Prosím o kontrolu logu

[jaro3]

Vypni antivir i firewall.
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
další odkaz:
http://www.bleepingcomputer.com/downloa ... scan-tool/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

[Reklama]

[stredis]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-11-2022
Ran by pocitac (administrator) on POCITAC-PC (Gigabyte Technology Co., Ltd. GA-870A-USB3) (02-12-2022 17:44:25)
Running from C:\Users\pocitac\Desktop
Loaded Profiles: pocitac
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\acrocef_1\RdrCEF.exe <5>
(Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(atiesrxx.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe ->) (ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (DEVGURU CO LTD -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(services.exe ->) (Giga-Byte Technology -> ) C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(svchost.exe ->) (Citrix Systems, Inc. -> Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(svchost.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(taskeng.exe ->) (Avast Software s.r.o. -> Avast Software) C:\Program Files\Common Files\avast software\overseer\overseer.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11545192 2010-11-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [215960 2022-11-25] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [165208 2010-05-07] (Logitech Inc -> Logitech Inc.)
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [304568 2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-12-05] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-02-24] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\...\Run: [OM_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Master\Monitor.exe -NoStart (No File)
HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3514176 2011-11-10] (DT Soft Ltd -> DT Soft Ltd)
HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845120 2015-02-24] (Samsung Electronics CO., LTD. -> Samsung)
HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\...\Run: [Google Update] => C:\Users\pocitac\AppData\Local\Google\Update\1.3.36.152\GoogleUpdateCore.exe [230360 2022-11-30] (Google LLC -> Google LLC)
HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\...\MountPoints2: {ded93c66-8206-11e0-b745-806e6f6e6963} - D:\Run.exe
HKLM\...\Windows x64\Print Processors\Canon MP270 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9X.DLL [28672 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP270 series: C:\Windows\system32\CNMLM9X.DLL [336896 2010-04-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2022-09-28] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {21AAC35D-039A-427D-A0FD-CEC41A74D4B2} - \{34352C0A-8134-45F0-A69A-46887B2B025A} -> No File <==== ATTENTION
Task: {2CCD072B-0357-4BE6-ABE0-FC8432FE6581} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {3377E452-548C-4855-B3B4-0F18D9A9F47E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {445DD9F3-554E-477B-8EE5-64EF37655A3D} - System32\Tasks\{774DB69E-2E3D-4433-9347-C40CCDAF8C68} => C:\Program Files (x86)\Oldgames\Dune 2000\DUNE2000.EXE [91136 1998-08-17] () [File not signed]
Task: {4A641696-AB20-4BB8-8CFD-E171CDC4FEE8} - System32\Tasks\{4AB83182-6EA0-4B16-9359-0EE9B6D8D19C} => C:\Dokumenty\Já\nsvpnc_setup.exe [1153176 2010-03-30] (Citrix Systems, Inc. -> Microsoft Corporation)
Task: {54DC78A9-DBA0-44A1-B431-DA58B530798C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-10] (Adobe Inc. -> Adobe)
Task: {77D0D0DF-71B5-41F8-A297-995CAA660E2E} - System32\Tasks\AMHelper => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe [682008 2021-03-30] (Zemana D.O.O. Sarajevo -> Zemana Ltd.)
Task: {9890DA15-079E-47B0-B5C0-7740EC2CDC53} - System32\Tasks\{D025FA7F-23B3-4050-A4B7-FC661F3C5743} => C:\Windows\system32\pcalua.exe -a I:\SETUP.EXE -d I:\
Task: {AF46CD15-07D4-4656-B909-3560AED0DD34} - System32\Tasks\AMSkipUAC => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe [682008 2021-03-30] (Zemana D.O.O. Sarajevo -> Zemana Ltd.)
Task: {BB2F42C6-CE37-4228-90E1-D4DC74159EB7} - System32\Tasks\{E1CD34C0-26A7-4533-A714-BCA865E4B676} => C:\Program Files (x86)\Skype\\Phone\Skype.exe (No File)
Task: {C2C769BF-94DC-42DA-A60F-2AC0F695A120} - System32\Tasks\{6C424772-ED2D-4832-AAE3-7163F32D90BF} => C:\Program Files (x86)\Oldgames\Dune 2000\DUNE2000.EXE [91136 1998-08-17] () [File not signed]
Task: {CAE30B1B-093C-47A6-9237-0726AEB67B94} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4951448 2022-11-25] (Avast Software s.r.o. -> AVAST Software)
Task: {D03CA1AC-FBDB-4B1D-9007-B8E297414D88} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1809513815-2237675505-1476634448-1000Core{15347FBE-B8E5-4904-8B00-5C07321285EE} => C:\Users\pocitac\AppData\Local\Google\Update\GoogleUpdate.exe [171480 2022-11-30] (Google LLC -> Google LLC)
Task: {D6B50559-FF3F-460D-9CEA-DCA32170A08A} - \{F505369D-7FE6-439C-BDA4-79900FBDF98F} -> No File <==== ATTENTION
Task: {DD50ACAA-2138-4E17-BBB5-7C6F705E9657} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {DD981506-C3C0-4995-910C-E15F6CE35759} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1809513815-2237675505-1476634448-1000UA{6F4C544F-C699-4287-A8CA-F3F8542D4A22} => C:\Users\pocitac\AppData\Local\Google\Update\GoogleUpdate.exe [171480 2022-11-30] (Google LLC -> Google LLC)
Task: {E0D1B671-16B0-490B-845D-BD00272B764E} - System32\Tasks\{078E4632-3E60-47E9-98F6-277F9CEB1704} => C:\Windows\system32\pcalua.exe -a C:\Windows\unvise32qt.exe -c C:\Windows\system32\QuickTime\Uninstall.log
Task: {E470C787-AF3A-4335-884A-024F1C191604} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{EAE17C99-F0C3-473A-A61E-43779B2A22BF}: [DhcpNameServer] 10.0.0.138

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\pocitac\AppData\Local\Microsoft\Edge\User Data\Default [2022-11-30]

