A766-E973711658A6} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task v2" /ENABLE
Task: {7270269C-4F73-4EF8-A766-E973711658A6} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {887ADE05-A365-47F1-8806-8F952DBF2A74} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
Task: {88E07B7C-49CC-4F40-9003-F08F019D61F3} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4943072 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
Task: {972F90C9-6098-43C3-AF93-4F3D63A46AF0} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\uzivatel\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {A1823D7A-BAA8-4E68-8110-42D6D3E69207} - \Lenovo\ImController\TimeBasedEvents\3190f492-be7d-4acf-aff7-fa0502729dde -> No File <==== ATTENTION
Task: {B308F95E-60C8-4F4D-8F65-748720975BA7} - \Lenovo\ImController\TimeBasedEvents\600cb56f-250a-4196-9088-615ac33889e1 -> No File <==== ATTENTION
Task: {D156E839-E384-4ED3-9D86-D6364B809318} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software)
Task: {D5CFB10D-8F74-4EA5-8ED0-14563EC89B15} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\TXE Components\iCLS\IntelPTTEKRecertification.exe [816960 2017-09-21] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {E1F6A671-78DE-424B-AA49-E39902422751} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {ED91DAA1-3C1D-4D96-8D21-E343FAF66692} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {FC56E1A5-7F23-43B3-ACFB-C7BE94FA9BB0} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe (No File)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6a044dd6-f410-4274-85a3-c78042b6ad9f}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b6a8b7eb-7890-49a3-9b6a-b1c981d1fcbd}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b768de45-e400-4e28-9d7f-ab685acb2fbf}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\uzivatel\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-25]

FireFox:
========
FF DefaultProfile: ss9gw53z.default
FF ProfilePath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ss9gw53z.default [2022-09-25]
FF Homepage: Mozilla\Firefox\Profiles\ss9gw53z.default -> hxxps://www.seznam.cz/
FF Notifications: Mozilla\Firefox\Profiles\ss9gw53z.default -> hxxps://hqq.tv; hxxps://www.mesec.cz; hxxps://emefka.sk; hxxps://www.slando.sk; hxxps://eur.shein.com; hxxps://mapio.net; hxxps://www.enviweb.cz; hxxps://www.gebraucht-kaufen.de; hxxps://www.luxor.cz; hxxps://newconverter.online; hxxps://y2mate.mx; hxxps://www.liverpoolecho.co.uk; hxxps://polemag.sk; hxxps://www.podnikatel.cz; hxxps://www.vitalia.cz
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-09-08] (Adobe Inc. -> Adobe Systems Inc.)

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172264 2022-08-03] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8523800 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [589536 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [589536 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-26] (Avast Software s.r.o. -> AVAST Software)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [602768 2018-12-20] (Dolby Laboratories, Inc. -> )
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [360320 2019-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\LenovoVantageService.exe [18360 2020-07-09] (Lenovo -> Lenovo Group Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-03-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-03-07] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [41760 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [237632 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [389064 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [257992 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [104904 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [24528 2022-08-05] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [47936 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [274976 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [553880 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [113920 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88984 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [861936 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [671216 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221464 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327408 2022-08-30] (Avast Software s.r.o. -> AVAST Software)
S3 ETD_Keyboard; C:\WINDOWS\System32\drivers\ETD.sys [733720 2018-01-17] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2022-03-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [438520 2022-03-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-03-07] (Microsoft Windows -> Microsoft Corporation)
S3 MBAMSwissArmy; \SystemRoot\System32\Drivers\mbamswissarmy.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-25 19:23 - 2022-09-25 19:24 - 000019214 _____ C:\Users\uzivatel\Desktop\FRST.txt
2022-09-25 16:35 - 2022-09-25 16:36 - 008791352 _____ (Malwarebytes) C:\Users\uzivatel\Desktop\adwcleaner.exe
2022-09-24 07:37 - 2022-09-24 07:37 - 000000000 ____D C:\Users\uzivatel\AppData\Roaming\com.adobe.dunamis
2022-09-23 17:22 - 2022-09-23 17:22 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-09-23 17:21 - 2022-09-23 17:21 - 000413696 _____ C:\WINDOWS\system32\AzureCheck.dll
2022-09-23 17:21 - 2022-09-23 17:21 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-09-23 17:21 - 2022-09-23 17:21 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2022-09-23 17:21 - 2022-09-23 17:21 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-09-23 17:06 - 2022-09-23 17:06 - 000000000 ___HD C:\$WinREAgent
2022-08-30 19:53 - 2022-08-30 19:53 - 000270560 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-08-30 19:53 - 2022-08-30 19:53 - 000221464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-08-27 07:06 - 2022-08-27 07:06 - 000000000 ____D C:\WINDOWS\Panther

