Kontrola logu Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: memphisto, Mods_senior, Security team

dabliq19
nováček
Příspěvky: 15
Registrován: květen 20
Pohlaví: Muž

Re: Kontrola logu

Příspěvekod dabliq19 » 04 kvě 2020 21:16

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-05-2020
Ran by Radek (administrator) on DESKTOP-JCB7IGO (LENOVO 80EC) (04-05-2020 20:57:30)
Running from C:\Users\Radek\Desktop
Loaded Profiles: Radek (Available Profiles: Radek)
Platform: Windows 10 Pro Version 1903 18362.778 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Conexant Systems, Inc.) [File not signed] C:\Windows\SysWOW64\UIUSrv.exe
(Dassault Systemes) [File not signed] C:\Program Files (x86)\Dassault Systemes\B20\intel_a\code\bin\CATSysDemon.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Flexera Software LLC -> Flexera Software LLC) C:\SolidSQUAD_License_Servers\Bin\lmgrd.exe <2>
(Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe
(Siemens PLM Software Inc.) [File not signed] C:\SolidSQUAD_License_Servers\Bin\ugslmd.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3763424 2019-02-17] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [5175568 2019-02-17] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [919768 2014-11-20] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6626184 2016-07-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\Policies\Explorer: []
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\MountPoints2: {0adca7ec-8488-11ea-b1fa-28d244ce6b35} - "G:\Launch.exe"
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\MountPoints2: {7f13ed69-6b54-11e9-b1b3-b010418af0b4} - "F:\P-touch2430PC\P-touch2430PC.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-04-28] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {20618A56-564A-4C05-B90D-3A5AADCEF723} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171368 2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {30BE260D-1642-4A0B-B8BA-02932913A5CB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {4D89109C-8904-4EBF-8997-DB81205CB111} - System32\Tasks\AMHelper => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe [659520 2019-11-04] (Zemana D.O.O. Sarajevo -> Zemana Ltd.)
Task: {6C6DE847-A59D-466C-AA36-2B9402CDE619} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {7C84F00E-FF90-4823-A2A4-26AE7C747DC4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {87EA1A60-6A6E-47FA-A5E6-81B0D4104F30} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772528 2020-04-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {98C824BA-193C-4BB8-A2F4-375FC51564C1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-17] (Google Inc -> Google Inc.)
Task: {C023F0B5-27EC-4D7E-B580-2D389B94E173} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772528 2020-04-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {CD6B3D0D-4535-4F5C-98A7-CA2182F72F69} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [171368 2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {D7B60AE5-AA64-4983-9280-92CDFEC8F0C2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-17] (Google Inc -> Google Inc.)
Task: {E1005EA9-2997-482D-8F8A-C28D2AEB0451} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6122400 2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {EC4881EB-0DC2-46A7-9829-904029B2F344} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 185.211.193.2 8.8.8.8 8.8.8.8 192.168.1.1
Tcpip\..\Interfaces\{3964f0eb-9770-4448-8c11-6b42e4177525}: [DhcpNameServer] 185.211.193.2 8.8.8.8 8.8.8.8 192.168.1.1
Tcpip\..\Interfaces\{b0ced6e4-1582-478e-90a4-af18f14e89d2}: [DhcpNameServer] 31.192.72.13 10.0.0.1

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-2073552618-179677002-2118936161-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-04-24] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-04-24] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-05-04] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-04-24] [UpdateUrl:hxxps://www.siteadvisor.com/waffinstall/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Users\Radek\AppData\Roaming\mozilla\plugins\npatgpc.dll [2020-04-10]