FireFox:
========
FF ProfilePath: C:\Users\pocitac\AppData\Roaming\Mozilla\Firefox\Profiles\fz6kglcv.default-1491411779890 [2022-11-30]
FF Homepage: Mozilla\Firefox\Profiles\fz6kglcv.default-1491411779890 -> about:home
FF NewTab: Mozilla\Firefox\Profiles\fz6kglcv.default-1491411779890 -> about:newtab
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google Inc -> Google)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-11-14] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\pocitac\AppData\Local\Google\Chrome\User Data\Default [2022-11-30]
CHR HomePage: Default -> msn.com
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\pocitac\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-11-30]
CHR Extension: (MSN Homepage Plus) - C:\Users\pocitac\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkcgfbgohboipdhliafmacjnhjbhmim [2022-11-30]
CHR Extension: (Avast Online Security & Privacy) - C:\Users\pocitac\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2022-11-30]
CHR HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
StartMenuInternet: Google Chrome.55MM3WRCRW7MTP3MEZUEZQQLDU - C:\Users\pocitac\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-10] (Adobe Inc. -> Adobe)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2011-12-05] (Advanced Micro Devices, Inc.) [File not signed]
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
S3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8552856 2022-11-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [596888 2022-11-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [596888 2022-11-25] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2022-11-25] (Avast Software s.r.o. -> AVAST Software)
R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] (Giga-Byte Technology -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8872736 2022-11-27] (Malwarebytes Inc. -> Malwarebytes)
S2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [14715824 2022-11-15] (ADLICE -> )
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [14839096 2022-10-25] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 amsdk; C:\Windows\system32\drivers\amsdk.sys [232792 2022-11-30] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] (Giga-Byte Technology -> )
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [31376 2022-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [229720 2022-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [391264 2022-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [297832 2022-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [95960 2022-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [39648 2022-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [268480 2022-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [555520 2022-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2022-11-25] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [105760 2022-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [80384 2022-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [852000 2022-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [688336 2022-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [210632 2022-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [318464 2022-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-12-30] () [File not signed]
R3 gdrv; C:\Windows\gdrv.sys [25640 2022-12-02] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] (Logitech Inc -> )
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] (Logitech Inc -> )
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [223176 2022-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2022-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [149432 2022-12-02] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [530488 2011-11-20] () [File not signed] [File is in use]
U3 apavuc3x; C:\Windows\System32\Drivers\apavuc3x.sys [0 0000-00-00] (Advanced Micro Devices) <==== ATTENTION [zero byte File/Folder]
S1 ZAM; \??\C:\Windows\System32\drivers\zam64.sys [X]
S1 ZAM_Guard; \??\C:\Windows\System32\drivers\zamguard64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-12-02 17:44 - 2022-12-02 17:46 - 000020078 _____ C:\Users\pocitac\Desktop\FRST.txt
2022-12-02 17:43 - 2022-12-02 17:45 - 000000000 ____D C:\FRST
2022-12-02 17:42 - 2022-12-02 17:42 - 002375680 _____ (Farbar) C:\Users\pocitac\Desktop\FRST64.exe
2022-12-02 17:33 - 2022-12-02 17:33 - 000149432 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2022-11-30 17:33 - 2022-11-30 17:33 - 000002433 _____ C:\Users\pocitac\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-11-30 17:33 - 2022-11-30 17:33 - 000002396 _____ C:\Users\pocitac\Desktop\Google Chrome.lnk
2022-11-30 17:31 - 2022-11-30 17:31 - 000003570 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1809513815-2237675505-1476634448-1000UA{6F4C544F-C699-4287-A8CA-F3F8542D4A22}
2022-11-30 17:31 - 2022-11-30 17:31 - 000003298 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1809513815-2237675505-1476634448-1000Core{15347FBE-B8E5-4904-8B00-5C07321285EE}
2022-11-30 17:30 - 2022-11-30 17:31 - 001427176 _____ (Google LLC) C:\Users\pocitac\Downloads\ChromeSetup.exe
2022-11-30 17:02 - 2022-12-02 17:41 - 000002524 _____ C:\Windows\system32\Tasks\AMSkipUAC
2022-11-30 17:02 - 2022-11-30 17:02 - 000232792 _____ (Copyright 2018.) C:\Windows\system32\Drivers\amsdk.sys
2022-11-30 17:02 - 2022-11-30 17:02 - 000003478 _____ C:\Windows\system32\Tasks\AMHelper
2022-11-30 17:02 - 2022-11-30 17:02 - 000001260 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2022-11-30 17:02 - 2022-11-30 17:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2022-11-30 17:02 - 2022-11-30 17:02 - 000000000 ____D C:\Program Files (x86)\Zemana
2022-11-30 17:01 - 2022-12-02 17:41 - 000000000 ____D C:\Users\pocitac\AppData\Local\AMSDK
2022-11-30 17:00 - 2022-11-30 17:01 - 013922376 _____ (Zemana Ltd. ) C:\Users\pocitac\Desktop\Zemana.AntiMalware.Setup.exe
2022-11-30 16:58 - 2022-11-30 16:58 - 000008868 _____ C:\Users\pocitac\Desktop\zoek-results.txt
2022-11-30 16:53 - 2014-02-13 23:59 - 000024064 _____ C:\Windows\zoek-delete.exe
2022-11-30 16:25 - 2022-11-30 16:47 - 000000000 ____D C:\zoek_backup
2022-11-30 16:24 - 2022-11-30 16:24 - 000000000 ____D C:\Users\pocitac\AppData\Roaming\WinRAR
2022-11-30 16:24 - 2022-11-30 16:24 - 000000000 ____D C:\Users\pocitac\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-11-30 16:24 - 2022-11-30 16:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-11-30 16:24 - 2022-11-30 16:24 - 000000000 ____D C:\Program Files\WinRAR
2022-11-30 16:24 - 2020-09-06 23:04 - 002038755 _____ C:\Users\pocitac\Desktop\zoek (1).exe
2022-11-30 16:18 - 2022-11-30 16:18 - 001800862 _____ C:\Users\pocitac\Desktop\zoek1.rar
2022-11-30 16:15 - 2022-11-30 16:16 - 000000013 _____ C:\Users\pocitac\Desktop\aaa.txt
2022-11-28 16:40 - 2022-11-28 16:40 - 000000818 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2022-11-28 16:40 - 2022-11-28 16:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2022-11-28 16:39 - 2022-11-28 16:40 - 000000000 ____D C:\Program Files\RogueKiller
2022-11-28 16:30 - 2022-11-28 16:30 - 001790024 _____ (Malwarebytes) C:\Users\pocitac\Desktop\JRT.exe
2022-11-27 11:11 - 2022-11-27 11:11 - 000000000 ____D C:\Users\pocitac\AppData\Local\mbam
2022-11-27 11:10 - 2022-11-27 11:10 - 000239544 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2022-11-27 11:10 - 2022-11-27 11:10 - 000223176 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2022-11-27 11:10 - 2022-11-27 11:10 - 000001920 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2022-11-27 11:10 - 2022-11-27 11:10 - 000001908 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2022-11-27 11:10 - 2022-11-27 11:09 - 000158640 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2022-11-27 11:08 - 2022-11-27 11:08 - 000000000 ____D C:\ProgramData\Malwarebytes
2022-11-27 11:08 - 2022-11-27 11:08 - 000000000 ____D C:\Program Files\Malwarebytes
2022-11-27 11:04 - 2022-11-27 11:04 - 002632256 _____ (Malwarebytes) C:\Users\pocitac\Downloads\MBSetup-3EC8DBF3.exe.i4rndqf.partial
2022-11-27 10:58 - 2022-11-30 16:20 - 000000000 ____D C:\Users\pocitac\AppData\Local\Adobe
2022-11-27 10:55 - 2022-11-27 11:01 - 000000000 ____D C:\AdwCleaner
2022-11-27 10:53 - 2022-11-27 10:53 - 008791352 _____ (Malwarebytes) C:\Users\pocitac\Desktop\adwcleaner.exe
2022-11-27 10:16 - 2022-11-27 10:16 - 000448512 _____ (OldTimer Tools) C:\Users\pocitac\Downloads\TFC.exe
2022-11-27 10:14 - 2022-11-27 10:14 - 000050688 _____ (Atribune.org) C:\Users\pocitac\Downloads\ATF-Cleaner.exe
2022-11-25 17:22 - 2022-11-25 17:22 - 000000000 ____D C:\Windows\system32\gf2engine
2022-11-25 17:18 - 2022-11-25 17:18 - 000388608 _____ (Trend Micro Inc.) C:\Users\pocitac\Downloads\HijackThis.exe
2022-11-25 17:05 - 2022-11-25 17:05 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2022-11-25 17:02 - 2022-11-25 17:02 - 000001047 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer.lnk
2022-11-25 17:02 - 2022-11-25 17:02 - 000001035 _____ C:\Users\Public\Desktop\TeamViewer.lnk
2022-11-25 16:58 - 2022-11-25 16:58 - 000002039 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2022-11-25 16:58 - 2022-11-25 16:58 - 000000000 ____D C:\Users\pocitac\AppData\Roaming\Avast Software
2022-11-25 16:58 - 2022-11-25 16:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2022-11-25 16:54 - 2022-12-02 17:33 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2022-11-25 16:54 - 2022-11-25 16:54 - 000688336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2022-11-25 16:54 - 2022-11-25 16:54 - 000555520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2022-11-25 16:54 - 2022-11-25 16:54 - 000391264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2022-11-25 16:54 - 2022-11-25 16:54 - 000318464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2022-11-25 16:54 - 2022-11-25 16:54 - 000297832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2022-11-25 16:54 - 2022-11-25 16:54 - 000273816 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2022-11-25 16:54 - 2022-11-25 16:54 - 000268480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2022-11-25 16:54 - 2022-11-25 16:54 - 000210632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2022-11-25 16:54 - 2022-11-25 16:54 - 000105760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2022-11-25 16:54 - 2022-11-25 16:54 - 000095960 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2022-11-25 16:54 - 2022-11-25 16:54 - 000080384 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2022-11-25 16:54 - 2022-11-25 16:54 - 000039648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2022-11-25 16:54 - 2022-11-25 16:54 - 000038152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2022-11-25 16:54 - 2022-11-25 16:53 - 000852000 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2022-11-25 16:54 - 2022-11-25 16:53 - 000229720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2022-11-25 16:54 - 2022-11-25 16:53 - 000031376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2022-11-25 16:53 - 2022-11-25 16:53 - 000000000 ____D C:\Program Files\Avast Software