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-25 19:24 - 2021-12-07 08:36 - 000002258 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - uzivatel
2022-09-25 19:24 - 2020-10-11 01:18 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-09-25 19:24 - 2020-10-11 01:18 - 000003492 _____ C:\WINDOWS\system32\Tasks\LenovoUtility Task
2022-09-25 19:24 - 2020-10-11 01:18 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-09-25 19:24 - 2020-10-11 01:18 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-09-25 19:24 - 2020-10-11 01:18 - 000003134 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2022-09-25 19:24 - 2020-10-11 01:18 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-09-25 19:24 - 2020-10-11 01:18 - 000002768 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task v2
2022-09-25 19:24 - 2020-10-11 01:18 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-09-25 19:23 - 2020-12-28 18:37 - 000000000 ____D C:\FRST
2022-09-25 19:13 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-25 18:34 - 2020-10-11 01:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-25 18:12 - 2019-05-29 10:34 - 000000000 ____D C:\Users\uzivatel\AppData\Roaming\vlc
2022-09-25 17:51 - 2022-02-09 08:23 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-09-25 17:50 - 2019-05-30 12:46 - 000000000 ____D C:\Users\uzivatel\AppData\LocalLow\Mozilla
2022-09-25 17:36 - 2020-10-11 01:17 - 001706576 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-09-25 17:36 - 2019-12-07 16:41 - 000719496 _____ C:\WINDOWS\system32\perfh005.dat
2022-09-25 17:36 - 2019-12-07 16:41 - 000145622 _____ C:\WINDOWS\system32\perfc005.dat
2022-09-25 17:36 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-09-25 17:33 - 2020-12-19 09:26 - 000000000 ____D C:\Program Files\CCleaner
2022-09-25 17:32 - 2019-05-29 09:10 - 000000000 __SHD C:\Users\uzivatel\IntelGraphicsProfiles
2022-09-25 17:32 - 2018-09-18 05:08 - 000000000 ____D C:\ProgramData\Lenovo
2022-09-25 17:31 - 2020-10-11 01:18 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-25 17:31 - 2020-10-11 01:18 - 000000000 ____D C:\WINDOWS\system32\Tasks\Lenovo
2022-09-25 17:31 - 2020-10-11 01:10 - 000000000 ____D C:\Users\uzivatel
2022-09-25 17:31 - 2020-10-11 01:07 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-25 17:31 - 2020-06-12 17:13 - 000000134 _____ C:\WINDOWS\system32\regtest.txt
2022-09-25 17:31 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-09-25 17:31 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-09-25 17:31 - 2019-05-29 10:13 - 000000000 ____D C:\ProgramData\AVAST Software
2022-09-25 17:30 - 2019-05-29 09:15 - 000000000 ____D C:\Users\uzivatel\AppData\Local\Lenovo
2022-09-25 15:17 - 2019-08-09 12:02 - 000029301 _____ C:\Users\uzivatel\Desktop\Interpreti na poslech.txt
2022-09-25 15:02 - 2019-05-30 11:26 - 000000000 ____D C:\Users\uzivatel\AppData\Local\D3DSCache
2022-09-25 14:34 - 2020-12-28 14:22 - 002371072 _____ (Farbar) C:\Users\uzivatel\Desktop\FRST64.exe
2022-09-25 14:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-09-25 14:29 - 2019-10-15 06:34 - 000000000 ____D C:\Users\uzivatel\AppData\Local\CrashDumps
2022-09-25 11:54 - 2020-10-11 01:18 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-09-24 19:19 - 2019-12-06 07:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2022-09-24 19:19 - 2019-05-30 12:46 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-09-24 12:49 - 2021-08-25 18:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-09-24 12:48 - 2019-05-30 12:46 - 000001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-09-24 07:32 - 2020-06-10 18:22 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-24 07:32 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-24 07:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-23 22:26 - 2020-10-11 01:08 - 000540824 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-09-23 22:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-09-23 17:27 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-09-23 17:20 - 2020-10-11 01:10 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-09-23 16:39 - 2019-05-29 09:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-09-23 16:39 - 2019-05-29 09:10 - 000000000 ____D C:\Users\uzivatel\AppData\Local\Packages
2022-09-23 16:33 - 2019-05-29 09:49 - 141646296 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-09-23 16:10 - 2021-12-28 23:28 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-09-23 16:10 - 2021-12-28 23:28 - 000002072 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2022-09-01 18:25 - 2019-08-09 12:02 - 000231402 _____ C:\Users\uzivatel\Desktop\Plán výletů, knihy ke čtení.txt
2022-08-30 19:53 - 2021-04-24 20:30 - 000553880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-08-30 19:53 - 2020-10-19 23:16 - 000274976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-08-30 19:53 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-08-30 19:53 - 2019-05-29 10:14 - 000861936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000671216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000389064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000327408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000257992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000237632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000113920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000104904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000088984 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000047936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-08-30 19:53 - 2019-05-29 10:14 - 000041760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys

==================== Files in the root of some directories ========

2021-03-22 00:09 - 2021-03-25 21:03 - 000005120 _____ () C:\Users\uzivatel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-12-26 14:42 - 2020-12-26 14:42 - 000007632 _____ () C:\Users\uzivatel\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Černá obrazovka

Napsal: 25 zář 2022 18:28
od kudla
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-08-2022
Ran by uzivatel (25-09-2022 19:25:06)
Running from C:\Users\uzivatel\Desktop
Microsoft Windows 10 Home Version 21H2 19044.2006 (X64) (2020-10-10 23:19:04)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-750213588-4175554276-3786025397-500 - Administrator - Disabled)
ASPNET (S-1-5-21-750213588-4175554276-3786025397-1002 - Limited - Enabled)
DefaultAccount (S-1-5-21-750213588-4175554276-3786025397-503 - Limited - Disabled)
Guest (S-1-5-21-750213588-4175554276-3786025397-501 - Limited - Disabled)
uzivatel (S-1-5-21-750213588-4175554276-3786025397-1001 - Administrator - Enabled) => C:\Users\uzivatel
WDAGUtilityAccount (S-1-5-21-750213588-4175554276-3786025397-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 22.002.20212 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601013}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 22.8.6030 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 6.03 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1208.2 - Piriform Software) Hidden
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM\...\{C3F938DB-732F-4A2B-BB44-42233484D098}) (Version: 10.1.17479.8054 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{9154f79b-8fb8-46ef-b7a6-95f136391303}) (Version: 10.1.17479.8054 - Intel(R) Corporation) Hidden
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1743.4.0.1217 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{2928EECD-AC08-4844-9F7D-3AD6646236CE}) (Version: 1.1.1.1 - Intel Corporation) Hidden
Intel(R) Trusted Execution Engine Driver (HKLM\...\{0E882099-29A1-4228-A598-39A5985D9FEC}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) TXE Storage Proxy Driver (HKLM\...\{B012B970-C905-49C4-A6AB-832EDB43F696}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Software Guard Extensions Platform Software (HKLM\...\{5F18BC08-2885-4755-A5C6-020A335DE5D4}) (Version: 1.8.108.41160 - Intel Corporation) Hidden
Intel® Software Guard Extensions Platform Software (HKLM-x32\...\ARP_for_prd_SGX_1.8.108.41160) (Version: 1.8.108.41160 - Intel Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 105.0.1343.50 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 105.0.1343.42 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 Finalizer (HKLM-x32\...\{5950473A-825B-3019-AF86-55F2F9A95FCB}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - Module linguistique Français (HKLM\...\{BA14C6F7-A633-3E88-831B-FCC197A5A17D}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - DEU-Sprachpaket (HKLM\...\{36B98E65-CA52-348C-9ED7-77B926A16C2D}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - Language Pack ITA (HKLM\...\{73A36613-1F8F-3D94-B28A-4CC0E3CAECB5}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - Paquete de idioma ESN (HKLM\...\{DDDF762A-2D1D-36A3-9B70-70BD62B4EDCF}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - 한국어 언어 팩 (HKLM\...\{2F884A17-E051-3DB7-B093-6274C98740F6}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - 日本語 Language Pack (HKLM\...\{73A64813-E631-3807-8E78-BA679EDA09A8}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support (HKLM\...\{5707EC26-AA9F-32C6-B7C1-347A3482CEC0}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 主控支援 - 繁體中文語言套件 (HKLM\...\{FB501A6E-CA6D-36DA-8860-17F0E6D89155}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x64 托管支持 - 简体中文语言包 (HKLM\...\{CD56C9B9-FB98-372B-8BC7-FDA312CD2511}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - DEU-Sprachpaket (HKLM-x32\...\{CAAC553D-EE02-32D2-9F7E-FBC5C22E4C08}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - Language Pack ITA (HKLM-x32\...\{B8FD8F53-7E58-3DE5-A8FC-CB2B5CCF38CE}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - Module linguistique Français (HKLM-x32\...\{3371699A-C1EF-3AC3-B094-D338191FA6E9}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - Paquete de idioma ESN (HKLM-x32\...\{A3EB1DE3-9D3F-34C2-BDE6-5A8A4B98CC37}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - 한국어 언어 팩 (HKLM-x32\...\{955E1388-E1F1-320A-A018-24616ED60F95}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - 日本語 Language Pack (HKLM-x32\...\{859C7535-6862-3867-B97E-816795E8AB65}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support (HKLM-x32\...\{CF06B8C4-F6FC-3A4B-ADD0-04A1CAC3DD86}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 主控支援 - 繁體中文語言套件 (HKLM-x32\...\{0FE6DE07-8CBA-3F73-86B4-51B91E506D24}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2012 x86 托管支持 - 简体中文语言包 (HKLM-x32\...\{7259BDDA-D888-309D-ADE1-84AA0CB24FE9}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Mozilla Firefox (x86 cs) (HKLM-x32\...\Mozilla Firefox 105.0.1 (x86 cs)) (Version: 105.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.1 - Mozilla)
NVIDIA PhysX (Legacy) (HKLM-x32\...\{6F9D5A0B-202C-4161-BC7F-0664EA39E7E7}) (Version: 9.12.1031 - NVIDIA Corporation)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (HKLM\...\{E237254B-36A1-3D27-815E-B37C13BE0796}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (HKLM-x32\...\{03077B58-6ACF-32CA-B42A-EAA458C295A1}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
PaperScan 3 Free Edition (HKLM-x32\...\{2D29089C-E7F1-47AF-901A-91CBCEBF83BF}) (Version: 3.0.13 - ORPALIS)
Služba Lenovo Vantage (HKLM-x32\...\VantageSRV_is1) (Version: 3.8.23.0 - Lenovo Group Ltd.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{2E8B8BDD-03DF-4C1C-8C99-E6A4BCBF43CE}) (Version: 2.51.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-3) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x64) - RUS (HKLM\...\{25FB53C5-BE4C-3B6C-A0C9-D49A39227E1E}) (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора средств Microsoft Visual Studio Tools для работы с приложениями 2012 (x86) - RUS (HKLM-x32\...\{68DC347D-C1C0-3DE2-A53E-CCC71DA53E57}) (Version: 11.0.51108 - Microsoft Corporation) Hidden