Chrome:
=======
CHR Profile: C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default [2020-05-04]
CHR Extension: (Pesticide for Chrome) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bblbgcheenepgnnajgfpiicnbbdmmooh [2020-05-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-05-04]
CHR Extension: (Chrome Media Router) - C:\Users\Radek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-04]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [278544 2016-07-20] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 BBDemon; C:\Program Files (x86)\Dassault Systemes\B20\intel_a\code\bin\CATSysDemon.exe [36864 2009-09-26] (Dassault Systemes) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10610544 2020-04-28] (Microsoft Corporation -> Microsoft Corporation)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4507328 2020-04-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [134888 2019-02-17] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-05-02] (Malwarebytes Inc -> Malwarebytes)
S3 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13048888 2020-04-30] (Adlice -> )
R2 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [709168 2019-09-17] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5930136 2020-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SSQ FLEXLM Service; C:\SolidSQUAD_License_Servers\Bin\lmgrd.exe [1787912 2016-05-05] (Flexera Software LLC -> Flexera Software LLC)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13206544 2020-03-09] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UIUService; C:\WINDOWS\SysWOW64\UIUSrv.exe [105984 2019-10-21] (Conexant Systems, Inc.) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 AdobeARMservice; "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" [X]
S2 McAfee WebAdvisor; "C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [26714136 2016-07-20] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [509456 2016-07-20] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [86728 2016-09-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [83656 2015-03-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [23752 2015-03-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 amsdk; C:\WINDOWS\system32\drivers\amsdk.sys [232792 2020-05-04] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-10-24] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-04-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-04-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 LUMDriver; C:\WINDOWS\system32\drivers\LUMDriver.sys [24848 2008-01-02] (IBM Polska Sp. z o.o. -> IBM)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-05-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 pelmouse; C:\WINDOWS\System32\drivers\pelmouse.sys [23040 2012-11-28] (Microsoft Windows Hardware Compatibility Publisher -> TPMX Electronics Ltd.)
S3 pelusblf; C:\WINDOWS\System32\drivers\pelusblf.sys [34816 2013-03-19] (Microsoft Windows Hardware Compatibility Publisher -> TPMX Electronics Ltd.)
S3 pelvendr; C:\WINDOWS\System32\drivers\pelvendr.sys [11776 2009-11-02] (Microsoft Windows Hardware Compatibility Publisher -> TPMX Electronics Ltd.)
R3 phidmice; C:\WINDOWS\system32\DRIVERS\phidmice.sys [34816 2013-03-26] (Microsoft Windows Hardware Compatibility Publisher -> TPMX Electronics Ltd.)
R3 pmouself; C:\WINDOWS\system32\DRIVERS\pmouself.sys [23040 2013-03-26] (Microsoft Windows Hardware Compatibility Publisher -> TPMX Electronics Ltd.)
R3 pvendrlf; C:\WINDOWS\system32\DRIVERS\pvendrlf.sys [12288 2013-03-26] (Microsoft Windows Hardware Compatibility Publisher -> TPMX Electronics Ltd.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [886528 2015-07-22] (Realtek Semiconductor Corp -> Realtek )
R3 RtkBtFilter; C:\WINDOWS\System32\drivers\RtkBtfilter.sys [779104 2019-09-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [410880 2015-07-03] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3136272 2019-02-17] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 RTWlanE01; C:\WINDOWS\System32\drivers\rtwlane01.sys [8169472 2019-03-19] (Microsoft Windows -> Realtek Semiconductor Corporation )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-05-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [394680 2020-05-01] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64944 2020-05-01] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-04 20:57 - 2020-05-04 21:00 - 000019634 _____ C:\Users\Radek\Desktop\FRST.txt
2020-05-04 20:56 - 2020-05-04 20:58 - 000000000 ____D C:\FRST
2020-05-04 20:54 - 2020-05-04 20:54 - 000010819 _____ C:\Users\Radek\Desktop\hijackthis 3
2020-05-04 20:54 - 2020-05-04 20:54 - 000000000 ____D C:\Users\Radek\Downloads\backups
2020-05-04 20:49 - 2020-05-04 20:49 - 002283520 _____ (Farbar) C:\Users\Radek\Desktop\FRST64.exe
2020-05-04 16:21 - 2020-05-04 16:21 - 000130314 _____ C:\Users\Radek\Downloads\CSS - My Site Images.zip
2020-05-04 16:21 - 2020-05-04 16:21 - 000000000 ____D C:\Users\Radek\Downloads\CSS - My Site Images
2020-05-04 12:04 - 2020-05-04 12:04 - 000002552 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visio 2016.lnk
2020-05-04 12:04 - 2020-05-04 12:04 - 000002522 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2020-05-04 12:04 - 2020-05-04 12:04 - 000002499 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2020-05-04 12:04 - 2020-05-04 12:04 - 000002494 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2020-05-04 12:04 - 2020-05-04 12:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2020-05-04 11:44 - 2020-05-04 21:00 - 000246537 _____ C:\WINDOWS\ZAM.krnl.trace
2020-05-04 11:44 - 2020-05-04 11:59 - 000000000 ____D C:\Users\Radek\AppData\Local\AMSDK
2020-05-04 11:44 - 2020-05-04 11:44 - 000232792 _____ (Copyright 2018.) C:\WINDOWS\system32\Drivers\amsdk.sys
2020-05-04 11:44 - 2020-05-04 11:44 - 000003558 _____ C:\WINDOWS\system32\Tasks\AMHelper
2020-05-04 11:44 - 2020-05-04 11:44 - 000001340 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2020-05-04 11:44 - 2020-05-04 11:44 - 000000000 ____D C:\Users\Radek\AppData\Local\Zemana
2020-05-04 11:44 - 2020-05-04 11:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2020-05-04 11:44 - 2020-05-04 11:44 - 000000000 ____D C:\Program Files (x86)\Zemana
2020-05-04 11:36 - 2014-02-13 23:59 - 000024064 _____ C:\WINDOWS\zoek-delete.exe
2020-05-04 10:53 - 2020-05-04 11:27 - 000000000 ____D C:\zoek_backup
2020-05-04 10:26 - 2020-05-04 10:26 - 012741568 _____ (Zemana Ltd. ) C:\Users\Radek\Desktop\AntiMalware_Setup.exe
2020-05-04 10:25 - 2020-05-04 10:25 - 002038755 _____ C:\Users\Radek\Desktop\zoek.exe
2020-05-04 09:31 - 2020-05-04 09:31 - 000001219 _____ C:\Users\Radek\Downloads\Bacon Fansite Start Here.zip
2020-05-04 08:32 - 2020-05-04 08:32 - 000000000 ____D C:\Users\Radek\Downloads\CSS Debugging Problems
2020-05-04 08:31 - 2020-05-04 08:31 - 000002474 _____ C:\Users\Radek\Downloads\CSS Debugging Problems.zip
2020-05-03 23:03 - 2020-05-03 23:03 - 000000910 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2020-05-03 23:03 - 2020-05-03 23:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2020-05-03 23:02 - 2020-05-03 23:09 - 000000000 ____D C:\ProgramData\RogueKiller
2020-05-03 23:02 - 2020-05-03 23:03 - 000000000 ____D C:\Program Files\RogueKiller
2020-05-03 18:51 - 2020-05-03 18:51 - 000002775 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2020-05-03 18:51 - 2020-05-03 18:51 - 000000000 ____D C:\ProgramData\Sophos
2020-05-03 18:51 - 2020-05-03 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2020-05-03 18:51 - 2020-05-03 18:51 - 000000000 ____D C:\Program Files (x86)\Sophos