2022-11-25 16:49 - 2022-11-25 16:50 - 046307448 _____ (TeamViewer Germany GmbH) C:\Users\pocitac\Downloads\TeamViewer_Setup_x64.com_cs_automaticke-stahovani-teamviewer_
2022-11-25 16:33 - 2022-11-25 16:33 - 000000000 ____D C:\Users\pocitac\Desktop\2022_11_25
2022-11-25 16:32 - 2022-11-25 16:32 - 000000000 ___HD C:\ProgramData\CanonIJScan
2022-11-25 16:31 - 2022-11-25 16:32 - 000000000 ____D C:\Users\pocitac\AppData\Roaming\Canon
2022-11-25 16:25 - 2022-11-25 16:25 - 000002099 _____ C:\Users\Public\Desktop\Canon MP Navigator EX 3.0.lnk
2022-11-25 16:25 - 2022-11-25 16:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2022-11-25 16:25 - 2022-11-25 16:25 - 000000000 ____D C:\Program Files (x86)\Canon
2022-11-25 16:24 - 2022-11-25 16:25 - 049909328 _____ C:\Users\pocitac\Downloads\mpnx_3_0-win-3_06-ea23_2.exe
2022-11-25 14:00 - 2022-11-25 14:00 - 006408872 _____ C:\Users\pocitac\Downloads\SKMBT_C22422112507240 (2).pdf
2022-11-25 13:08 - 2022-11-25 13:08 - 003619950 _____ C:\Users\pocitac\Downloads\Situační výkres (846768-22).pdf
2022-11-25 11:51 - 2022-11-25 11:51 - 006408872 _____ C:\Users\pocitac\Downloads\SKMBT_C22422112507240 (1).pdf
2022-11-25 11:36 - 2022-11-25 11:36 - 002329412 _____ C:\Users\pocitac\Downloads\Situační výkres (846712-22).pdf
2022-11-25 11:18 - 2022-11-25 11:18 - 000742714 _____ C:\Users\pocitac\Downloads\Vyjádření cetin (2).pdf
2022-11-25 11:06 - 2022-11-25 11:06 - 006408872 _____ C:\Users\pocitac\Downloads\SKMBT_C22422112507240.pdf
2022-11-25 10:54 - 2022-11-25 10:54 - 002003508 _____ C:\Users\pocitac\Desktop\Božanov (846598-22).pdf
2022-11-25 10:50 - 2022-11-25 10:50 - 002030653 _____ C:\Users\pocitac\Downloads\Situační výkres (846598-22).pdf
2022-11-25 10:27 - 2022-11-25 10:27 - 003058863 _____ C:\Users\pocitac\Desktop\Dobruška 1 (846549-22).pdf
2022-11-25 10:19 - 2022-11-25 10:19 - 003085612 _____ C:\Users\pocitac\Downloads\Situační výkres (846549-22).pdf
2022-11-25 09:58 - 2022-11-25 09:58 - 002830972 _____ C:\Users\pocitac\Downloads\SKMBT_C22422112506120.pdf
2022-11-25 09:53 - 2022-11-25 09:53 - 000992863 _____ C:\Users\pocitac\Downloads\Lukavice 1 (846504-22).pdf
2022-11-25 09:53 - 2022-11-25 09:53 - 000000949 _____ C:\Users\pocitac\Desktop\Lukavice 1 (846504-22).lnk
2022-11-25 09:50 - 2022-11-25 09:50 - 001020304 _____ C:\Users\pocitac\Downloads\Situační výkres (846504-22).pdf
2022-11-25 09:45 - 2022-11-25 09:45 - 004576220 _____ C:\Users\pocitac\Downloads\Dobruška C22422112506130.pdf
2022-11-25 09:43 - 2022-11-25 09:43 - 004576892 _____ C:\Users\pocitac\Downloads\SKMBT_C22422112506130.pdf
2022-11-25 09:35 - 2022-11-25 09:35 - 002347137 _____ C:\Users\pocitac\Desktop\Lukavice C22422112506140.pdf
2022-11-25 09:32 - 2022-11-25 09:32 - 002347245 _____ C:\Users\pocitac\Downloads\SKMBT_C22422112506140.pdf
2022-11-24 15:23 - 2022-11-24 15:23 - 004311651 _____ C:\Users\pocitac\Downloads\domaci_lekar.pdf
2022-11-23 12:36 - 2022-11-23 12:36 - 000042823 _____ C:\Users\pocitac\Downloads\prilohy_1270.zip
2022-11-23 12:27 - 2022-11-23 12:27 - 000232342 _____ C:\Users\pocitac\Downloads\stp (2).zip
2022-11-23 12:25 - 2022-11-23 12:26 - 000232342 _____ C:\Users\pocitac\Downloads\stp (1).zip
2022-11-23 12:21 - 2022-11-23 12:21 - 000232342 _____ C:\Users\pocitac\Downloads\stp.zip
2022-11-21 16:37 - 2022-11-21 16:37 - 000000000 ____D C:\Users\pocitac\AppData\Local\ElevatedDiagnostics
2022-11-20 13:57 - 2022-11-20 13:57 - 000104936 _____ C:\Users\pocitac\Downloads\Rozpis záloh (8).pdf
2022-11-20 12:21 - 2022-11-20 12:21 - 000658525 _____ C:\Users\pocitac\Desktop\Bohuslavice n.M.(858559-21).pdf
2022-11-20 12:20 - 2022-11-20 12:20 - 000685703 _____ C:\Users\pocitac\Downloads\Situační výkres (858559-21).pdf
2022-11-20 12:17 - 2022-11-20 12:17 - 000547275 _____ C:\Users\pocitac\Desktop\Bohuslavice n.M.(544821-22).pdf
2022-11-20 12:16 - 2022-11-20 12:16 - 000580136 _____ C:\Users\pocitac\Downloads\Situa ní výkres (544821-22).pdf
2022-11-20 09:43 - 2022-11-20 12:13 - 000000000 ____D C:\Users\pocitac\Desktop\Výsledky pro hermione andron riding gringotts (1)_files
2022-11-16 16:04 - 2022-11-16 16:04 - 001682743 _____ C:\Users\pocitac\Downloads\Situační výkres (838870-22).pdf
2022-11-16 16:00 - 2022-11-16 16:00 - 001348788 _____ C:\Users\pocitac\Downloads\Situační výkres (838862-22).pdf
2022-11-16 15:40 - 2022-11-16 15:40 - 000270662 _____ C:\Users\pocitac\Desktop\Vrchlabí ENERGOLAND (837129-22).pdf
2022-11-16 15:38 - 2022-11-16 15:38 - 000133473 _____ C:\Users\pocitac\Desktop\Vrchlabí ENERGOLAND (831063-22).pdf
2022-11-16 15:31 - 2022-11-16 15:31 - 000270203 _____ C:\Users\pocitac\Desktop\Vrchlabí ENERGOLAND (831057-22).pdf
2022-11-16 15:26 - 2022-11-16 15:26 - 000282966 _____ C:\Users\pocitac\Downloads\Vrchlabí ENERGOLAND (831048-22).pdf
2022-11-16 15:25 - 2022-11-16 15:25 - 001011430 _____ C:\Users\pocitac\Downloads\prilohy_1218.zip
2022-11-15 14:21 - 2022-11-15 14:21 - 000088527 _____ C:\Users\pocitac\Downloads\Potvrzeni_platby telefon 10.22.pdf
2022-11-15 14:20 - 2022-11-15 14:20 - 000088527 _____ C:\Users\pocitac\Downloads\Potvrzeni_platby (12).PDF
2022-11-15 14:19 - 2022-11-15 14:19 - 000088891 _____ C:\Users\pocitac\Downloads\Potvrzeni_platby (11).PDF
2022-11-15 14:17 - 2022-11-15 14:18 - 000088974 _____ C:\Users\pocitac\Downloads\Potvrzeni_platby (10).PDF
2022-11-14 13:27 - 2022-11-14 13:27 - 000060672 _____ C:\Users\pocitac\Downloads\2022-11-01-0500042018-sluzby_v_pevne_siti-fs (2).pdf
2022-11-14 13:19 - 2022-11-14 13:19 - 000636621 _____ C:\Users\pocitac\Downloads\Situační výkres (832682-22).pdf
2022-11-11 15:21 - 2022-11-11 15:21 - 001253607 _____ C:\Users\pocitac\Downloads\Situační výkres (830908-22).pdf
2022-11-07 16:46 - 2022-11-07 16:46 - 001149672 _____ C:\Users\pocitac\Downloads\Situační výkres (829234-22).pdf
2022-11-07 16:46 - 2022-11-07 16:46 - 001149672 _____ C:\Users\pocitac\Downloads\Situační výkres (829234-22) (1).pdf
2022-11-07 16:27 - 2022-11-07 16:27 - 001251676 _____ C:\Users\pocitac\Downloads\Situační výkres (829231-22) (1).pdf
2022-11-07 16:24 - 2022-11-07 16:24 - 001251676 _____ C:\Users\pocitac\Downloads\Situační výkres (829231-22).pdf
2022-11-07 16:08 - 2022-11-07 16:08 - 002187010 _____ C:\Users\pocitac\Downloads\SKMBT_C22422110714100.pdf
2022-11-07 16:08 - 2022-11-07 16:08 - 002069732 _____ C:\Users\pocitac\Downloads\SKMBT_C22422110714101.pdf
2022-11-07 09:43 - 2022-11-07 09:43 - 002407324 _____ C:\Users\pocitac\Downloads\prkený Důl 2 Z+D (828234-22).pdf
2022-11-07 09:30 - 2022-11-07 09:30 - 002434496 _____ C:\Users\pocitac\Downloads\Situační výkres (828234-22).pdf
2022-11-07 09:06 - 2022-11-07 09:06 - 000668073 _____ C:\Users\pocitac\Downloads\Situační výkres (828050-22).pdf
2022-11-06 13:32 - 2022-11-06 13:32 - 000270989 _____ C:\Users\pocitac\Downloads\prilohy_49364.zip
2022-11-04 10:28 - 2022-11-04 10:28 - 000060672 _____ C:\Users\pocitac\Downloads\2022-11-01-0500042018-sluzby_v_pevne_siti-fs (1).pdf
2022-11-04 10:22 - 2022-11-04 10:22 - 000060672 _____ C:\Users\pocitac\Downloads\2022-11-01-0500042018-sluzby_v_pevne_siti-fs.pdf
2022-11-04 09:35 - 2022-11-04 09:35 - 000018083 _____ C:\Users\pocitac\Downloads\Opis smluvních údajů.PDF
2022-11-04 09:34 - 2022-11-04 09:34 - 000054303 _____ C:\Users\pocitac\Downloads\Ceník produktu Elektřina - na 3 roky v akci (1).PDF
2022-11-04 09:28 - 2022-11-04 09:28 - 000104946 _____ C:\Users\pocitac\Downloads\Rozpis záloh (7).pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-12-02 17:46 - 2017-04-22 18:58 - 000076114 _____ C:\Windows\ZAM.krnl.trace
2022-12-02 17:42 - 2012-07-22 09:19 - 000000000 ____D C:\Program Files (x86)\Google
2022-12-02 17:32 - 2011-05-19 17:48 - 000000000 ____D C:\ProgramData\AVAST Software
2022-12-02 17:31 - 2011-05-19 19:28 - 000000000 ____D C:\Windows\SysWOW64\logishrd
2022-12-02 17:31 - 2011-05-19 19:28 - 000000000 ____D C:\Windows\system32\logishrd
2022-12-02 17:31 - 2011-05-19 12:16 - 000025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2022-12-02 17:31 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2022-11-30 17:42 - 2009-07-14 05:45 - 000032656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2022-11-30 17:42 - 2009-07-14 05:45 - 000032656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2022-11-30 17:31 - 2012-07-22 09:22 - 000000000 ____D C:\Users\pocitac\AppData\Local\Google
2022-11-30 17:26 - 2017-04-14 17:37 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2022-11-30 17:22 - 2015-10-25 07:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2022-11-30 17:18 - 2012-12-05 17:14 - 000000000 ____D C:\Users\pocitac\AppData\Roaming\Samsung
2022-11-30 17:18 - 2012-12-05 17:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2022-11-30 17:18 - 2012-12-05 17:12 - 000000000 ____D C:\Program Files (x86)\Samsung
2022-11-30 17:18 - 2011-05-19 12:09 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-11-30 17:10 - 2017-04-15 15:53 - 000000000 ____D C:\ProgramData\RogueKiller
2022-11-30 17:02 - 2017-04-22 18:57 - 000000000 ____D C:\Users\pocitac\AppData\Local\Zemana
2022-11-30 16:34 - 2020-07-08 14:52 - 000002221 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-11-30 16:34 - 2020-07-08 14:52 - 000002180 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-11-25 17:09 - 2017-04-14 17:39 - 000000000 ____D C:\Users\pocitac\AppData\Local\TeamViewer
2022-11-25 17:02 - 2011-05-27 12:45 - 000000000 ____D C:\Users\pocitac\AppData\Roaming\TeamViewer
2022-11-25 16:54 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2022-11-25 16:32 - 2011-05-19 12:05 - 000000000 ____D C:\Users\pocitac
2022-11-25 16:04 - 2012-11-08 18:40 - 000000000 ____D C:\Program Files\Google
2022-11-23 12:32 - 2010-11-21 10:27 - 000668882 _____ C:\Windows\system32\perfh005.dat
2022-11-23 12:32 - 2010-11-21 10:27 - 000141542 _____ C:\Windows\system32\perfc005.dat
2022-11-23 12:32 - 2009-07-14 06:13 - 001584626 _____ C:\Windows\system32\PerfStringBackup.INI
2022-11-20 12:16 - 2022-09-17 10:09 - 000000000 ____D C:\Users\pocitac\AppData\Roaming\com.adobe.dunamis
2022-11-20 09:32 - 2022-10-13 15:22 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2022-11-15 14:20 - 2022-04-19 14:32 - 000000000 ____D C:\Users\pocitac\Desktop\já
2022-11-15 13:51 - 2020-07-08 14:52 - 000003540 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-11-15 13:51 - 2020-07-08 14:52 - 000003412 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-11-09 16:32 - 2013-08-14 20:18 - 000000000 ____D C:\Windows\system32\MRT
2022-11-09 16:28 - 2011-05-19 12:35 - 146960040 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2022-11-25 12:34
==================== End of FRST.txt ========================