Packages:
=========
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20201.255.0_x64__rz1tebttyb220 [2019-05-29] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-06-06] (Microsoft Corporation)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.2.54.0_x64__5grkq8ppsgwt4 [2022-06-26] (LENOVO INC) [Startup Task]
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2208.12.0_x64__k1h2ywk1493x8 [2022-09-23] (LENOVO INC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-05-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-05-29] (Microsoft Corporation) [MS Ad]
Power2Go for Lenovo -> C:\Program Files\WindowsApps\CyberLinkCorp.th.Power2GoforLenovo_8.0.12518.0_x86__m916jedk64snt [2021-06-18] (CYBERLINKCOM CORPORATION) [Startup Task]
PowerDVD for Lenovo -> C:\Program Files\WindowsApps\CyberLinkCorp.th.PowerDVDforLenovo_14.2.4112.0_x86__m916jedk64snt [2021-12-28] (CYBERLINKCOM CORPORATION)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-04-27] (Microsoft Corporation)
SmartAudio 2 -> C:\Program Files\WindowsApps\22094SynapticsIncorporate.SmartAudio2_1.1.53.0_x86__qt57b6kdvhcfw [2020-06-09] (Synaptics Hong Kong Limited, Taiwan Branch (H.K.))

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: No Name - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-08-30] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-08-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-08-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-08-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_67ba90e0fc503cac\igfxDTCM.dll [2018-03-06] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-08-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-08-12 05:48 - 2020-05-30 20:04 - 001638912 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files (x86)\Lenovo\VantageService\3.3.115.0\x64\SQLite.Interop.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-750213588-4175554276-3786025397-1001 -> DefaultScope {792CC13B-5738-428D-A4F9-3C853C4EED39} URL =

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-04-12 01:38 - 2018-04-12 01:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2021-12-14 23:43 - 2022-07-07 11:04 - 000000446 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%C_EM64T_REDIST11%bin\Intel64;C:\Program Files (x86)\Intel\TXE Components\iCLS\;C:\Program Files\Intel\TXE Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\TXE Components\DAL\;C:\Program Files (x86)\Intel\TXE Components\DAL\;C:\Program Files\Intel\TXE Components\IPT\;C:\Program Files (x86)\Intel\TXE Components\IPT\
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "GrooveMonitor"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\StartupApproved\Run: => "CCleanerBrowserAutoLaunch_06985918F36AA703ADE80622D5BC2466"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{AEEA0257-83EC-4F21-B0E4-72CB94F8E95D}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{A520C61D-0541-435E-8588-1B7F70CC6225}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{6B233EF8-3535-4A3E-9583-C73CB2964721}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{77855665-B26A-4F37-A406-CD5075D2F1B2}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{F18F9AF8-BF87-4C42-AAA6-B696E2E31627}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{71238036-FB38-4556-9255-873ACCFE999B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{98B12D8A-A318-418E-A414-DF23EDAB72DF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11601.20230.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CDA5C1AF-8109-43B7-95E3-CD90F8BF609D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3D7A74A7-B20B-4F62-9D59-C830779845D0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F39380B8-6947-4B56-9113-205884BA5CC4}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{58CE4893-5089-4604-9AB6-407771A764A7}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [TCP Query User{1EB85616-A05F-46A7-92F7-F41FA07D82A7}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{5D3CEFFE-CFAC-4DD3-A079-A4E23ECF2CA9}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{C5F14632-347D-48A8-86A7-976CBE3F5B17}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{226EE5C0-FBDE-4AE1-9EEB-A08F9471B7C5}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9F046DAC-9D36-4A41-AEE3-456B89FA3987}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{872DB3ED-9D08-48EA-84BA-AAECD6C958AA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{008E95ED-AED8-4783-B66F-018F283AD3FD}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{15D47597-76FB-437E-B57C-4A4035B8483F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DF95D68D-5C18-4969-8A48-F7332A991F3B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{385785A0-DCD8-48C7-9474-9FB13127B87C}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E3F71CBA-4E4B-4089-9EF9-9C9CA448C8D8}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C8A321C6-7119-4A03-99C6-03559745070D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1BA27C22-8974-42C6-96CA-438569AA903D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9C0529C5-2792-4AE9-8F73-D628E2E42EFE}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E115719E-EE10-4734-9528-240EC80FFDD0}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3C6B6153-9593-45AF-ACD1-CB271324AFEA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A1D9BEB4-B471-45C3-8560-0CDC7934D856}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{63CBFC7A-DA2D-4140-8CD5-8C46EF89637C}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6E7B6A39-ED00-4891-895E-98CB76DCDAA5}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0C235757-D8AB-49C1-9E07-141F5DDF8EFC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CE9D0736-D57B-42DA-9973-F56E9C5BBCFE}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{770F3630-B9A6-4C70-88B2-8B8E2A292A70}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1DFF3532-4D83-49C9-BA7E-69E77A4891EA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5CB45257-A4EA-43AF-B2D2-CCBA522C3074}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C35850EF-34E1-4A9D-9DBB-C975BF3A0519}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{3CBCE6B5-827B-4A09-BB19-129C4900B004}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{803109EF-7F83-4E0B-BB2A-AFEB5EBE88CA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D42900D2-42CA-4915-9A62-927E0EEF366C}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{24195CEF-87FA-4E98-86B2-217B30992D1E}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{779B2008-45A5-4FD4-88BE-4599B6B84E46}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E7B724F8-1D30-441B-8B09-83CB14BFA2D3}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\105.0.1343.42\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