2020-05-03 18:14 - 2020-05-03 18:16 - 039851944 _____ (Adlice Software ) C:\Users\Radek\Desktop\RogueKiller_setup.exe
2020-05-03 18:05 - 2020-05-03 18:10 - 206758184 _____ (Sophos Limited) C:\Users\Radek\Desktop\Sophos Virus Removal Tool.exe
2020-05-03 18:03 - 2020-05-03 18:04 - 001790024 _____ (Malwarebytes) C:\Users\Radek\Desktop\JRT.exe
2020-05-03 11:43 - 2020-05-03 11:43 - 881797856 _____ C:\WINDOWS\MEMORY.DMP
2020-05-02 23:18 - 2020-05-02 23:18 - 000001839 _____ C:\Users\Radek\Desktop\CrystalDiskInfo.lnk
2020-05-02 23:18 - 2020-05-02 23:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2020-05-02 23:18 - 2020-05-02 23:18 - 000000000 ____D C:\Program Files\CrystalDiskInfo
2020-05-02 23:08 - 2020-05-02 23:08 - 000002044 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-05-02 23:08 - 2020-05-02 23:08 - 000002032 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-05-02 23:08 - 2020-05-02 23:08 - 000000000 ____D C:\Users\Radek\AppData\Local\mbamtray
2020-05-02 23:08 - 2020-05-02 23:08 - 000000000 ____D C:\Users\Radek\AppData\Local\mbam
2020-05-02 23:08 - 2020-05-02 23:07 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-05-02 23:08 - 2020-05-02 23:07 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-05-02 23:07 - 2020-05-02 23:07 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-05-02 23:05 - 2020-05-02 23:05 - 000000000 ____D C:\Program Files\Malwarebytes
2020-05-02 23:04 - 2020-05-02 23:04 - 006137760 _____ (Crystal Dew World ) C:\Users\Radek\Desktop\CrystalDiskInfo8_4_2.exe
2020-05-02 23:00 - 2020-05-02 23:00 - 001980016 _____ (Malwarebytes) C:\Users\Radek\Desktop\MBSetup.exe
2020-05-02 22:56 - 2020-05-03 18:27 - 000000000 ____D C:\AdwCleaner
2020-05-02 22:54 - 2020-05-02 22:54 - 008196784 _____ (Malwarebytes) C:\Users\Radek\Desktop\adwcleaner_8.0.4.exe
2020-05-02 22:41 - 2020-05-02 22:41 - 000448512 _____ (OldTimer Tools) C:\Users\Radek\Downloads\TFC.exe
2020-05-02 20:42 - 2020-05-02 20:42 - 000042426 _____ C:\Users\Radek\Downloads\AppBreweryCornellNotesTemplate.pdf
2020-05-02 18:09 - 2020-05-02 18:09 - 000032370 _____ C:\Users\Radek\Downloads\original.pdf
2020-05-02 12:32 - 2020-05-04 20:44 - 000000000 ____D C:\Users\Radek\.atom
2020-05-02 12:32 - 2020-05-03 18:02 - 000000000 ____D C:\Users\Radek\AppData\Roaming\Atom
2020-05-02 12:32 - 2020-05-02 12:32 - 000002188 _____ C:\Users\Radek\Desktop\Atom.lnk
2020-05-02 12:32 - 2020-05-02 12:32 - 000000000 ____D C:\Users\Radek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GitHub, Inc
2020-05-02 12:30 - 2020-05-02 12:32 - 000000000 ____D C:\Users\Radek\AppData\Local\atom
2020-05-02 12:21 - 2020-05-02 12:24 - 187965472 _____ (GitHub Inc.) C:\Users\Radek\Downloads\AtomSetup-x64.exe
2020-05-02 11:38 - 2020-05-02 11:38 - 000000000 ____D C:\Users\Radek\Desktop\Kurz Ansys
2020-05-02 11:37 - 2020-05-04 20:44 - 000000000 ____D C:\Users\Radek\Desktop\Web development
2020-05-02 11:03 - 2020-05-02 11:03 - 000080114 _____ C:\Users\Radek\Documents\DESKTOP-JCB7IGO.txt
2020-05-02 10:52 - 2020-05-02 10:52 - 001912432 _____ (CPUID, Inc. ) C:\Users\Radek\Downloads\cpu-z_1.92-en.exe
2020-05-02 10:52 - 2020-05-02 10:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2020-05-02 10:52 - 2020-05-02 10:52 - 000000000 ____D C:\Program Files\CPUID
2020-05-02 09:23 - 2020-05-02 09:23 - 000388608 _____ (Trend Micro Inc.) C:\Users\Radek\Downloads\HijackThis.exe
2020-05-01 11:51 - 2020-05-01 11:51 - 000000000 ____D C:\Users\Radek\Desktop\CAD
2020-05-01 10:40 - 2020-05-01 10:40 - 000000080 ___SH C:\bootTel.dat
2020-05-01 09:34 - 2020-05-01 09:34 - 000000000 ____D C:\ProgramData\Ansys
2020-05-01 09:33 - 2020-05-01 09:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ANSYS 2019 R2
2020-05-01 08:44 - 2020-05-01 09:54 - 000000000 ____D C:\Program Files\ANSYS Inc
2020-05-01 08:27 - 2020-05-01 08:29 - 000000000 ____D C:\PROGRAMY - INSTALACKY
2020-05-01 08:22 - 2020-05-01 08:22 - 000003022 _____ C:\Users\Radek\Documents\cc_20200501_082247.reg
2020-05-01 08:16 - 2020-05-01 08:16 - 000008710 _____ C:\Users\Radek\Documents\cc_20200501_081636.reg
2020-05-01 08:15 - 2020-05-01 08:15 - 000049436 _____ C:\Users\Radek\Documents\cc_20200501_081509.reg
2020-04-30 19:41 - 2020-04-30 19:41 - 001120765 _____ C:\Users\Radek\Downloads\Mech_SNL_14.5_L03_Contact.rar
2020-04-30 14:19 - 2020-04-30 14:19 - 000509356 _____ C:\Users\Radek\Downloads\zadost-o-prospechove-stipendium.pdf
2020-04-30 14:19 - 2020-04-30 14:19 - 000509356 _____ C:\Users\Radek\Desktop\zadost-o-prospechove-stipendium Frolek.pdf
2020-04-30 13:55 - 2020-04-30 13:55 - 000059744 _____ C:\Users\Radek\Downloads\prubeh_studia (1).pdf
2020-04-30 13:45 - 2020-04-30 13:45 - 000059744 _____ C:\Users\Radek\Downloads\prubeh_studia.pdf
2020-04-30 13:28 - 2020-04-30 13:28 - 000003892 _____ C:\Users\Radek\Documents\cc_20200430_132817.reg
2020-04-30 13:27 - 2020-04-30 13:27 - 000015948 _____ C:\Users\Radek\Documents\cc_20200430_132737.reg
2020-04-30 13:26 - 2020-04-30 13:26 - 000076516 _____ C:\Users\Radek\Documents\cc_20200430_132636.reg
2020-04-30 13:15 - 2020-04-30 13:15 - 000030165 _____ C:\WINDOWS\system32\servers.def.lkg
2020-04-30 13:15 - 2020-04-30 13:15 - 000030165 _____ C:\WINDOWS\system32\servers.def
2020-04-30 13:15 - 2020-04-30 13:15 - 000004863 _____ C:\WINDOWS\system32\uat64.vpx
2020-04-30 13:15 - 2020-04-30 13:15 - 000003333 _____ C:\WINDOWS\system32\servers.def.vpx
2020-04-30 13:15 - 2020-04-30 13:15 - 000000606 _____ C:\WINDOWS\system32\prod-pgm.vpx
2020-04-30 13:15 - 2020-04-30 13:15 - 000000340 _____ C:\WINDOWS\system32\prod-vps.vpx
2020-04-28 16:41 - 2020-04-28 16:41 - 000000000 ____D C:\Users\Radek\Desktop\NX
2020-04-28 15:31 - 2020-04-28 15:31 - 000000000 ____D C:\ProgramData\FNP
2020-04-28 15:28 - 2020-04-28 15:31 - 000000000 ____D C:\SolidSQUAD_License_Servers
2020-04-28 09:07 - 2020-04-28 09:59 - 517269402 _____ C:\Users\Radek\Downloads\Ansys tutorials collection.rar
2020-04-28 08:59 - 2020-04-30 13:56 - 000000000 ____D C:\Users\Radek\AppData\Roaming\qBittorrent
2020-04-28 08:59 - 2020-04-28 09:00 - 000000000 ____D C:\Users\Radek\AppData\Local\qBittorrent
2020-04-28 08:59 - 2020-04-28 08:59 - 000000900 _____ C:\Users\Public\Desktop\qBittorrent.lnk
2020-04-28 08:59 - 2020-04-28 08:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2020-04-28 08:59 - 2020-04-28 08:59 - 000000000 ____D C:\Program Files\qBittorrent
2020-04-28 08:53 - 2020-04-28 08:53 - 025981603 _____ (The qBittorrent project) C:\Users\Radek\Downloads\qbittorrent_4.2.5_x64_setup.exe
2020-04-28 07:53 - 2020-04-28 08:10 - 1561053331 _____ C:\Users\Radek\Downloads\Ansys_Skoleni.zip
2020-04-27 15:08 - 2020-04-27 15:08 - 000507805 _____ C:\Users\Radek\Downloads\POST-PEER-REVIEW-PUBLISHERS (1).PDF
2020-04-26 15:18 - 2020-04-26 15:39 - 3032455100 _____ C:\Users\Radek\Downloads\Analyza konzole 17.3.2020.zip
2020-04-26 12:57 - 2020-04-26 12:57 - 001607815 _____ C:\Users\Radek\Downloads\POST-PEER-REVIEW-PUBLISHERS.PDF
2020-04-25 11:17 - 2020-04-27 23:24 - 000000000 ____D C:\Users\Radek\Desktop\femap
2020-04-25 09:55 - 2020-04-28 16:39 - 000000000 ____D C:\Users\Radek\AppData\Local\Siemens
2020-04-25 09:26 - 2020-04-25 09:26 - 000000000 ____D C:\Users\Radek\Desktop\Naučné
2020-04-25 09:19 - 2020-05-04 11:39 - 000000000 ____D C:\Users\Radek\AppData\Local\CrashDumps
2020-04-25 08:51 - 2020-04-25 08:56 - 000000000 ____D C:\Users\Radek\Desktop\Fotky
2020-04-25 08:49 - 2020-04-25 08:49 - 000001867 _____ C:\Users\Public\Desktop\Femap 2020.1 Student.lnk
2020-04-25 08:49 - 2020-04-25 08:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Femap 2020.1 Student
2020-04-25 08:43 - 2020-04-25 08:43 - 000000000 ____D C:\Program Files\Siemens