[stredis]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-11-2022
Ran by pocitac (02-12-2022 17:46:32)
Running from C:\Users\pocitac\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X64) (2011-05-19 11:05:13)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1809513815-2237675505-1476634448-500 - Administrator - Disabled)
Guest (S-1-5-21-1809513815-2237675505-1476634448-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-1809513815-2237675505-1476634448-1003 - Limited - Enabled)
pocitac (S-1-5-21-1809513815-2237675505-1476634448-1000 - Administrator - Enabled) => C:\Users\pocitac

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 22.003.20282 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.465 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 22.11.6041 - Avast Software)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1206.2 - AVAST Software) Hidden
Canon MP Navigator EX 3.0 (HKLM-x32\...\MP Navigator EX 3.0) (Version: - )
Canon MP270 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP270_series) (Version: - )
Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Earth Plug-in (HKLM-x32\...\{57BB4801-61C8-4E74-9672-2160728A461E}) (Version: 7.1.5.1557 - Google)
Google Chrome (HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\...\Google Chrome) (Version: 108.0.5359.72 - Google LLC)
Malwarebytes version 4.5.18.226 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.18.226 - Malwarebytes)
Microsoft .NET Framework 4.8 (CSY) (HKLM\...\{39DC4515-B8C1-3AD9-AA88-D7C8A333612F}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{16735AF7-1D8D-3681-94A5-C578A61EC832}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Age of Empires II (HKLM-x32\...\Age of Empires 2.0) (Version: - )
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 107.0.1418.62 - Microsoft Corporation)
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
OpenTTD (HKLM-x32\...\OpenTTD) (Version: 12.2 - OpenTTD)
RogueKiller version 15.6.3.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 15.6.3.0 - Adlice Software)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.35.7 - TeamViewer)
WinRAR 6.10 beta 3 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.10.3 - win.rar GmbH)
Zemana AntiMalware verze 3.2.28 (HKLM-x32\...\{4E1F3677-C72E-4F7D-B66E-85467B1A289E}_is1) (Version: 3.2.28 - Zemana)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1809513815-2237675505-1476634448-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\pocitac\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File
CustomCLSID: HKU\S-1-5-21-1809513815-2237675505-1476634448-1000_Classes\CLSID\{1F9E0710-2073-435F-9C1B-F29946205947}\InprocServer32 -> C:\Users\pocitac\AppData\Local\Google\Update\1.3.36.152\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1809513815-2237675505-1476634448-1000_Classes\CLSID\{85D8EE2F-794F-41F0-BB03-49D56A23BEF4}\InprocServer32 -> C:\Users\pocitac\AppData\Local\Google\Update\1.3.36.152\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1809513815-2237675505-1476634448-1000_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\pocitac\AppData\Local\Google\Chrome\Application\108.0.5359.72\notification_helper.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1809513815-2237675505-1476634448-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\pocitac\AppData\Local\Google\Update\1.3.36.152\psuser_64.dll (Google LLC -> Google LLC)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-11-25] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-11-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2021-03-30] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-11-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-01-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-01-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-11-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-11-27] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2011-12-05] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2021-03-30] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-11-25] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-11-27] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-01-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-01-01] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.i420] => C:\Windows\system32\lvcod64.dll [172128 2011-04-01] (Logitech Inc -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [301664 2011-04-01] (Logitech Inc -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.iv50] => C:\Windows\SysWOW64\ir50_32.dll [746496 2009-07-14] (Microsoft Windows -> Intel Corporation)
HKLM\...\Drivers32: [VIDC.IV41] => C:\Windows\SysWOW64\IR41_32.AX [839680 2009-07-14] (Microsoft Windows -> Intel Corporation)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