25-09-2022 11:48:58 Naplánovaný kontrolní bod
25-09-2022 17:30:41 AdwCleaner_BeforeCleaning_25/09/2022_17:30:40

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================

System errors:
=============
Error: (09/25/2022 05:31:38 PM) (Source: Netwtw04) (EventID: 5010) (User: )
Description: Intel(R) Dual Band Wireless-AC 3165 : Síťový adaptér vrátil ovladači neplatnou hodnotu.
5010 - Driver DBG_ASSERT - instead of BSOD

Error: (09/25/2022 05:31:00 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba System Interface Foundation Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/25/2022 05:30:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LenovoVantageService byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/25/2022 05:30:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Fortemedia APO Control Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/25/2022 05:30:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Dynamic Application Loader Host Interface byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/25/2022 05:30:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Content Protection HECI Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/25/2022 05:30:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CxUIUSvc Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/25/2022 05:30:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Dolby DAX API Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
================
Date: 2021-04-23 19:10:31
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {F64D441B-E037-48E0-BD4D-C7142BACE861}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-04-22 16:14:11
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {348F4A26-9F33-40AB-B950-CC76092AAF81}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-04-21 17:13:51
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {9AB154C7-DAAB-4088-8ED7-B472F09B3D5D}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-04-20 20:37:07
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {88729569-7F80-4C0E-B0D7-87335F39D4E6}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-04-19 19:40:41
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {4E25BD87-5256-4391-BB73-ECDE15AED7A3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:

Date: 2022-03-07 06:39:00
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.335.1587.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18000.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2022-03-07 06:39:00
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.335.1587.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18000.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2022-03-07 06:39:00
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.335.1587.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18000.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2022-03-07 06:39:00
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.335.1587.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18000.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2022-03-07 06:39:00
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.335.1587.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18000.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

CodeIntegrity:
===============
Date: 2022-09-25 18:32:50
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-09-25 18:14:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2022-09-25 17:33:00
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO 6VCN43WW 11/26/2021
Motherboard: LENOVO LNVNB161216
Processor: Intel(R) Pentium(R) Silver N5000 CPU @ 1.10GHz
Percentage of memory in use: 83%
Total physical RAM: 3917.23 MB
Available physical RAM: 656.39 MB
Total Virtual: 10029.7 MB
Available Virtual: 1921.63 MB

==================== Drives ================================

Drive c: (Windows-SSD) (Fixed) (Total:118 GB) (Free:3.96 GB) (Model: INTEL SSDSC2KF128G8L) NTFS

\\?\Volume{c6e9ba6b-0f5b-43df-b408-b784733a2e45}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.49 GB) NTFS
\\?\Volume{86687436-e4f6-407d-8127-1e52d1f0049e}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: B433460B)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Černá obrazovka

Napsal: 25 zář 2022 19:02
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start
CloseProcesses:
ShellExecuteHooks-x32: No Name - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - -> No File
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File
ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File
ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-750213588-4175554276-3786025397-1001 -> DefaultScope {792CC13B-5738-428D-A4F9-3C853C4EED39} URL =
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\Run: [OEXPRESS] => [X]
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {01da54fc-e807-11eb-ae4b-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {21fe3eae-c649-11ea-ae10-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {a5cddfd9-c005-11ec-ae6d-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {d676a1d7-8a85-11ec-ae62-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {3052C0BD-A018-4F61-8B90-6AAE39219585} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {37226D78-C120-4CBF-9F32-6602BCF5AE7B} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {4CDA9862-83F4-439B-A5C1-1C53F2B697DD} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {6BAEA324-9379-4872-B019-57755825632B} - \Lenovo\ImController\TimeBasedEvents\c42f738f-b160-446b-8101-e1b1d43d539c -> No File <==== ATTENTION
Task: {A1823D7A-BAA8-4E68-8110-42D6D3E69207} - \Lenovo\ImController\TimeBasedEvents\3190f492-be7d-4acf-aff7-fa0502729dde -> No File <==== ATTENTION
Task: {B308F95E-60C8-4F4D-8F65-748720975BA7} - \Lenovo\ImController\TimeBasedEvents\600cb56f-250a-4196-9088-615ac33889e1 -> No File <==== ATTENTION
Task: {FC56E1A5-7F23-43B3-ACFB-C7BE94FA9BB0} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe (No File)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\Users\uzivatel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Černá obrazovka