2020-04-25 07:51 - 2020-04-25 08:22 - 1876688072 _____ (Siemens Digital Industries Software Inc.) C:\Users\Radek\Downloads\FEMAP_STUDENT.exe
2020-04-24 22:39 - 2020-04-24 22:39 - 005946909 _____ C:\Users\Radek\Downloads\sim.zip
2020-04-24 22:32 - 2020-04-24 22:32 - 029602305 _____ C:\Users\Radek\Downloads\vypoctove_modely.zip
2020-04-24 22:31 - 2020-04-24 22:32 - 002320443 _____ C:\Users\Radek\Downloads\mvf.zip
2020-04-24 22:30 - 2020-04-24 22:30 - 001400758 _____ C:\Users\Radek\Downloads\pocme.zip
2020-04-24 22:29 - 2020-04-24 22:30 - 040329340 _____ C:\Users\Radek\Downloads\RNK.zip
2020-04-24 22:29 - 2020-04-24 22:30 - 023418671 _____ C:\Users\Radek\Downloads\NPMT.zip
2020-04-24 21:49 - 2020-04-24 21:49 - 018887161 _____ C:\Users\Radek\Downloads\MAW007_FS_B2341_3901R003_2011.pdf
2020-04-24 21:21 - 2020-04-24 21:22 - 014902849 _____ C:\Users\Radek\Downloads\KLE0057_FS_N2301_3901T003_2016.pdf
2020-04-24 20:13 - 2020-04-24 20:13 - 000114344 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2020-04-24 20:13 - 2020-04-24 20:13 - 000000000 ____D C:\Users\Radek\AppData\Roaming\Sun
2020-04-24 20:13 - 2020-04-24 20:13 - 000000000 ____D C:\Users\Radek\AppData\LocalLow\Sun
2020-04-24 20:13 - 2020-04-24 20:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-04-24 20:12 - 2020-04-24 20:12 - 000000000 ____D C:\ProgramData\Oracle
2020-04-24 20:12 - 2020-04-24 20:12 - 000000000 ____D C:\Program Files (x86)\Java
2020-04-24 19:58 - 2020-04-24 19:59 - 000000000 ____D C:\Users\Radek\AppData\Local\Disc_Soft_Ltd
2020-04-24 19:58 - 2020-04-24 19:58 - 000000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2020-04-24 19:58 - 2020-04-24 19:58 - 000000000 ____D C:\Program Files\Avast Software
2020-04-24 19:57 - 2020-05-01 10:43 - 000000000 ____D C:\ProgramData\Avast Software
2020-04-24 19:57 - 2020-04-30 13:25 - 000000000 ____D C:\Users\Radek\AppData\Roaming\DAEMON Tools Lite
2020-04-24 19:57 - 2020-04-24 19:57 - 000059360 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtliteusbbus.sys
2020-04-24 19:57 - 2020-04-24 19:57 - 000042256 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtlitescsibus.sys
2020-04-24 19:57 - 2020-04-24 19:57 - 000000845 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2020-04-24 19:57 - 2020-04-24 19:57 - 000000000 ____D C:\Users\Public\Documents\Catch!
2020-04-24 19:57 - 2020-04-24 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Lite
2020-04-24 19:55 - 2020-05-04 12:01 - 000000000 ____D C:\Program Files\DAEMON Tools Lite
2020-04-24 19:55 - 2020-04-30 13:56 - 000000000 ____D C:\ProgramData\DAEMON Tools Lite
2020-04-24 19:50 - 2020-04-24 19:50 - 000000000 ____D C:\Users\Radek\AppData\Roaming\Opera Software
2020-04-24 19:50 - 2020-04-24 19:50 - 000000000 ____D C:\Users\Radek\AppData\Local\Opera Software
2020-04-24 19:49 - 2020-04-24 19:49 - 000000000 ____D C:\ProgramData\McAfee
2020-04-24 19:49 - 2020-04-24 19:49 - 000000000 ____D C:\Program Files\McAfee
2020-04-24 19:07 - 2020-04-24 19:07 - 000492941 _____ C:\Users\Radek\Downloads\RR_14_2020_CZ.pdf
2020-04-24 15:31 - 2020-04-30 17:32 - 000000000 ____D C:\Users\Radek\Desktop\STATNICE_Ing
2020-04-24 15:19 - 2020-04-24 15:29 - 1312170383 _____ C:\Users\Radek\Downloads\STATNICE_Ing-20200424T131829Z-001.zip
2020-04-24 10:14 - 2020-05-01 12:01 - 000000000 ____D C:\Users\Radek\Desktop\MKP, mechanika atd
2020-04-22 15:07 - 2020-04-22 15:07 - 000329935 _____ C:\Users\Radek\Downloads\sd_03_2019_pravidla_a_pozadavky_dsp_ft_cj.pdf
2020-04-21 17:04 - 2020-04-21 17:04 - 000016500 _____ C:\Users\Radek\Downloads\Javořík_Frolek.pdf
2020-04-21 14:52 - 2020-04-21 14:52 - 000049109 _____ C:\Users\Radek\Downloads\krátký_2018_op.zip
2020-04-20 18:10 - 2020-04-20 18:10 - 000678707 _____ C:\Users\Radek\Downloads\manual pro sablonu zaverecne prace_2019.pdf
2020-04-20 17:48 - 2020-04-20 17:48 - 003194923 _____ C:\Users\Radek\Downloads\KMSpico.zip
2020-04-19 10:40 - 2020-05-02 12:32 - 000000000 ____D C:\Users\Radek\AppData\Local\SquirrelTemp
2020-04-19 10:40 - 2020-04-19 10:40 - 000002375 _____ C:\Users\Radek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2020-04-19 10:40 - 2020-04-19 10:40 - 000002367 _____ C:\Users\Radek\Desktop\Microsoft Teams.lnk
2020-04-19 10:40 - 2020-04-19 10:40 - 000000000 ____D C:\Users\Radek\AppData\Roaming\Microsoft Teams
2020-04-16 12:40 - 2020-04-16 12:40 - 000202315 _____ C:\Users\Radek\Downloads\SR_7_18_Jednotná formální úprava DP a BP_anonym.pdf
2020-04-16 12:30 - 2020-04-16 12:30 - 000136127 _____ C:\Users\Radek\Desktop\dimenzovani_navrhovani_vyrobku.pdf
2020-04-15 16:15 - 2020-04-15 16:15 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 022636544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 018027520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 007756800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 007017472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 006523048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 005910016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 004611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 004129624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 003742544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 003512320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 002951832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe
2020-04-15 16:15 - 2020-04-15 16:15 - 002800128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-04-15 16:15 - 2020-04-15 16:15 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 002369576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 002188600 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 001870408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 001665216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 001659408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 001545216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2020-04-15 16:15 - 2020-04-15 16:15 - 001495864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 001413840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-04-15 16:15 - 2020-04-15 16:15 - 001386296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 001310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2020-04-15 16:15 - 2020-04-15 16:15 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 001077064 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-04-15 16:15 - 2020-04-15 16:15 - 001013000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000983040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000785920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-04-15 16:15 - 2020-04-15 16:15 - 000775696 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-04-15 16:15 - 2020-04-15 16:15 - 000768528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000673464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-04-15 16:15 - 2020-04-15 16:15 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2020-04-15 16:15 - 2020-04-15 16:15 - 000538160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-04-15 16:15 - 2020-04-15 16:15 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2020-04-15 16:15 - 2020-04-15 16:15 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-04-15 16:15 - 2020-04-15 16:15 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000420152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-04-15 16:15 - 2020-04-15 16:15 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-04-15 16:15 - 2020-04-15 16:15 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrad.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll



Reklama
dabliq19
nováček
Příspěvky: 15
Registrován: květen 20
Pohlaví: Muž

Re: Kontrola logu

Příspěvekod dabliq19 » 04 kvě 2020 21:17

90048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrad.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000123952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-04-15 16:15 - 2020-04-15 16:15 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000089336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasacct.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-04-15 16:15 - 2020-04-15 16:15 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasacct.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumapi.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumapi.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\iaspolcy.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iaspolcy.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2010CustomActions.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ias.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ias.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000021520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.ps.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-04-15 16:15 - 2020-04-15 16:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-04-15 16:15 - 2020-04-15 16:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-04-15 16:15 - 2020-04-15 16:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-04-15 16:15 - 2020-04-15 16:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-04-15 16:15 - 2020-04-15 16:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-04-15 16:15 - 2020-04-15 16:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-04-15 16:15 - 2020-04-15 16:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-04-15 16:15 - 2020-04-15 16:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-04-15 16:15 - 2020-04-15 16:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-04-15 16:15 - 2020-04-15 16:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-04-15 16:15 - 2020-04-15 16:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-04-15 16:15 - 2020-04-15 16:15 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-04-15 16:14 - 2020-04-15 16:14 - 014818816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 004563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 003802624 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 003753472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 003547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-04-15 16:14 - 2020-04-15 16:14 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 002767928 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 002086656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001999960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-04-15 16:14 - 2020-04-15 16:14 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001646048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001512832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001300280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2020-04-15 16:14 - 2020-04-15 16:14 - 001261808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001243648 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 001055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000982840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000811320 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-04-15 16:14 - 2020-04-15 16:14 - 000759272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000673704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000628616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000618296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-04-15 16:14 - 2020-04-15 16:14 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000515600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000513576 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000487784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-04-15 16:14 - 2020-04-15 16:14 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000456504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-04-15 16:14 - 2020-04-15 16:14 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000277864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000251704 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000178192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2020-04-15 16:14 - 2020-04-15 16:14 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000147696 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000142544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000115120 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000066624 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000050544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000033080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys
2020-04-15 16:14 - 2020-04-15 16:14 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprtPS.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wksprtPS.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsunattend.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2020-04-15 16:14 - 2020-04-15 16:14 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-04-15 16:14 - 2020-04-15 16:14 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-04-15 16:13 - 2020-04-15 16:14 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 017790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 007849216 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 003980800 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-04-15 16:13 - 2020-04-15 16:13 - 003708928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 003587384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-04-15 16:13 - 2020-04-15 16:13 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 002717184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-04-15 16:13 - 2020-04-15 16:13 - 002453504 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 002131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 002126144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 002114560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001960448 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001719808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001603584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001497600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-04-15 16:13 - 2020-04-15 16:13 - 001427456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001413704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001378528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001263856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2020-04-15 16:13 - 2020-04-15 16:13 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 001011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000915192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000879616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-04-15 16:13 - 2020-04-15 16:13 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000684560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000637240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-04-15 16:13 - 2020-04-15 16:13 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-04-15 16:13 - 2020-04-15 16:13 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-04-15 16:13 - 2020-04-15 16:13 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-04-15 16:13 - 2020-04-15 16:13 - 000524264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-04-15 16:13 - 2020-04-15 16:13 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000459688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-04-15 16:13 - 2020-04-15 16:13 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-04-15 16:13 - 2020-04-15 16:13 - 000416016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000339304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-04-15 16:13 - 2020-04-15 16:13 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-04-15 16:13 - 2020-04-15 16:13 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000231912 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-04-15 16:13 - 2020-04-15 16:13 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-04-15 16:13 - 2020-04-15 16:13 - 000127280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-04-15 16:13 - 2020-04-15 16:13 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2020-04-15 16:13 - 2020-04-15 16:13 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-04-15 16:13 - 2020-04-15 16:13 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcProxyStubs.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-04-15 16:13 - 2020-04-15 16:13 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-04-15 16:13 - 2020-04-15 16:13 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.ps.dll
2020-04-15 16:13 - 2020-04-15 16:13 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-04-15 16:12 - 2020-04-15 16:12 - 000437560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-04-15 16:12 - 2020-04-15 16:12 - 000297272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-04-15 16:12 - 2020-04-15 16:12 - 000193848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-04-15 16:12 - 2020-04-15 16:12 - 000151352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2020-04-15 16:12 - 2020-04-15 16:12 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2020-04-15 16:12 - 2020-04-15 16:12 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-04-15 16:12 - 2020-04-15 16:12 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\flpydisk.sys
2020-04-15 16:12 - 2020-04-15 16:12 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sfloppy.sys
2020-04-15 15:55 - 2020-03-17 05:57 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-04-15 15:55 - 2020-03-17 05:56 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-04-15 13:15 - 2020-04-15 13:15 - 000203995 _____ C:\Users\Radek\Downloads\Prováděcí předpis k SR_aktualizace_7_18_final.pdf
2020-04-15 13:05 - 2020-04-15 13:05 - 000331487 _____ C:\Users\Radek\Downloads\pd_09_20_kontrola_studia_a_prihlaseni_na_szz_mgr.pdf
2020-04-14 16:08 - 2020-04-14 16:08 - 000126570 _____ C:\Users\Radek\Downloads\postup odevzdávání bp_dp_finalní verze.pdf
2020-04-10 14:31 - 2020-04-10 14:31 - 002368512 _____ C:\Users\Radek\Documents\Gear1_01.xls
2020-04-10 13:59 - 2020-04-10 14:43 - 000000000 __SHD C:\Users\Radek\Documents\cache
2020-04-10 13:58 - 2020-04-10 13:58 - 000000000 ____D C:\Users\Radek\AppData\Roaming\Mozilla
2020-04-08 23:02 - 2020-04-08 23:11 - 1210259809 _____ C:\Users\Radek\Downloads\27 - Slunečná - (Diogenes v sudu) - Komplet celý díl.mkv
2020-04-08 21:51 - 2020-04-08 21:52 - 116798912 _____ C:\Users\Radek\Downloads\hokejisti-z-pisku-soustaj-terezu-bez-cenzury.avi
2020-04-08 21:42 - 2020-04-08 21:42 - 041819212 _____ C:\Users\Radek\Downloads\hokejisti-z-pisku-soustaj-terezu-bez-cenzury.flv
2020-04-08 19:29 - 2020-04-08 19:38 - 1222171639 _____ C:\Users\Radek\Downloads\26 - Slunečná - (Zoufalé činy) - Komplet celý dí.mkv
2020-04-08 08:45 - 2020-04-08 08:45 - 000475576 _____ C:\Users\Radek\Downloads\JESR201102V17S01A0007.pdf
2020-04-07 07:39 - 2020-04-07 07:39 - 000050200 _____ C:\Users\Radek\Downloads\rekonzole.zip
2020-04-04 22:21 - 2020-04-04 22:21 - 000201831 _____ C:\Users\Radek\Downloads\Mimořádné_OOP_-_prodej_osobních_ochranných_prostředků_třídy_FFP3.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-04 20:58 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-05-04 20:43 - 2019-10-20 14:43 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-05-04 12:39 - 2019-03-19 13:57 - 000718198 _____ C:\WINDOWS\system32\perfh005.dat
2020-05-04 12:39 - 2019-03-19 13:57 - 000145242 _____ C:\WINDOWS\system32\perfc005.dat
2020-05-04 12:39 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-05-04 12:39 - 2019-02-17 23:45 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-05-04 12:35 - 2020-03-17 09:10 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-05-04 12:35 - 2019-10-20 15:06 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-05-04 12:34 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-05-04 12:34 - 2019-02-17 23:33 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-05-04 12:05 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-05-04 12:02 - 2019-03-20 17:24 - 000000000 ____D C:\Program Files\Microsoft Office
2020-05-04 11:48 - 2019-10-22 13:41 - 000001248 _____ C:\Users\Radek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk
2020-05-03 20:04 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-03 20:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-05-03 18:27 - 2019-10-20 14:55 - 000000000 ____D C:\Users\Radek
2020-05-03 11:43 - 2019-11-14 12:14 - 000000000 ____D C:\WINDOWS\Minidump
2020-05-02 23:08 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-05-01 12:29 - 2019-10-20 14:43 - 000491232 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-05-01 12:07 - 2019-11-19 10:22 - 000000000 ____D C:\Users\Radek\Desktop\Škola
2020-05-01 12:07 - 2019-02-17 17:03 - 000000000 ____D C:\Users\Radek\AppData\Local\Packages
2020-05-01 11:42 - 2019-03-19 06:52 - 000000000 __RSD C:\WINDOWS\Media
2020-05-01 11:18 - 2019-10-22 13:40 - 000000000 ____D C:\Users\Radek\AppData\Local\Paleramodot
2020-05-01 10:58 - 2019-10-20 15:06 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-05-01 10:13 - 2019-04-03 18:04 - 000000000 ____D C:\Users\Radek\AppData\Roaming\Ansys
2020-05-01 09:34 - 2019-04-03 18:38 - 000000000 ____D C:\Users\Radek\AppData\Local\Ansys
2020-05-01 07:55 - 2019-04-03 18:54 - 000000160 _____ C:\Users\Radek\file0.err
2020-04-30 20:40 - 2019-12-10 08:40 - 000000000 ____D C:\Users\Radek\Desktop\Frolek DP
2020-04-30 13:45 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\registration
2020-04-30 13:25 - 2020-03-06 22:37 - 000000000 ____D C:\Users\Radek\AppData\Roaming\TeamViewer
2020-04-28 14:04 - 2019-10-23 08:11 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-04-28 14:04 - 2019-10-23 08:11 - 000002236 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-04-28 14:04 - 2019-10-20 15:06 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-04-28 14:04 - 2019-10-20 15:06 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-04-28 14:04 - 2019-10-20 15:06 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-04-28 14:04 - 2019-10-20 15:06 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2073552618-179677002-2118936161-1001
2020-04-28 13:41 - 2020-02-25 23:15 - 000000000 ____D C:\SCRATCH
2020-04-28 07:48 - 2019-02-17 20:14 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-28 07:48 - 2019-02-17 20:14 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-04-25 09:23 - 2019-07-17 09:44 - 000000000 ____D C:\Users\Radek\Desktop\Staz - konzola
2020-04-25 09:18 - 2019-02-25 13:24 - 000000000 ____D C:\ProgramData\Autodesk
2020-04-25 09:15 - 2019-02-25 13:33 - 000000000 ____D C:\Users\Radek\AppData\Roaming\Autodesk
2020-04-25 08:58 - 2019-02-17 17:17 - 000000000 ____D C:\Users\Radek\Desktop\Martin Juricka
2020-04-25 08:47 - 2019-02-20 11:55 - 000000000 ____D C:\Users\Radek\AppData\Local\Femap
2020-04-25 08:46 - 2020-02-25 22:20 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-04-19 10:43 - 2019-10-20 15:38 - 000000000 ____D C:\Users\Radek\AppData\Local\ConnectedDevicesPlatform
2020-04-17 20:25 - 2019-10-20 14:55 - 000002372 _____ C:\Users\Radek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-04-17 20:25 - 2019-02-17 17:05 - 000000000 ___RD C:\Users\Radek\OneDrive
2020-04-15 22:27 - 2019-03-19 13:59 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-04-15 22:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-04-15 22:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-04-15 22:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-04-15 22:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-04-15 22:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-04-15 22:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-04-15 22:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-04-15 16:23 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