2009-01-20 13:51 - 2009-01-20 13:51 - 000007168 _____ () [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atixclib.dll
2011-12-05 22:10 - 2011-12-05 22:10 - 000369152 _____ () [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2011-12-05 22:15 - 2011-12-05 22:15 - 000103424 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Actions.CCAA.Shared.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.DPPE.Shared.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.EEU.Shared.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.GD.Shared.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Hotkeys.Shared.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.REG.Shared.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000044032 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Source.Kit.Server.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000006144 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.WinMessages.Shared.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000034816 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000006144 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.Shared.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\APM.Foundation.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ATICCCom.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000021504 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.Implementation.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.Runtime.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.shared.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000039936 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Dashboard.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Runtime.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Shared.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Audio.Graphics.Dashboard.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000036864 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CPUOverDrive.Fuel.Dashboard.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000018944 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CPUOverDrive.Fuel.Runtime.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000018944 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CPUOverDrive.Fuel.Shared.dll
2011-12-05 22:10 - 2011-12-05 22:10 - 000029696 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CPUPStates.Fuel.Dashboard.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CPUPStates.Fuel.Shared.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CustomFormats.Graphics.Shared.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CustomFormatSelection.Graphics.Dashboard.Shared.Private.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000053248 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.shared.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Shared.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000053248 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000049152 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.shared.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000025088 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000356352 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000036864 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
2011-12-05 22:10 - 2011-12-05 22:10 - 000048128 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DPPE.Fuel.Dashboard.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DPPE.Fuel.Shared.dll
2011-12-05 22:10 - 2011-12-05 22:10 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Fets.Fuel.Dashboard.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000011264 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Fets.Fuel.Shared.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000057344 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000229376 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000106496 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Runtime.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000081920 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Shared.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MultiVPU2.Graphics.Shared.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000101376 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.shared.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 002510848 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000110592 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000081920 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Shared.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000159744 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Dashboard.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Runtime.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.shared.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000020992 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.UpdateNotification.Graphics.Dashboard.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000015872 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.UpdateNotification.Graphics.Runtime.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.UpdateNotification.Graphics.Shared.dll
2011-12-05 22:10 - 2011-12-05 22:10 - 001260032 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.User.Fuel.Dashboard.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000021504 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.WiFi.Fuel.Dashboard.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.WiFi.Fuel.Shared.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Fuel.Dashboard.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000019968 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Fuel.Runtime.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000010752 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Fuel.Shared.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000172032 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 001007616 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.Shared.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.Shared.Private.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Dashboard.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Runtime.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Shared.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Platform.Dashboard.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000011264 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Platform.Runtime.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Platform.Shared.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000071168 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Combined.Fusion.Aspects.Runtime.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000060928 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.ProfileManager2.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 001394176 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.Private.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Extension.EEU.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000037376 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.Private.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000413696 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Systemtray.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000303104 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Client.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000019968 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.CoreAudioAPI.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000029184 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Private.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.XManifest.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Fuel.Foundation.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000047104 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.Private.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Private.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.Foundation.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000095744 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.Implementation.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\NEWAEM.Foundation.dll
2011-11-02 14:03 - 2011-11-02 14:03 - 000098304 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2011-11-25 16:09 - 2011-11-25 16:09 - 000110592 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ADL.Foundation.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000065536 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\APM.Server.dll
2011-12-05 22:10 - 2011-12-05 22:10 - 000393216 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000065536 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000524288 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.dll
2011-12-05 22:08 - 2011-12-05 22:08 - 000043520 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
2011-12-05 22:10 - 2011-12-05 22:10 - 002722816 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Combined.Graphics.Aspects1.Dashboard.dll
2011-12-05 22:10 - 2011-12-05 22:10 - 000240640 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Combined.Graphics.Aspects2.Runtime.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000036352 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.Private.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000380928 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000057344 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.dll
2007-05-02 17:44 - 2007-05-02 17:44 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0703.dll
2007-08-09 16:58 - 2007-08-09 16:58 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0706.dll
2009-06-17 05:27 - 2009-06-17 05:27 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll
2009-06-17 10:24 - 2009-06-17 10:24 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll
2008-04-03 16:29 - 2008-04-03 16:29 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll
2009-04-22 12:13 - 2009-04-22 12:13 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0805.dll
2008-12-30 11:04 - 2008-12-30 11:04 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0812.dll
2009-06-17 10:24 - 2009-06-17 10:24 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0906.dll
2009-12-08 06:49 - 2009-12-08 06:49 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0912.dll
2010-10-07 13:07 - 2010-10-07 13:07 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I1010.dll
2010-11-05 14:18 - 2010-11-05 14:18 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I1011.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000327680 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Localization.Foundation.Implementation.cs_Localization.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000468992 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Localization.Foundation.Private.dll
2011-12-05 22:09 - 2011-12-05 22:09 - 000168960 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Implementation.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000008704 _____ (Advanced Micro Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Private.dll
2011-12-05 22:11 - 2011-12-05 22:11 - 000027648 _____ (Advanced Mirco Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.Dashboard.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000303104 _____ (Advanced Mirco Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll
2011-12-05 22:07 - 2011-12-05 22:07 - 000192512 _____ (Advanced Mirco Devices, Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll
2011-12-05 22:15 - 2011-12-05 22:15 - 000037376 _____ (AMD) [File not signed] [File is in use] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\FUEL.Implementation.dll
2010-03-04 00:27 - 2010-03-04 00:27 - 000016384 _____ (ATI Technologies Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Foundation.dll
2009-04-22 12:13 - 2009-04-22 12:13 - 000045056 _____ (ATI Technologies Inc.) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0601.dll
2010-01-15 16:05 - 2010-01-15 16:05 - 001101824 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Citrix\ICA Client\MFC80.DLL
2022-11-25 16:54 - 2022-11-25 16:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2022-11-25 16:54 - 2022-11-25 16:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2022-11-25 16:54 - 2022-11-25 16:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2022-11-25 16:54 - 2022-11-25 16:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2022-11-25 16:54 - 2022-11-25 16:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2022-11-25 16:54 - 2022-11-25 16:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2022-11-25 16:54 - 2022-11-25 16:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll
2022-11-25 16:54 - 2022-11-25 16:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll
2022-11-25 16:54 - 2022-11-25 16:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2022-11-25 16:54 - 2022-11-25 16:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2022-11-25 16:54 - 2022-11-25 16:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\msvcp140.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\MSVCP140.dll
2022-11-25 16:54 - 2022-11-25 16:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\ucrtbase.DLL
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\ucrtbase.DLL
2022-11-25 16:54 - 2022-11-25 16:54 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\Avast Software\Avast\1029\avast.local_vc142.crt\VCRUNTIME140.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\VCRUNTIME140.dll
2022-12-02 17:35 - 2022-12-02 17:35 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Avast Software\Avast\avast.local_vc142.crt\vcruntime140_1.dll] C:\Program Files\Avast Software\Avast\defs\22120206\avast.local_vc142.crt\VCRUNTIME140_1.dll
2011-12-05 22:06 - 2011-12-05 22:06 - 000082944 _____ (Microsoft) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Microsoft.WindowsAPICodePack.dll
2011-12-05 22:06 - 2011-12-05 22:06 - 000489472 _____ (Microsoft) [File not signed] [File is in use] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Microsoft.WindowsAPICodePack.Shell.dll
2012-11-12 11:42 - 2015-02-24 09:27 - 000250368 _____ (Windows (R) Codename Longhorn DDK provider) [File not signed] C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\UPNPDevice_Kies.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