Napsal: 25 zář 2022 19:16
od kudla
Fix result of Farbar Recovery Scan Tool (x64) Version: 30-08-2022
Ran by uzivatel (25-09-2022 20:11:56) Run:2
Running from C:\Users\uzivatel\Desktop
Loaded Profiles: uzivatel
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
ShellExecuteHooks-x32: No Name - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - -> No File
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File
ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File
ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-750213588-4175554276-3786025397-1001 -> DefaultScope {792CC13B-5738-428D-A4F9-3C853C4EED39} URL =
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\Run: [OEXPRESS] => [X]
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {01da54fc-e807-11eb-ae4b-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {21fe3eae-c649-11ea-ae10-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {a5cddfd9-c005-11ec-ae6d-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\...\MountPoints2: {d676a1d7-8a85-11ec-ae62-482ae317d037} - "E:\HiSuiteDownLoader.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {3052C0BD-A018-4F61-8B90-6AAE39219585} - \Lenovo\ImController\Lenovo iM Controller Monitor -> No File <==== ATTENTION
Task: {37226D78-C120-4CBF-9F32-6602BCF5AE7B} - \Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask -> No File <==== ATTENTION
Task: {4CDA9862-83F4-439B-A5C1-1C53F2B697DD} - \Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance -> No File <==== ATTENTION
Task: {6BAEA324-9379-4872-B019-57755825632B} - \Lenovo\ImController\TimeBasedEvents\c42f738f-b160-446b-8101-e1b1d43d539c -> No File <==== ATTENTION
Task: {A1823D7A-BAA8-4E68-8110-42D6D3E69207} - \Lenovo\ImController\TimeBasedEvents\3190f492-be7d-4acf-aff7-fa0502729dde -> No File <==== ATTENTION
Task: {B308F95E-60C8-4F4D-8F65-748720975BA7} - \Lenovo\ImController\TimeBasedEvents\600cb56f-250a-4196-9088-615ac33889e1 -> No File <==== ATTENTION
Task: {FC56E1A5-7F23-43B3-ACFB-C7BE94FA9BB0} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe (No File)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\Users\uzivatel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\Wow6432Node{B5A7F190-DDA6-4420-B3BA-52453494E6CD}" => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\UnLockerMenu => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\UnLockerMenu => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\UnLockerMenu => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
"HKU\S-1-5-21-750213588-4175554276-3786025397-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
"HKU\S-1-5-21-750213588-4175554276-3786025397-1001\Software\Microsoft\Windows\CurrentVersion\Run\\OEXPRESS" => removed successfully
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{01da54fc-e807-11eb-ae4b-482ae317d037} => removed successfully
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{21fe3eae-c649-11ea-ae10-482ae317d037} => removed successfully
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a5cddfd9-c005-11ec-ae6d-482ae317d037} => removed successfully
HKU\S-1-5-21-750213588-4175554276-3786025397-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d676a1d7-8a85-11ec-ae62-482ae317d037} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3052C0BD-A018-4F61-8B90-6AAE39219585}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3052C0BD-A018-4F61-8B90-6AAE39219585}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Monitor" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{37226D78-C120-4CBF-9F32-6602BCF5AE7B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{37226D78-C120-4CBF-9F32-6602BCF5AE7B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4CDA9862-83F4-439B-A5C1-1C53F2B697DD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4CDA9862-83F4-439B-A5C1-1C53F2B697DD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6BAEA324-9379-4872-B019-57755825632B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6BAEA324-9379-4872-B019-57755825632B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\c42f738f-b160-446b-8101-e1b1d43d539c" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A1823D7A-BAA8-4E68-8110-42D6D3E69207}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1823D7A-BAA8-4E68-8110-42D6D3E69207}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\3190f492-be7d-4acf-aff7-fa0502729dde" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B308F95E-60C8-4F4D-8F65-748720975BA7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B308F95E-60C8-4F4D-8F65-748720975BA7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\ImController\TimeBasedEvents\600cb56f-250a-4196-9088-615ac33889e1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FC56E1A5-7F23-43B3-ACFB-C7BE94FA9BB0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FC56E1A5-7F23-43B3-ACFB-C7BE94FA9BB0}" => removed successfully
C:\WINDOWS\System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Lenovo\BatteryGauge\BatteryGaugeMaintenance" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
C:\Users\uzivatel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 10615606 B
Java, Discord, Steam htmlcache => 0 B
Windows/system/drivers => 2563304 B
Edge => 0 B
Firefox => 516332609 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 3888 B
NetworkService => 3888 B
uzivatel => 14885923 B

RecycleBin => 0 B
EmptyTemp: => 520.4 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 20:12:13 ====

Re: Černá obrazovka

Napsal: 25 zář 2022 19:56
od Rudy
Smazáno. Nastala nějaká změna?

Re: Černá obrazovka

Napsal: 26 zář 2022 06:37
od kudla
Dobré ráno

Změna bohužel nenastala. Zkoušwl jsem se podávat na stream.cz a hned mi skočila černá obrazovka. Na youtube to nedělá...

Re: Černá obrazovka

Napsal: 26 zář 2022 09:15
od Rudy
OK. Ještě vyčistíme prohlížeče. Spusťte postupně tyto utility:

1. Stahnete Zoek.exe https://www.edisk.cz/stahni/21334/zoek.rar_1.3MB.html/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize




autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;




Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

Jinak se ještě podívejte sem: https://answers.microsoft.com/cs-cz/ins ... 3e79ef89b2 . Problém malware to není.

Re: Černá obrazovka

Napsal: 26 zář 2022 10:04
od kudla
Log ze Zoek:



Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by uzivatel on 26.09.2022 at 10:29:09,24.
Microsoft Windows 10 Home 10.0.19044 x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\uzivatel\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

26.09.2022 10:29:55 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\DirectCut deleted successfully
C:\PROGRA~3\CorelDRAW Graphics Suite X7 x64 deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\PROGRA~3\ssh deleted successfully
C:\Users\uzivatel\AppData\Local\CrashDumps deleted successfully
C:\Users\uzivatel\AppData\Local\DBG deleted successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Packages deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{B5A7F190-DDA6-4420-B3BA-52453494E6CD} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{B5A7F190-DDA6-4420-B3BA-52453494E6CD} deleted successfully

==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ss9gw53z.default\prefs.js:
user_pref("browser.startup.homepage", "https://www.seznam.cz/");