dabliq19
nováček
Příspěvky: 15
Registrován: květen 20
Pohlaví: Muž

Re: Kontrola logu

Příspěvekod dabliq19 » 04 kvě 2020 21:18

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-05-2020
Ran by Radek (04-05-2020 21:01:57)
Running from C:\Users\Radek\Desktop
Windows 10 Pro Version 1903 18362.778 (X64) (2019-10-20 13:07:31)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2073552618-179677002-2118936161-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2073552618-179677002-2118936161-503 - Limited - Disabled)
Guest (S-1-5-21-2073552618-179677002-2118936161-501 - Limited - Disabled)
Radek (S-1-5-21-2073552618-179677002-2118936161-1001 - Administrator - Enabled) => C:\Users\Radek
WDAGUtilityAccount (S-1-5-21-2073552618-179677002-2118936161-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated)
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.)
Atom (HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\atom) (Version: 1.45.0 - GitHub Inc.)
Catalyst Control Center Next Localization BR (HKLM\...\{118C2119-84B6-E32C-63E2-B56DBCF41CE5}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{80CC2950-1814-AC9E-3D0D-C90A55E8D4DC}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{E7AA1A02-575C-14C6-FBEF-4BE6D46A5B74}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{238F6F6F-2544-86CF-3AB6-2CDADAB58CF0}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{36EDC500-E4C0-371C-9865-08450415C1E9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{6B0B6172-7323-3978-C975-21DF6DF80E71}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{4C2FB7FD-89FD-BA5C-585A-3811F326AD34}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{B75AE7D2-592B-59C9-D4AB-425E60BB37A3}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{EC688BD0-240D-AE40-55F3-234E54919AE6}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{587F9805-4CD8-0F20-D653-83401BE78CC2}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{D74218A3-C503-57EF-AC9F-2220082E7ADE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{E27224E3-7913-DA1E-5B08-9BEEC8FEE3D1}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{95A52FC1-C728-841D-1BFC-CC793B77B0A4}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{CB010EC4-AA3B-BCE4-D404-1E2F8D2DCC5B}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{DA433FCF-90A1-19A5-65A7-FDF82DE4826D}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{3A755952-64D5-23A9-A277-FFD385C1FB6B}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{949F125B-A6CC-5A5E-EEE7-4AC50305C1FA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{A22CDEBA-6DB5-12CD-F6CE-6238C2D78363}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{20D46801-147B-30AD-7C5A-AC4560A79096}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{92E1BEC3-CBE6-F9A9-D7E6-06D5F394E68D}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{C0BFC67D-E447-02C8-6046-C078DFE9EC97}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{22C39711-2747-D264-319A-1550BEEAAEC6}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{6B24AFE6-AB87-D3D1-D373-16A1FBC7CFB0}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{94C72EBE-2908-F0AC-62DA-D61951830F8F}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{1DBACFDB-5E43-7882-36BD-53526D34BD22}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{5B987681-3652-492B-6A11-E02AC0FE5959}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{D971F05F-649C-207F-E93B-32948E534112}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{26F1F4A7-20CA-14F7-2FD4-881A091CC3B0}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{5A083A57-10D6-D4E5-292C-F274870E73A4}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{EB6C44F1-0F78-FE10-BC63-90BA50AB0CE9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{B26D75B8-FAB7-6F8B-767F-BAF975383D91}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{DF0D7C1C-72B6-9FFB-DF66-B3720237BB80}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{E56BC5C6-72A4-CB01-C088-4A49C08E8445}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{21BC8691-9AF5-3C88-9943-F29276660BAA}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{86BFE5B4-1FCE-3C02-6373-92B1AE6431E8}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{A91FC4BF-C1EC-ADCA-79D1-F4F0671F1D60}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{0742432E-42D9-2240-4CA1-8595CCCBAA77}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{68B28E41-D54A-C41A-3E0B-347459597C2F}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{ED75A775-03A7-F214-868D-497748707968}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{07BFBD5C-2F63-6828-1B61-B41A44113F3B}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{D3A475CA-EE19-EB26-2134-63AE67843005}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{EAEAA839-44F4-22DF-D1CC-88C3B2A3D4B1}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{A3973655-E448-4A1B-477C-988A79D132D9}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{B3CE29F8-87C4-96BF-7C94-82659E62710D}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{E6038D3E-5D87-8DF7-6D05-BE7532C3E73E}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{29BF8AF3-23C2-DC38-E15A-DD76865380CC}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{6DC92550-D065-4B36-C4D3-D8D7A702A7A7}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{DFAD9DAC-4768-C8BB-4E0E-5239605A9BEA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{2845D5D2-5EEF-BDCF-8288-01DCEB918680}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{B2A83706-3F14-1532-20CD-B4EE715A8945}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{FFBFBD1F-B160-A119-7C43-8584FA2E5665}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{44ED2CDA-4197-E9E9-B328-26E1FB749116}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{4D1D5407-9B69-6422-629C-8518A26004A4}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{C71FD137-A760-2E9E-2286-233EA5550C84}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{2E80A4A4-07BC-6AB4-64DF-05D825E23E7B}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{3450566C-4561-0EE8-B1AB-D5C79CCE8D2C}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{A8379BAB-59A9-C0A3-8BCC-4852EA403692}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{24DF617A-CD23-6E6A-126B-23630D2781CE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{6A9E8B8B-88E8-E128-9F68-5CADD3F8598D}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{FCE8438C-3272-D63F-479F-670F082B294B}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{25D1751E-7CA2-5F6D-0125-0A16E47AF9FE}) (Version: 2016.0624.1251.21301 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{6E1880E5-FF3B-C060-7550-D173CA379F7A}) (Version: 2016.0707.1524.25901 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{83DDDFD8-AD42-72F9-E4F1-5456FDB304C9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.27.55 - Conexant)
Conexant SmartAudio (HKLM\...\SAII) (Version: 6.0.259.0 - Conexant Systems)
CPUID CPU-Z 1.92 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.92 - CPUID, Inc.)
CrystalDiskInfo 8.4.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.4.2 - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.12.0.1203 - Disc Soft Ltd)
Dassault Systemes Software B20 (HKLM\...\Dassault Systemes B20_0) (Version: - )
Dassault Systemes Software Prerequisites x86-x64 (HKLM\...\{CF1EB598-B424-436A-B15F-B763846BA970}) (Version: 8.1.3 - Dassault Systemes)
Dassault Systemes Software VC9 Prerequisites x86-x64 (HKLM\...\{F2F2DEA7-36AB-4E13-907C-D8BDE775EF97}) (Version: 9.1.2 - Dassault Systemes)
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
FARO LS 1.1.600.6 (64bit) (HKLM-x32\...\{510A08AF-1649-4844-94E5-EAC43A023685}) (Version: 6.0.6.5 - FARO Scanner Production)
Femap 2020.1 MP1 Student Edition (HKLM\...\{0E0C47E7-DF42-4445-B2BC-498288367970}) (Version: 20.1.1.0 - Siemens Digital Industries Software Inc.) Hidden
Femap 2020.1 MP1 Student Edition (HKLM-x32\...\InstallShield_{0E0C47E7-DF42-4445-B2BC-498288367970}) (Version: 20.1.1.0 - Siemens Digital Industries Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.129 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.92 - McAfee, LLC.)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.12730.20236 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\Teams) (Version: 1.3.00.8663 - Microsoft Corporation)
Microsoft Visio - cs-cz (HKLM\...\VisioProRetail - cs-cz) (Version: 16.0.12730.20236 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
MSC Nastran 2019.0 and Patran 2019.0 Student Editions (HKLM-x32\...\{5ED05F9D-A422-47C1-A20D-6C271CF9F8C7}) (Version: 19.0.0 - MSC.Software Corporation)
MSC Nastran 2019.0 Windows Documentation (HKLM-x32\...\{3A114B81-4F32-4155-853C-5DA2BAA7D019}) (Version: 19.0.0 - MSC.Software Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20206 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20206 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.12730.20206 - Microsoft Corporation) Hidden
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
RogueKiller version 14.4.2.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.4.2.0 - Adlice Software)
Solid Edge ST8 (HKLM\...\{C69F7B10-60F2-476C-B0C1-4D61628462B7}) (Version: 108.00.00091 - Siemens)
Solid Edge Standard Parts Piping Library (HKLM-x32\...\{F8E80E57-9994-4AAF-AB26-1B71F64264E2}) (Version: 108.00.00091 - Siemens)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.7.0 - Sophos Limited)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.3.8497 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
VBA (3821b) (HKLM-x32\...\{BD8A0C60-1AEB-11D6-B8E1-00025521AE60}) (Version: 6.01.00.1234 - Microsoft Corporation) Hidden
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
Yixin version GUI: 1.9 Engine: 0.6.69 (HKLM-x32\...\{F1FB6F5D-8359-460A-9C38-18F2CC80F1DD}_is1) (Version: GUI: 1.9 Engine: 0.6.69 - Kai Sun)
Zemana AntiMalware verze 3.1.495 (HKLM-x32\...\{4E1F3677-C72E-4F7D-B66E-85467B1A289E}_is1) (Version: 3.1.495 - Zemana)