[stredis]

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17] (Skype Technologies SA -> Skype Technologies S.A.)
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17] (Skype Technologies SA -> Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2010-10-12] (Citrix Systems, Inc. -> Citrix Systems, Inc.)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\...\o2.com -> hxxp://ca.cz.o2.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2022-11-30 16:30 - 000000841 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static
HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\pocitac\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{0E9D11F2-3C7F-4D35-9E1B-B1A6F3F2B8BB}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{81A606C0-8125-4767-9CE7-11DCBD977905}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{304A984A-A2FB-4F31-93CD-CE9F1F20A235}C:\program files (x86)\oldgames\dune 2000\dune2000.dat] => (Block) C:\program files (x86)\oldgames\dune 2000\dune2000.dat (Intelligent Games) [File not signed]
FirewallRules: [UDP Query User{049A7FED-4AC1-4F81-BE78-CB54BD5AED20}C:\program files (x86)\oldgames\dune 2000\dune2000.dat] => (Block) C:\program files (x86)\oldgames\dune 2000\dune2000.dat (Intelligent Games) [File not signed]
FirewallRules: [TCP Query User{82193075-36FF-4128-BBA2-3BDD2C2D4B7F}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\empires2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [UDP Query User{CAA9BDD9-6B8E-4BF1-A4CC-5385ECE10165}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\empires2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [TCP Query User{D16DF01D-D8A5-40B9-850D-46ECD66BB1CA}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\empires2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [UDP Query User{C83530F7-1875-4A20-9264-31B16020B4E2}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\empires2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [TCP Query User{69EBADA3-0580-47B3-8D69-1A8D6FDB3670}C:\dokumenty\já\dune-2000\dune2000.dat] => (Allow) C:\dokumenty\já\dune-2000\dune2000.dat (Intelligent Games) [File not signed]
FirewallRules: [UDP Query User{77AB13C6-5FE8-42E8-A25A-F168E97AEFEB}C:\dokumenty\já\dune-2000\dune2000.dat] => (Allow) C:\dokumenty\já\dune-2000\dune2000.dat (Intelligent Games) [File not signed]
FirewallRules: [{FB389DE6-5E58-4264-AA38-3E7ECA381760}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe => No File
FirewallRules: [{7A900BE2-61B1-41D8-A3BC-53E80D79CC26}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe => No File
FirewallRules: [{E70C6BCE-4D1E-4282-8523-26A417A21A84}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1144570E-0F5A-4947-8842-3BAF5E34D840}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BF6AAF35-9A55-4B29-ABB5-A9180FA1352F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DC18AFCD-7DDD-4B30-8F0A-D292CB2C4A7E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{889C7E93-2324-43DD-9DE3-A2AA54BA3077}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{974F746C-5D7D-4EAE-A08D-4E2AB1BE4A25}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