Added to C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ss9gw53z.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\PROGRA~2\DirectCut not found
C:\PROGRA~3\CorelDRAW Graphics Suite X7 x64 not found
C:\PROGRA~3\Package Cache deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM234C9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM26469.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2C316.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2DCC5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\CM2FC66.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tpm-156c-1d9c-7414ee8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tpm-f64-3a68-3878a6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a634.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a636.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a648.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a64a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a65c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a66d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a67f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a691.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a6a2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a6a4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a6b6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a6b8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a6c9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a6cb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a6dd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a6df.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a6f1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a6f3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-108c-ee0-9a6f5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19ca39.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19ca3b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19ca3d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19ca5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19ca70.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19ca82.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19ca84.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19ca86.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19ca97.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19ca99.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19caab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19cabd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19cabf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19cac1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19cad2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19cae4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19cae6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19caf8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-11c0-e60-19cb09.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-365069.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-36507a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-36509c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-36509e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-3650af.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-3650b1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-3650c3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-3650d4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-3650d6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-3650f8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-365109.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-36511b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-36512d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-36513e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-365150.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-365161.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-365173.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-365185.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1368-fc8-365196.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414d1d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414d2f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414d31.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414d43.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414d45.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414d47.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414d58.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414d5a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414d7b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414d7d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414d8f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414d91.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414d93.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414da5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414da7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414da9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414dba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414dbc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414dce.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414dd0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414de2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414de4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414de6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414df7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414df9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414dfb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e0d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e0f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e20.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e22.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e34.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e36.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e38.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e4a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e4c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e4e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e61.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e73.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e85.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e87.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e98.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414e9a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414eac.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414eae.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414ebf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414ec1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414ed3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414ed5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-156c-1d9c-7414ee7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e745e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e7460.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e7462.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e7474.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e7476.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e7488.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e748a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e748c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e749d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e749f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e74b1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e74b3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e74b5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e74c6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e74c8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e74da.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e74dc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e74ee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1664-544-e74f0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dcdae.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dcdb0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dcdc2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dcdc4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dcdd6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dcdd8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dcdda.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dcdeb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dcded.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dcdff.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dce01.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dce13.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dce15.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dce26.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dce28.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dce49.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dce4b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dce5d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1738-1540-dce5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce581.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce583.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce595.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce597.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce5a8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce5aa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce5bc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce5be.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce5cf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce5d1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce5d3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce5e5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce5e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce5e9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce5fb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce5fd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce60e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce610.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-17f4-f10-ce622.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c90e9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c90fa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c90fc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c910e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c9120.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c9122.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c9133.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c9135.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c9147.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c9149.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c915a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c915c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c915e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c9170.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c9172.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c9184.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c9186.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c9197.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18c4-26f8-c9199.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8bb4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8bb6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8bc7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8bd9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8bdb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8bdd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8bee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8bf0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8bf2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8c04.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8c06.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8c18.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8c1a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8c1c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8c2d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8c2f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8c41.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8c43.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-18fc-2b04-5c8c55.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef188.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef18a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef19c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef1ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef1af.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef1b1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef1c3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef1c5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef1d7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef1d9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef1ea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef1fc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef1fe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef210.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef212.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef223.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef235.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef246.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1914-32e4-5ef248.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a563.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a575.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a587.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a5b8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a5d9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a5ea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a65a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a65c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a6cb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a8a2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a8c3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a8e4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a915.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a927.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a958.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a969.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a97b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a98d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1938-3a48-35a9ae.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a24ea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a24fc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a24fe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a250f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a2511.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a2523.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a2525.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a2527.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a2538.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a253a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a254c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a254e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a2560.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a2562.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a2564.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a2575.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a2577.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a2589.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-1b14-2158-a258b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d7d4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d7e5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d7e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d7f9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d7fb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d80c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d81e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d820.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d832.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d843.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d845.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d857.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d859.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d86b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d87c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d87e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d890.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d892.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2054-1240-9d8a3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bd70.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bd72.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bd84.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bd86.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bd88.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bd99.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bdab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bdad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bdbf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bdc1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bdd2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bdd4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bde6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bdf8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bdfa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91bdfc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91be0d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91be2e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e4-3184-91be30.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a19ed.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a19ff.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a01.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a13.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a15.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a17.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a28.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a2a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a3c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a3e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a50.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a52.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a63.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a65.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a77.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a79.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a7b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a8c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20e8-498-a1a9e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d892a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d892c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d892e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d893f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d8941.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d8953.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d8955.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d8967.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d8969.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d896b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d897c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d897e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d8990.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d8992.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d8994.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d89a6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d89a8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d89b9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-20f4-11c4-19d89bb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3ea2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3ea4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3eb6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3ec7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3ec9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3edb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3eed.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3efe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3f00.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3f12.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3f14.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3f35.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3f47.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3f58.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3f6a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3f7c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3f8d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3f9f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-215c-2048-c3fb1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b69af.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b69b1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b69c2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b69d4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b69e5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b69e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b69f9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b6a0b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b6a0d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b6a1e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b6a20.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b6a32.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b6a34.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b6a46.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b6a57.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b6a59.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b6a6b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b6a7c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2184-46c-b6a9e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e67c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e67e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e690.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e6a2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e6a4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e6b5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e6b7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e6c9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e6db.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e6ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e6ee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e70f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e721.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e723.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e735.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e737.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e748.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e74a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2190-1cd0-26e75c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a8104.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a8106.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a8118.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a811a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a813b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a813d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a814f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a8151.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a8162.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a8164.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a8176.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a8178.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a8189.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a818b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a819d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a819f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a81b1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a81b3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2220-2994-a81c4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-9730f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-97330.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-97332.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-97344.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-97355.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-97367.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-97369.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-9737a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-9738c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-9738e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-973a0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-973b1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-973b3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-973c5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-973c7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-973d9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-973fa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-973fc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2254-aa4-9740d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97b6b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97b7d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97b8f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97b91.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97ba2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97ba4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97bb6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97bb8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97bc9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97bcb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97bcd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97bdf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97be1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97bf3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97bf5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97c06.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97c08.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97c0a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2290-1f50-97c1c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9eed6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9eee8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9eeea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9eefb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9eefd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9eeff.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9ef11.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9ef13.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9ef25.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9ef27.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9ef38.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9ef3a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9ef3c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9ef4e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9ef50.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9ef62.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9ef64.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9ef75.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-22a4-1ed0-9ef77.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8dfb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e0c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e0e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e20.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e22.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e24.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e36.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e38.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e49.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e4b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e5d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e61.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e72.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e74.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e86.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e88.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e9a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-231c-2604-c8e9c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b91c8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b91d9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b91db.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b91ed.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b91ef.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b9201.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b9203.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b9214.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b9216.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b9228.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b922a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b923c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b923e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b9240.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b9251.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b9263.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b9265.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b9276.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2338-33a4-42b9288.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bc6f4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bc773.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bc7f2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bc803.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bc815.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bc865.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bc886.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bc8d6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bc8e8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bc938.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bc969.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bc9d8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bcaa6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bcaa8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bcab9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bcabb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bcacd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bcade.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2368-23f8-1bcaf0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-262520.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-262532.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-262544.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-262546.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-262567.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-262579.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-26258a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-26259c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-2625ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-2625bf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-2625d1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-2625e2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-2625f4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-2625f6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-262617.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-262629.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-26262b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-26264c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-23d8-344-26264e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-24309f0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430a11.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430a23.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430a25.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430a46.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430a58.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430a5a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430a6b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430a7d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430a8f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430aa0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430ac2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430ac4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430ae5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430ae7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430b18.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430b29.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430b4b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2408-2b04-2430b8b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a02.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a04.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a15.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a17.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a29.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a2b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a2d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a3f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a41.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a52.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a54.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a66.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a68.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a6a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a7b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a7d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a8f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98a91.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2444-2bcc-98aa3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ecf2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ecf4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed05.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed07.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed09.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed1b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed1d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed2f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed31.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed42.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed44.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed46.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed58.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed5a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed6c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed6e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed70.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed81.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2524-2568-9ed83.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364afa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364afc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364b0e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364b10.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364b21.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364b33.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364b35.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364b47.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364b58.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364b6a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364b7b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364b8d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364b9f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364ba1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364bb2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364bc4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364bc6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364bd8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2570-3280-364bda.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d8386.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d8398.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d839a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d83ab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d83ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d83bf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d83c1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d83d3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d83e4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d83f6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d83f8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d8419.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d842b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d844c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d845e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d846f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d8481.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d8492.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2578-1988-d84a4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c053.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c0b3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c0c4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c0e6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c0f7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c128.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c149.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c16b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c17c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c19d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c1bf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c1e0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c1f2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c213.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c224.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c236.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c257.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c288.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2640-2f3c-1450c2a9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225be9c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225be9e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225beb0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c75c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c7cc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c7fd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c80e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c820.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c851.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c872.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c884.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c895.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c897.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c8a9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c8ab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c8cc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c8fd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c94d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26d0-295c-225c96e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a2392.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a23a4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a23a6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a23b7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a23b9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a23cb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a23cd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a23df.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a23e1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a23e3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a23f4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a23f6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a2408.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a240a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a241c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a241e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a2420.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a2431.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-26dc-1ad4-a2433.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4eb9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4ecb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4ecd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4ede.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4ee0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4ef2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4ef4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4f06.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4f17.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4f19.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4f2b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4f2d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4f3e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4f40.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4f52.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4f54.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4f66.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4f68.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2700-1720-a4f79.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-3714883.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-37148a4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-37148b6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-37148c7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-37148c9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-37148ea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-37148fc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-371490e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-371491f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-3714921.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-3714933.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-3714954.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-3714966.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-3714968.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-3714979.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-371497b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-371499d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-37149ae.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2854-26b8-37149b0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38e953.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38e9a4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38e9b5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38e9c7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38e9d8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38e9fa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38ea1b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38ea2d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38ea3e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38ea5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38ea90.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38eaa2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38eab4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38eac5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38eae6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38eb08.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38eb39.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38eb4a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28a4-130c-38eb6b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f55e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f570.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f572.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f583.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f585.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f597.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f599.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f5ab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f5bc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f5be.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f5d0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f5d2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f5e3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f5f5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f607.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f618.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f61a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f64b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28cc-430-9f64d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-99646.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-99658.