Packages:
=========
Adobe Photoshop Express: Editor obrazů, úpravy, filtry, efekty, okraje -> C:\Program Files\WindowsApps\AdobeSystemsIncorporated.AdobePhotoshopExpress_3.0.316.0_x64__ynb6jyjzte8ga [2020-04-30] (Adobe Inc.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-30] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-04-30] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-04-30] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-03] (Microsoft Studios) [MS Ad]
Microsoft Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.36.20714.0_x64__8wekyb3d8bbwe [2020-04-30] (Microsoft Corporation) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-04-30] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-04-30] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-04-30] (Microsoft Corporation) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2073552618-179677002-2118936161-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Radek\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20031.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2073552618-179677002-2118936161-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Radek\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20031.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2019-11-04] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-02] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2016-07-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2019-11-04] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-02] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2015-06-25 16:53 - 2015-06-25 16:53 - 000011776 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2015-06-25 16:51 - 2015-06-25 16:51 - 002013696 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2015-06-25 17:34 - 2015-06-25 17:34 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2015-06-25 17:37 - 2015-06-25 17:37 - 000739840 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-06-25 17:38 - 2015-06-25 17:38 - 000071168 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-06-25 17:35 - 2015-06-25 17:35 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2016-07-07 15:22 - 2016-07-07 15:22 - 000005120 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\CNext\CNext\atiamcsy.dll
2015-06-25 17:20 - 2015-06-25 17:20 - 000049664 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qdds.dll
2015-06-25 17:15 - 2015-06-25 17:15 - 000029696 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2015-06-25 17:20 - 2015-06-25 17:20 - 000037376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2015-06-25 17:15 - 2015-06-25 17:15 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2015-06-25 17:20 - 2015-06-25 17:20 - 000459776 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjp2.dll
2015-06-25 17:15 - 2015-06-25 17:15 - 000236544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2015-06-25 17:20 - 2015-06-25 17:20 - 000275456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qmng.dll
2015-06-25 17:17 - 2015-06-25 17:17 - 000023552 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2015-06-25 17:20 - 2015-06-25 17:20 - 000022528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2015-06-25 17:20 - 2015-06-25 17:20 - 000351744 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtiff.dll
2015-06-25 17:20 - 2015-06-25 17:20 - 000021504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2015-06-25 17:21 - 2015-06-25 17:21 - 000374784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2015-06-25 17:14 - 2015-06-25 17:14 - 001212416 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2015-07-02 12:58 - 2015-07-02 12:58 - 005496320 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2015-06-25 17:03 - 2015-06-25 17:03 - 005804544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2015-06-25 05:13 - 2015-06-25 05:13 - 000912384 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Charts.dll
2015-06-25 17:00 - 2015-06-25 17:00 - 001061376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2015-06-25 17:23 - 2015-06-25 17:23 - 003187712 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2015-06-25 17:28 - 2015-06-25 17:28 - 002924544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2015-06-25 17:16 - 2015-06-25 17:16 - 000310784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2015-06-25 17:08 - 2015-06-25 17:08 - 005444608 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2015-06-25 17:58 - 2015-06-25 17:58 - 000277504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2015-06-25 16:59 - 2015-06-25 16:59 - 000193024 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\sharepoint.com -> hxxps://utbcz-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-02-17 14:12 - 2020-05-04 20:54 - 000000813 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\MSC.Software\MSC_Nastran_and_Patran_Student_Editions\20190\Patran\bin;%AME%;%AME%\win32;%AME%\win64;%AME%\sys\mingw32\bin;%AME%\sys\mpich\mpd\bin;%AME%\sys\cgns;%AME%\sys\python\win32;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Radek\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\P1580905.JPG
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App"
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{D3DB06ED-7719-492A-A6A6-D1DD36FD84A9}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\cnext.exe] => (Allow) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\cnext.exe (Dassault Systemes) [File not signed]
FirewallRules: [TCP Query User{072E8606-BB8C-48E3-9565-300789F4B209}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\cnext.exe] => (Allow) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\cnext.exe (Dassault Systemes) [File not signed]
FirewallRules: [UDP Query User{CC5B7542-1693-46D0-B693-4EB4EE518C52}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\orbixd.exe] => (Allow) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\orbixd.exe () [File not signed]
FirewallRules: [TCP Query User{1D623398-5C14-4FB3-B4A6-4FBD34DBBCF9}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\orbixd.exe] => (Allow) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\orbixd.exe () [File not signed]
FirewallRules: [UDP Query User{F8741D13-CE63-4786-A010-3EEF254B1AE7}C:\amesim\v1330_student\win32\amesim.exe] => (Allow) C:\amesim\v1330_student\win32\amesim.exe () [File not signed]
FirewallRules: [TCP Query User{4B29EA7F-B9DD-4629-9A28-3F2EE580165F}C:\amesim\v1330_student\win32\amesim.exe] => (Allow) C:\amesim\v1330_student\win32\amesim.exe () [File not signed]
FirewallRules: [UDP Query User{6101172A-B9FE-4860-9F94-05CC4EE9683C}C:\users\radek\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\radek\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{39B61B9F-730A-4961-8F59-AE598CE3938D}C:\users\radek\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\radek\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{B5CBD1A1-CA6A-43F8-94DC-5629871B0A15}] => (Allow) C:\Users\Radek\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) [File not signed]
FirewallRules: [TCP Query User{AFFD4E2C-4EA5-4F9E-86D5-A30AC9E72C3B}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\catutil.exe] => (Block) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\catutil.exe (Dassault Systemes) [File not signed]
FirewallRules: [UDP Query User{312B4895-D809-4664-8D8C-024EC28C4EAC}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\catutil.exe] => (Block) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\catutil.exe (Dassault Systemes) [File not signed]
FirewallRules: [{D19879B9-00DA-4B58-B219-83C3A495154C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{26FB9080-65EE-4760-A843-842E3C760E37}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{57A838B1-B819-4A9B-B754-85054C5C7B63}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B707D05F-2E99-4A19-AC15-DA03053EA4E5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E2EECC08-5F87-42BE-BBFE-523EEC95FA71}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{E476E69E-42D1-4491-A7BB-51E4356AAC86}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{187A8F94-A0BF-4006-B3A7-FA9256CC1853}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B67E0F10-2D8B-433E-85B9-92DD626480B7}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{B032C756-92DA-4B37-B4FC-2E5ED0FAEED4}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{267823AB-27C6-4DE9-9C8D-AD4EF3A72071}C:\program files\ansys inc\shared files\licensing\winx64\ansysli_client.exe] => (Allow) C:\program files\ansys inc\shared files\licensing\winx64\ansysli_client.exe (ANSYS Inc. -> ANSYS, Inc.) [File not signed]
FirewallRules: [UDP Query User{409DD042-73A4-419E-BA18-ACDC1BF74EAA}C:\program files\ansys inc\shared files\licensing\winx64\ansysli_client.exe] => (Allow) C:\program files\ansys inc\shared files\licensing\winx64\ansysli_client.exe (ANSYS Inc. -> ANSYS, Inc.) [File not signed]
FirewallRules: [TCP Query User{EA5AFBEF-F5A7-4D3A-A9C3-5E861565153C}C:\program files\ansys inc\v194\framework\bin\win64\ansysfww.exe] => (Allow) C:\program files\ansys inc\v194\framework\bin\win64\ansysfww.exe (ANSYS Inc. -> ANSYS, Inc.)
FirewallRules: [UDP Query User{24CA8100-9BB6-46F7-BFE5-456400198FAC}C:\program files\ansys inc\v194\framework\bin\win64\ansysfww.exe] => (Allow) C:\program files\ansys inc\v194\framework\bin\win64\ansysfww.exe (ANSYS Inc. -> ANSYS, Inc.)
FirewallRules: [TCP Query User{BD79C5B9-96D8-4A81-9591-49E54F72D6DD}C:\program files\ansys inc\v194\aisol\bin\winx64\ansyswbu.exe] => (Allow) C:\program files\ansys inc\v194\aisol\bin\winx64\ansyswbu.exe (ANSYS Inc. -> Ansys, Inc.)
FirewallRules: [UDP Query User{619285FA-70E1-4DAE-9DAC-D6ABBF226A26}C:\program files\ansys inc\v194\aisol\bin\winx64\ansyswbu.exe] => (Allow) C:\program files\ansys inc\v194\aisol\bin\winx64\ansyswbu.exe (ANSYS Inc. -> Ansys, Inc.)

==================== Restore Points =========================

03-05-2020 18:33:34 JRT Pre-Junkware Removal

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (05/04/2020 09:08:14 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8384,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/04/2020 01:09:15 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6392,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/04/2020 12:52:08 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9492,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/04/2020 12:42:53 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4224,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/04/2020 11:56:21 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2788,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/04/2020 11:39:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbamtray.exe, verze: 4.0.0.638, časové razítko: 0x5ea214c5
Název chybujícího modulu: Qt5Core.dll, verze: 5.14.1.0, časové razítko: 0x5e8272e4
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000219d05
ID chybujícího procesu: 0x1a94
Čas spuštění chybující aplikace: 0x01d621f7db3916d0
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
Cesta k chybujícímu modulu: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID zprávy: fbc78ae8-f5ff-4e8e-a2c8-ea755cdc2e0f
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/04/2020 11:36:34 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (05/04/2020 11:36:34 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]


System errors:
=============
Error: (05/04/2020 12:35:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee WebAdvisor neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (05/04/2020 11:57:07 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/04/2020 11:56:36 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba McAfee WebAdvisor neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (05/04/2020 11:56:33 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba McAfee WebAdvisor byla nečekaně ukončena. Stalo se to 3 krát. Následující opravná akce bude spuštěna za 3000 milisekund: Restartovat službu.

Error: (05/04/2020 11:56:29 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Disc Soft Lite Bus Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/04/2020 11:48:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba McAfee WebAdvisor byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.

Error: (05/04/2020 11:48:50 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba McAfee WebAdvisor byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1 milisekund: Restartovat službu.

Error: (05/04/2020 11:27:14 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.


Windows Defender:
===================================
Date: 2020-05-02 22:51:11.698
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:MSIL/AutoKMS
ID: 2147711767
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Program Files\KMSpico\Service_KMS.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.313.2769.0, AS: 1.313.2769.0, NIS: 1.313.2769.0
Verze modulu: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-05-02 14:19:59.855
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win64/AutoKMS
ID: 2147723334
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\WINDOWS\SECOH-QAD.dll; file:_C:\WINDOWS\SECOH-QAD.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.313.2769.0, AS: 1.313.2769.0, NIS: 1.313.2769.0
Verze modulu: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-05-02 12:47:16.212
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {8BBE98D3-73DE-443D-81E7-460FA65106C4}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-05-01 11:18:09.937
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Ludicrouz.P
ID: 2147723982
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Radek\AppData\Local\Paleramodot\Sikedadoni.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-JCB7IGO\Radek
Název procesu: C:\Program Files\CCleaner\CCleaner64.exe
Verze bezpečnostních informací: AV: 1.313.2708.0, AS: 1.313.2708.0, NIS: 1.313.2708.0
Verze modulu: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-05-01 09:41:14.121
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Wacatac.C!ml
ID: 2147749372
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Windows\Temp\qErpVwBLo0BftGgmBVfb\qrcqpwg9OhUjyifpWopW\OnpZps4dN9TLxQ0I0toI\Ansys update agent.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.313.2646.0, AS: 1.313.2646.0, NIS: 1.313.2646.0
Verze modulu: AM: 1.1.16900.4, NIS: 1.1.16900.4

CodeIntegrity:
===================================

Date: 2020-05-02 23:09:05.836
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-05-02 23:09:05.818
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-05-02 23:09:05.518
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-05-02 23:09:05.500
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-05-02 23:09:05.477
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-05-02 23:09:05.456
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-05-02 23:09:03.669
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-05-02 23:09:03.550
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: LENOVO A4CN28WW (V 1.07) 07/08/2014
Motherboard: LENOVO Lancer 5B3
Processor: AMD FX-7500 Radeon R7, 10 Compute Cores 4C+6G
Percentage of memory in use: 41%
Total physical RAM: 7098.61 MB
Available physical RAM: 4166.54 MB
Total Virtual: 7546.61 MB
Available Virtual: 4491.35 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:889.55 GB) (Free:645.34 GB) NTFS
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:24.91 GB) NTFS

\\?\Volume{a5863104-51c1-4a45-afed-9669cb2f608f}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.72 GB) NTFS
\\?\Volume{c7eccb24-74e2-47ef-a715-c17e76020ed7}\ () (Fixed) (Total:0.54 GB) (Free:0.08 GB) NTFS
\\?\Volume{f780ef5f-e62e-411f-944f-122228d2a5e9}\ (PBR_DRV) (Fixed) (Total:14.09 GB) (Free:3.14 GB) NTFS
\\?\Volume{77506491-15c5-4e14-8d81-2cf37d5b7d81}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.21 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: B7508A1B)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 40566
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Kontrola logu

Příspěvekod jaro3 » 04 kvě 2020 23:21

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\Policies\Explorer: []
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\MountPoints2: {0adca7ec-8488-11ea-b1fa-28d244ce6b35} - "G:\Launch.exe"
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\MountPoints2: {7f13ed69-6b54-11e9-b1b3-b010418af0b4} - "F:\P-touch2430PC\P-touch2430PC.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {98C824BA-193C-4BB8-A2F4-375FC51564C1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-17] (Google Inc -> Google Inc.)
Task: {D7B60AE5-AA64-4983-9280-92CDFEC8F0C2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-17] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-2073552618-179677002-2118936161-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
C:\Users\Radek\AppData\Local\Paleramodot\Sikedadoni.exe
C:\Windows\Temp\qErpVwBLo0BftGgmBVfb\qrcqpwg9OhUjyifpWopW\OnpZps4dN9TLxQ0I0toI\Ansys update agent.exe

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

McAfee WebAdvisor zkus přeinstalovat
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

dabliq19
nováček
Příspěvky: 15
Registrován: květen 20
Pohlaví: Muž

Re: Kontrola logu

Příspěvekod dabliq19 » 05 kvě 2020 08:45

Fix result of Farbar Recovery Scan Tool (x64) Version: 03-05-2020
Ran by Radek (05-05-2020 08:26:16) Run:1
Running from C:\Users\Radek\Desktop
Loaded Profiles: Radek (Available Profiles: Radek)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\Policies\Explorer: []
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\MountPoints2: {0adca7ec-8488-11ea-b1fa-28d244ce6b35} - "G:\Launch.exe"
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\...\MountPoints2: {7f13ed69-6b54-11e9-b1b3-b010418af0b4} - "F:\P-touch2430PC\P-touch2430PC.exe"
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {98C824BA-193C-4BB8-A2F4-375FC51564C1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-17] (Google Inc -> Google Inc.)
Task: {D7B60AE5-AA64-4983-9280-92CDFEC8F0C2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-02-17] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-2073552618-179677002-2118936161-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
C:\Users\Radek\AppData\Local\Paleramodot\Sikedadoni.exe
C:\Windows\Temp\qErpVwBLo0BftGgmBVfb\qrcqpwg9OhUjyifpWopW\OnpZps4dN9TLxQ0I0toI\Ansys update agent.exe

EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
"HKU\S-1-5-21-2073552618-179677002-2118936161-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\" => removed successfully
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0adca7ec-8488-11ea-b1fa-28d244ce6b35} => removed successfully
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7f13ed69-6b54-11e9-b1b3-b010418af0b4} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{98C824BA-193C-4BB8-A2F4-375FC51564C1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{98C824BA-193C-4BB8-A2F4-375FC51564C1}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D7B60AE5-AA64-4983-9280-92CDFEC8F0C2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D7B60AE5-AA64-4983-9280-92CDFEC8F0C2}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKU\S-1-5-21-2073552618-179677002-2118936161-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} => removed successfully
HKLM\SOFTWARE\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho => not found
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fheoggkfdfchfphceeifdbepaooicaho => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
"C:\Users\Radek\AppData\Local\Paleramodot\Sikedadoni.exe" => not found
"C:\Windows\Temp\qErpVwBLo0BftGgmBVfb\qrcqpwg9OhUjyifpWopW\OnpZps4dN9TLxQ0I0toI\Ansys update agent.exe" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 39247396 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 2091937 B
Edge => 0 B
Chrome => 420876328 B
Firefox => 0 B
Opera => 140312 B

Temp, IE cache, history, cookies, recent:
Default => 14336 B
Users => 14336 B
ProgramData => 14336 B
Public => 14336 B
systemprofile => 14336 B
systemprofile32 => 14336 B
LocalService => 33510 B
NetworkService => 38432 B
Radek => 17644254 B

RecycleBin => 525603 B
EmptyTemp: => 468.2 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 08:33:20 ====


McAfee jsem odinstaloval.

dabliq19
nováček
Příspěvky: 15
Registrován: květen 20
Pohlaví: Muž

Re: Kontrola logu

Příspěvekod dabliq19 » 05 kvě 2020 08:53

Vypadá to, že je notebook teď o něco rychlejší než byl před tou očistou. On už má 8 roků, má už něco za sebou, ale i tak šlape pořád dobře. Jen panty jsou u tohoto Lenova Z50-75 na dvě věci.

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 40566
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Kontrola logu

Příspěvekod jaro3 » 05 kvě 2020 17:54

No jo , to neopravíme..

Stáhni si zde DelFix
Další odkazy:
https://toolslib.net/downloads/viewdownload/2-delfix/
http://ccm.net/download/download-24087-delfix
https://www.bleepingcomputer.com/download/delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7, 8 a10 musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

dabliq19
nováček
Příspěvky: 15
Registrován: květen 20
Pohlaví: Muž

Re: Kontrola logu

Příspěvekod dabliq19 » 06 kvě 2020 00:13

# DelFix v1.013 - Logfile created 06/05/2020 at 00:11:02
# Updated 17/04/2016 by Xplode
# Username : Radek - DESKTOP-JCB7IGO
# Operating System : Windows 10 Enterprise (64 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : C:\Users\Radek\Desktop\Addition.txt
Deleted : C:\Users\Radek\Desktop\adwcleaner_8.0.4.exe
Deleted : C:\Users\Radek\Desktop\Fixlog.txt
Deleted : C:\Users\Radek\Desktop\FRST.txt
Deleted : C:\Users\Radek\Desktop\FRST64.exe
Deleted : C:\Users\Radek\Desktop\JRT.exe
Deleted : C:\Users\Radek\Desktop\hijackthis 3
Deleted : C:\Users\Radek\Desktop\RogueKiller_setup.exe
Deleted : C:\Users\Radek\Desktop\zoek.exe
Deleted : C:\Users\Public\Desktop\RogueKiller.lnk
Deleted : C:\Users\Radek\Downloads\HijackThis.exe
Deleted : C:\Users\Radek\Downloads\hijackthis.log
Deleted : C:\Users\Radek\Downloads\TFC.exe
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis

~ Cleaning system restore ...

Deleted : RP #37 [JRT Pre-Junkware Removal | 05/03/2020 16:33:34]

New restore point created !

########## - EOF - ##########

dabliq19
nováček
Příspěvky: 15
Registrován: květen 20
Pohlaví: Muž

Re: Kontrola logu  Vyřešeno

Příspěvekod dabliq19 » 06 kvě 2020 00:15

Děkuji moc za čas a ochotu, notebook teď jede mnohem lépe a nepozoruji nyní žádné problémy.


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: CommonCrawl [Bot] a 1 host