==================== Restore Points =========================

14-06-2022 08:48:11 Windows Update
15-06-2022 18:23:21 Windows Update
20-06-2022 06:25:02 Windows Update
23-06-2022 16:43:58 Windows Update
29-06-2022 08:18:24 Windows Update
07-07-2022 16:26:54 Windows Update
14-07-2022 15:19:10 Windows Update
14-07-2022 15:24:27 Windows Update
25-07-2022 06:32:49 Windows Update
30-07-2022 09:13:16 Windows Update
02-08-2022 17:54:08 Windows Update
07-08-2022 08:17:23 Windows Update
13-08-2022 14:42:12 Windows Update
13-08-2022 17:43:12 Windows Update
17-08-2022 07:28:01 Windows Update
21-08-2022 09:44:25 Windows Update
27-08-2022 11:59:30 Windows Update
06-09-2022 07:49:59 Windows Update
11-09-2022 11:40:35 Windows Update
15-09-2022 09:02:21 Windows Update
20-09-2022 08:27:01 Windows Update
23-09-2022 08:29:50 Windows Update
28-09-2022 07:55:07 Windows Update
01-10-2022 09:53:59 Windows Update
06-10-2022 10:11:42 Windows Update
13-10-2022 15:14:58 Windows Update
13-10-2022 16:09:55 Windows Update
19-10-2022 09:19:23 Windows Update
24-10-2022 08:05:15 Windows Update
28-10-2022 09:25:49 Windows Update
01-11-2022 12:56:34 Windows Update
04-11-2022 15:20:35 Windows Update
08-11-2022 10:03:26 Windows Update
09-11-2022 16:27:50 Windows Update
14-11-2022 11:27:41 Windows Update
20-11-2022 09:25:02 Windows Update
24-11-2022 14:44:00 Windows Update
28-11-2022 16:33:44 JRT Pre-Junkware Removal
30-11-2022 16:29:28 zoek.exe restore point
30-11-2022 17:17:37 Removed Samsung Kies3

==================== Faulty Device Manager Devices ============

Name: ZAM Helper Driver
Description: ZAM Helper Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ZAM
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: ZAM Guard Driver
Description: ZAM Guard Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ZAM_Guard
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: ========================

Application errors:
==================
Error: (12/02/2022 05:32:32 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/30/2022 05:26:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/30/2022 05:11:28 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/30/2022 04:56:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/30/2022 04:09:28 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/28/2022 04:36:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LVPrcSrv.exe, verze: 13.0.1774.0, časové razítko: 0x4be4c07a
Název chybujícího modulu: LVPrcSrv.exe, verze: 13.0.1774.0, časové razítko: 0x4be4c07a
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000be1b
ID chybujícího procesu: 0x7f4
Čas spuštění chybující aplikace: 0x01d9033c32fc0daa
Cesta k chybující aplikaci: C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe
Cesta k chybujícímu modulu: C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe
ID zprávy: 66f0c36a-6f32-11ed-85ce-50e54932dfbd

Error: (11/28/2022 04:16:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/27/2022 11:28:16 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


System errors:
=============
Error: (12/02/2022 05:50:15 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/02/2022 05:39:14 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (12/02/2022 05:39:14 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (12/02/2022 05:31:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba TeamViewer neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (12/02/2022 05:31:38 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby TeamViewer bylo dosaženo časového limitu (30000 ms).

Error: (11/30/2022 05:40:10 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/30/2022 05:40:10 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/30/2022 05:32:44 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Windows Update přestala během spouštění reagovat.


Windows Defender:
================
Date: 2021-12-10 11:16:50.268
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{13BA0FF0-983C-4889-ADF5-E3E9C0D27761}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

Date: 2013-01-06 17:13:54.108
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{325BA3E8-B402-4950-AAC7-7751F5C2B2C1}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:pocitac-PC\pocitac
Event[0]:

Date: 2021-06-29 08:25:44.009
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:1.343.25.0
Předchozí verze podpisu:1.341.1435.0
Zdroj aktualizace:Uživatel
Typ podpisu:Antispywarový program
Typ aktualizace:Delta
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:1.1.18300.4
Předchozí verze modulu:1.1.18200.4
Kód chyby:0x80070666
Popis chyby:Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-06-29 08:25:44.009
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.18300.4
Předchozí verze modulu:1.1.18200.4
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x80070666
Popis chyby:Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-06-07 10:04:22.686
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:1.341.227.0
Předchozí verze podpisu:1.339.1767.0
Zdroj aktualizace:Uživatel
Typ podpisu:Antispywarový program
Typ aktualizace:Delta
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:1.1.18200.4
Předchozí verze modulu:1.1.18100.6
Kód chyby:0x80070666
Popis chyby:Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-06-07 10:04:22.685
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.18200.4
Předchozí verze modulu:1.1.18100.6
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x80070666
Popis chyby:Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-05-07 15:02:33.780
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:1.339.21.0
Předchozí verze podpisu:1.337.491.0
Zdroj aktualizace:Uživatel
Typ podpisu:Antispywarový program
Typ aktualizace:Delta
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:1.1.18100.6
Předchozí verze modulu:1.1.18100.5
Kód chyby:0x80070666
Popis chyby:Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

==================== Memory info ===========================

BIOS: Award Software International, Inc. F4 03/09/2011
Motherboard: Gigabyte Technology Co., Ltd. GA-870A-USB3
Processor: AMD Athlon(tm) II X3 450 Processor
Percentage of memory in use: 82%
Total physical RAM: 4093.54 MB
Available physical RAM: 696.3 MB
Total Virtual: 8185.21 MB
Available Virtual: 4324.09 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:243.8 GB) (Model: SAMSUNG HD502HJ SATA Disk Device) NTFS

\\?\Volume{ded93c62-8206-11e0-b745-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.04 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 44D51B70)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

[jaro3]