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-9965a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-9966c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-9966e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-9967f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-99681.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-99683.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-99695.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-99697.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-996a8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-996aa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-996bc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-996be.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-996d0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-996e1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-996e3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-996e5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-28f0-28dc-996f7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-2363620.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-2363631.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-2363643.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-2363655.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-2363666.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-2363688.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-236368a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-23636ba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-23636dc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-23636de.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-23636ff.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-2363720.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-2363732.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-2363743.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-2363755.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-2363767.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-2363769.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-236378a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2918-1acc-23637bb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-5660432.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-5660434.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-5660436.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-5660447.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-5660449.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-566045b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-566045d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-566046e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-5660470.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-5660472.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-5660484.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-5660486.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-5660498.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-566049a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-56604ab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-56604ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-56604af.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-56604c1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-293c-e90-56604c3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-995f8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-9960a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-9960c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-9961d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-9962f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-99660.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-99672.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-99674.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-99685.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-99697.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-996a8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-996ca.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-996cc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-996dd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-996df.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-996f1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-996f3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-99705.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a40-2360-99707.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106afe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b00.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b12.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b14.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b16.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b27.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b29.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b3b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b3d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b4f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b51.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b53.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b64.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b66.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b68.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b7a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b7c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b8e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2a94-2bb4-106b90.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-972c1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-972d2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-972d4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-972e6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-972e8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-972ea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-972fb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-972fd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-9730f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-97311.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-97323.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-97325.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-97336.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-97338.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-9733a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-9734c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-9734e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-97360.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2aa0-295c-97362.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1f09.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1f1b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1f2c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1f3e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1f40.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1f52.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1f54.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1f65.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1f77.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1f79.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1f8b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1f9c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1f9e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1fb0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1fc1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1fc3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1fd5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1fe7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2bf4-1ffc-b1ff8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff021.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff023.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff035.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff037.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff058.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff05a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff06c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff06e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff07f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff081.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff093.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff0a4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff0a6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff0b8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff0ba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff0cc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff0ce.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff0df.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c10-23c0-ff0e1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278df7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278e19.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278e1b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278e2c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278e3e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278e50.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278e61.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278e73.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278e84.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278e96.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278ea8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278eb9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278edb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278edd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278eee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278f00.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278f02.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278f13.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c1c-858-278f54.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-ead60.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-ead91.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eada3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eada5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eadc6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eadc8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eade9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eadeb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eadfd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eadff.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eae10.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eae32.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eae34.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eae45.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eae57.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eae68.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eaea9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eaebb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c30-2c84-eaecc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5acf9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ad0b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ad0d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ad1e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ad30.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ad32.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ad44.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ad46.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ad57.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ad69.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ad6b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ad7c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ad7e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ad90.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ad92.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ada4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ada6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5ada8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2c44-17c4-1b5adb9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b2fa3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b2fb5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b2fb7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b2fb9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b2fca.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b2fcc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b2fde.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b2fe0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b2ff2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b2ff4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b3005.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b3007.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b3019.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b301b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b303c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b303e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b3050.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b3052.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2e08-2e10-b3063.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-df9a0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-df9b2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-df9c4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-df9d5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-df9e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-df9e9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-df9fb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-df9fd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-dfa0e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-dfa10.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-dfa22.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-dfa24.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-dfa45.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-dfa47.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-dfa59.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-dfa5b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-dfa6c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-dfa6e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f80-2db8-dfa80.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b423b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b423d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b425f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b4261.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b4272.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b4274.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b4286.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b4288.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b429a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b429c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b42ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b42af.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b42c1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b42d2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b42d4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b42e6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b42e8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b4309.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2f8c-2b4c-c4b430b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f1036.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f1038.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f1049.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f104b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f104d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f105f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f1061.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f1073.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f1075.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f1086.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f1088.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f108a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f109c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f109e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f10af.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f10b1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f10b3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f10c5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-30c4-3060-27f10c7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164d57.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164d98.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164d9a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164dab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164dad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164dbf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164dc1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164dc3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164dd5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164df6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164e07.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164e09.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164e1b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164e1d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164e3e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164e40.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164e52.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164e64.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3128-33bc-164e66.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f757974.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f757996.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f757998.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f7579b9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f7579bb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f7579cc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f7579ce.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f7579e0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f757a11.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f757a13.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f757a44.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f757a55.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f757a77.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f757a88.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f757a8a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f757abb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f757acd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f757aee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3194-22c4-f757af0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe2f79.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe2f9a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe2fcb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe2fdd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe2fee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe3000.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe3012.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe3033.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe3045.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe3056.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe3077.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe3089.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe309b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe30ac.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe30be.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe30df.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe3120.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe3141.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-31c8-31dc-1fe3172.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a025e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a0270.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a0272.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a0274.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a0285.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a0287.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a0289.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a029b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a02ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a02af.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a02c0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a02c2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a02c4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a02d6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a02d8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a02ea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a02ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a02fd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3390-3394-a030f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fd3d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fd4f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fd60.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fd62.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fd74.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fd86.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fd88.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fd99.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fd9b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fdad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fdaf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fdc0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fdc2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fdd4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fdd6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fde8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fdea.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fdfb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-33a4-26b8-13fdfd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e806.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e808.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e81a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e81c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e82e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e830.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e832.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e843.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e845.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e857.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e859.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e86a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e86c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e87e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e880.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e882.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e894.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e896.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3490-34b4-1587e8c7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-2421fd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-24220f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-242211.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-242223.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-242234.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-242246.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-242248.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-24225a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-24226b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-24226d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-24227f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-242281.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-2422a2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-2422b4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-2422c5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-2422d7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-242308.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-242319.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-372c-33bc-24232b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db02c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db03e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db040.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db052.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db054.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db065.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db087.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db098.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db09a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db0bb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db0cd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db0cf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db0d1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db0f2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db0f4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db106.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db108.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db11a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-430-224c-4db11c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62aaa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62abc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62abe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62ac0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62ad1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62ad3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62ae5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62ae7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62af9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62afb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62b0c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62b0e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62b20.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62b22.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62b33.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62b35.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62b47.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62b49.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5f8-5fc-62b4b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c8865a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c8865c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c8866e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c88670.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c88681.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c88683.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c88695.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c88697.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c886a8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c886aa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c886ac.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c886be.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c886c0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c886d2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c886d4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c886e5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c886e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c886f9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-60c-2f78-1c886fb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b42f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b431.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b442.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b444.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b456.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b458.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b469.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b46b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b47d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b47f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b481.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b493.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b495.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b4a6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b4a8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b4ba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b4bc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b4ce.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6a8-2acc-9b4d0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-996b4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-996d5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-99735.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-99737.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-99748.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-9975a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-9975c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-9976e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-9977f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-99791.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-99793.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-997c4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-997c6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-997d7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-997e9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-997eb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-997fd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-997ff.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-744-2e04-99810.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f28b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f329.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f32b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f33d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f34e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f37f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f391.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f3a3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f3b4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f3d5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f3f7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f428.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f449.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f45a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f46c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f46e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f480.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f4b1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-808-93c-1c6f4c2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26eee9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26eefa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26ef0c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26ef1e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26ef20.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26ef22.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26ef33.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26ef35.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26ef47.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26ef49.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26ef5a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26ef5c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26ef6e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26ef70.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26ef82.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26ef93.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26efb5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26efb7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-8c4-28b0-26efc8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-96013.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-96025.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-96027.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-96039.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-9605a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-9606b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-9608d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-9609e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-960b0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-960c2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-960e3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-960f4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-96106.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-96127.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-96139.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-9614b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-9615c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-9616e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-910-25fc-9617f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95d73.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95d75.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95d77.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95d89.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95d8b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95d9d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95d9f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95db0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95db2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95db4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95dc6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95dc8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95dda.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95ddc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95ded.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95def.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95df1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95e03.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-964-2ac8-95e14.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a505.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a517.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a519.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a51b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a52c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a52e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a540.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a542.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a553.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a555.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a557.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a569.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a56b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a57d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a57f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a590.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a592.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a5a4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-970-fa4-299a5a6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6b65.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6b77.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6b88.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6b8a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6bab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6bbd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6bbf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6bd1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6be2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6bf4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6bf6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6c08.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6c0a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6c1b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6c1d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6c4e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6c60.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6ca0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-9ac-f60-2f6cc1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-50582b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-50582d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-50583e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-505840.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-505852.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-505854.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-505856.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-505867.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-505869.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-50586b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-50587d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-50587f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-505891.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-505893.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-505895.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-5058a6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-5058a8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-5058ba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-af8-12c8-5058bc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600d58.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600d5a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600d6c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600d6e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600d70.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600d82.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600d84.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600d95.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600d97.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600da9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600dab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600dbd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600dbf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600dd0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600dd2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600de4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600de6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600de8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b0c-20c8-600df9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d77a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d78c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d78e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d790.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d7a1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d7a3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d7a5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d7b7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d7c9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d7cb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d7dc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d7de.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d7f0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d7f2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d803.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d805.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d807.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d819.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d40-ee0-29d81b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-21870c9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-21870eb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-21870ed.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-21870ef.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-2187100.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-2187102.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-2187114.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-2187116.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-2187127.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-2187129.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-218713b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-218713d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-218713f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-2187151.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-2187153.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-2187164.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-2187166.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-2187178.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-d74-2a78-218717a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f4947.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f4949.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f495a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f495c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f496e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f4970.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f4972.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f4983.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f4985.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f4997.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f4999.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f499b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f49ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f49be.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f49c0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f49d2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f49d4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f49e6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-e98-2674-2f49e8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-3876d5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-3876e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-3876f8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-3876fa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-38770c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-38771e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-38772f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-387731.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-387743.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-387764.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-387776.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-387787.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-387799.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-38779b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-3877ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-3877be.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-3877c0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-3877f1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-387812.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-387824.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-387836.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-387838.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-387849.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-38785b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-38785d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-38786e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-387880.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-387882.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-387894.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-f64-3a68-387896.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e39c6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e39d8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e39da.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e39ec.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e39ee.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e39ff.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e3a01.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e3a13.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e3a15.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e3a26.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e3a28.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e3a3a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e3a3c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e3a4e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e3a50.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e3a52.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e3a63.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e3a65.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-fd8-1fe0-e3a77.tmp deleted
"C:\DumpStack.log.tmp" not deleted
"C:\Users\uzivatel\AppData\Local\Avast Software\Avast\datascan.json" not deleted
"C:\Users\uzivatel\AppData\Local\Avast Software" not deleted
"C:\Users\uzivatel\AppData\Local\Avast Software\Avast" not deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\ss9gw53z.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