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\...\Run: [OM_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Master\Monitor.exe -NoStart (No File)
HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\...\MountPoints2: {ded93c66-8206-11e0-b745-806e6f6e6963} - D:\Run.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {21AAC35D-039A-427D-A0FD-CEC41A74D4B2} - \{34352C0A-8134-45F0-A69A-46887B2B025A} -> No File <==== ATTENTION
Task: {2CCD072B-0357-4BE6-ABE0-FC8432FE6581} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {BB2F42C6-CE37-4228-90E1-D4DC74159EB7} - System32\Tasks\{E1CD34C0-26A7-4533-A714-BCA865E4B676} => C:\Program Files (x86)\Skype\\Phone\Skype.exe (No File)
Task: {D03CA1AC-FBDB-4B1D-9007-B8E297414D88} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1809513815-2237675505-1476634448-1000Core{15347FBE-B8E5-4904-8B00-5C07321285EE} => C:\Users\pocitac\AppData\Local\Google\Update\GoogleUpdate.exe [171480 2022-11-30] (Google LLC -> Google LLC)
Task: {D6B50559-FF3F-460D-9CEA-DCA32170A08A} - \{F505369D-7FE6-439C-BDA4-79900FBDF98F} -> No File <==== ATTENTION
Task: {DD50ACAA-2138-4E17-BBB5-7C6F705E9657} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {DD981506-C3C0-4995-910C-E15F6CE35759} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1809513815-2237675505-1476634448-1000UA{6F4C544F-C699-4287-A8CA-F3F8542D4A22} => C:\Users\pocitac\AppData\Local\Google\Update\GoogleUpdate.exe [171480 2022-11-30] (Google LLC -> Google LLC)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
U3 apavuc3x; C:\Windows\System32\Drivers\apavuc3x.sys [0 0000-00-00] (Advanced Micro Devices) <==== ATTENTION [zero byte File/Folder]
CustomCLSID: HKU\S-1-5-21-1809513815-2237675505-1476634448-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\pocitac\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
FirewallRules: [{FB389DE6-5E58-4264-AA38-3E7ECA381760}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe => No File
FirewallRules: [{7A900BE2-61B1-41D8-A3BC-53E80D79CC26}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe => No File
Virustotal: I:\SETUP.EXE

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

Soumrak nad Windows 7 a 8.1. Chrome 111 je už nebude podporovat
https://www.zive.cz/clanky/soumrak-nad- ... fault.aspx

[stredis]

Fix result of Farbar Recovery Scan Tool (x64) Version: 26-11-2022
Ran by pocitac (03-12-2022 16:33:59) Run:1
Running from C:\Users\pocitac\Desktop
Loaded Profiles: pocitac
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\...\Run: [OM_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Master\Monitor.exe -NoStart (No File)
HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\...\MountPoints2: {ded93c66-8206-11e0-b745-806e6f6e6963} - D:\Run.exe
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {21AAC35D-039A-427D-A0FD-CEC41A74D4B2} - \{34352C0A-8134-45F0-A69A-46887B2B025A} -> No File <==== ATTENTION
Task: {2CCD072B-0357-4BE6-ABE0-FC8432FE6581} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {BB2F42C6-CE37-4228-90E1-D4DC74159EB7} - System32\Tasks\{E1CD34C0-26A7-4533-A714-BCA865E4B676} => C:\Program Files (x86)\Skype\\Phone\Skype.exe (No File)
Task: {D03CA1AC-FBDB-4B1D-9007-B8E297414D88} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1809513815-2237675505-1476634448-1000Core{15347FBE-B8E5-4904-8B00-5C07321285EE} => C:\Users\pocitac\AppData\Local\Google\Update\GoogleUpdate.exe [171480 2022-11-30] (Google LLC -> Google LLC)
Task: {D6B50559-FF3F-460D-9CEA-DCA32170A08A} - \{F505369D-7FE6-439C-BDA4-79900FBDF98F} -> No File <==== ATTENTION
Task: {DD50ACAA-2138-4E17-BBB5-7C6F705E9657} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {DD981506-C3C0-4995-910C-E15F6CE35759} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1809513815-2237675505-1476634448-1000UA{6F4C544F-C699-4287-A8CA-F3F8542D4A22} => C:\Users\pocitac\AppData\Local\Google\Update\GoogleUpdate.exe [171480 2022-11-30] (Google LLC -> Google LLC)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
U3 apavuc3x; C:\Windows\System32\Drivers\apavuc3x.sys [0 0000-00-00] (Advanced Micro Devices) <==== ATTENTION [zero byte File/Folder]
CustomCLSID: HKU\S-1-5-21-1809513815-2237675505-1476634448-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\pocitac\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => -> No File
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
FirewallRules: [{FB389DE6-5E58-4264-AA38-3E7ECA381760}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe => No File
FirewallRules: [{7A900BE2-61B1-41D8-A3BC-53E80D79CC26}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe => No File
Virustotal: I:\SETUP.EXE

EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
"HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\Software\Microsoft\Windows\CurrentVersion\Run\\OM_Monitor" => removed successfully
HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ded93c66-8206-11e0-b745-806e6f6e6963} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{21AAC35D-039A-427D-A0FD-CEC41A74D4B2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{21AAC35D-039A-427D-A0FD-CEC41A74D4B2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{34352C0A-8134-45F0-A69A-46887B2B025A}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2CCD072B-0357-4BE6-ABE0-FC8432FE6581}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2CCD072B-0357-4BE6-ABE0-FC8432FE6581}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BB2F42C6-CE37-4228-90E1-D4DC74159EB7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BB2F42C6-CE37-4228-90E1-D4DC74159EB7}" => removed successfully
C:\Windows\System32\Tasks\{E1CD34C0-26A7-4533-A714-BCA865E4B676} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E1CD34C0-26A7-4533-A714-BCA865E4B676}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D03CA1AC-FBDB-4B1D-9007-B8E297414D88}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D03CA1AC-FBDB-4B1D-9007-B8E297414D88}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1809513815-2237675505-1476634448-1000Core{15347FBE-B8E5-4904-8B00-5C07321285EE} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-1809513815-2237675505-1476634448-1000Core{15347FBE-B8E5-4904-8B00-5C07321285EE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D6B50559-FF3F-460D-9CEA-DCA32170A08A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D6B50559-FF3F-460D-9CEA-DCA32170A08A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F505369D-7FE6-439C-BDA4-79900FBDF98F}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{DD50ACAA-2138-4E17-BBB5-7C6F705E9657}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DD50ACAA-2138-4E17-BBB5-7C6F705E9657}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DD981506-C3C0-4995-910C-E15F6CE35759}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DD981506-C3C0-4995-910C-E15F6CE35759}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1809513815-2237675505-1476634448-1000UA{6F4C544F-C699-4287-A8CA-F3F8542D4A22} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-1809513815-2237675505-1476634448-1000UA{6F4C544F-C699-4287-A8CA-F3F8542D4A22}" => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKU\S-1-5-21-1809513815-2237675505-1476634448-1000\SOFTWARE\Google\Chrome\Extensions\fkkcgfbgohboipdhliafmacjnhjbhmim => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => removed successfully
apavuc3x => service not found.
HKU\S-1-5-21-1809513815-2237675505-1476634448-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\DropboxExt4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GDriveSharedOverlay => removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}" => removed successfully
HKLM\Software\Classes\PROTOCOLS\Handler\skype4com => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FB389DE6-5E58-4264-AA38-3E7ECA381760}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7A900BE2-61B1-41D8-A3BC-53E80D79CC26}" => removed successfully
"VirusTotal: I:\SETUP.EXE" => not found

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 50719641 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 93 B
Edge => 0 B
Chrome => 9163823 B
Firefox => 641641 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 33058 B
systemprofile32 => 66244 B
LocalService => 99369 B
NetworkService => 132494 B
pocitac => 55536817 B

RecycleBin => 4002 B
EmptyTemp: => 111 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:36:11 ====

[jaro3]

Stáhni si zde DelFix
Další odkazy:
https://toolslib.net/downloads/viewdownload/2-delfix/
http://ccm.net/download/download-24087-delfix
https://www.bleepingcomputer.com/download/delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7, 8 a10 musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Příčinou bude asi nejnovější Chrome a jeho nekompabilita s windows7.
Z mé strany asi vše.

[stredis]

Ani z jednoho odkazu se mi DelFix nepodařilo stáhnout :(

[jaro3]

Tento funguje:
https://www.bleepingcomputer.com/download/delfix/