==== Firefox Plugins ======================


==== Chromium Look ======================


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\uzivatel\AppData\Local\Microsoft\Edge\User Data\Default\Preferences was reset successfully
C:\Users\uzivatel\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences was reset successfully
C:\Users\uzivatel\AppData\Local\Microsoft\Edge\User Data\Default\Web Data will be reset at reboot

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\uzivatel\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\uzivatel\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

C:\Users\uzivatel\AppData\Local\Mozilla\Firefox\Profiles\ss9gw53z.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\uzivatel\AppData\Local\Microsoft\Edge\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=71 folders=1635 35090040 bytes)

==== Empty Temp Folders ======================

C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\uzivatel\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\DumpStack.log.tmp" not deleted
"C:\Users\uzivatel\AppData\Local\Avast Software\Avast\datascan.json" not found
"C:\Users\uzivatel\AppData\Local\Microsoft\Edge\User Data\Default\Web Data" not found
"C:\Users\uzivatel\AppData\Local\Avast Software" not found

==== EOF on 26.09.2022 at 11:01:27,48 ======================

Re: Černá obrazovka

Napsal: 26 zář 2022 10:13
od kudla
Log z JRT:


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by uzivatel (Administrator) on 26.09.2022 at 11:09:49,84
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0




Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 26.09.2022 at 11:11:27,45
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Re: Černá obrazovka

Napsal: 26 zář 2022 14:18
od Rudy
OK. Nějaká změna k lepšímu?

Re: Černá obrazovka

Napsal: 27 zář 2022 05:44
od kudla
Dobré ráno,

Už je to lepší. Stream.cz fungoval dobře. Dekuji za pomoc
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz