Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Problém so súbormi .domn

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Archi69
Návštěvník
Návštěvník
Příspěvky: 3
Registrován: 16 zář 2019 16:24

Problém so súbormi .domn

#1 Příspěvek od Archi69 »

Ahojte, mám taký problém všetky dáta ktoré mám v PC si vytvorili koncovku .domn a nejdú otvoriť po vymazaní tej koncovky sú nefunkčné vedel by mi niekto poradiť čo s tým ???
Dosť by som to potreboval lebo mám tam asi tak 450Gb grafiky.... A stalo sa to aj na zálohovacom disku.

Za každú pomoc ďakujem.

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-09-2019
Ran by amd (administrator) on DESKTOP-R2T9L7L (16-09-2019 17:30:06)
Running from C:\Users\amd\Downloads
Loaded Profiles: amd (Available Profiles: defaultuser0 & amd)
Platform: Windows 10 Home Version 1803 17134.1006 (X64) Language: Slovenčina (Slovensko)
Default browser: Opera
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0340998.inf_amd64_4e7ad8ec950b7e37\B340755\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0340998.inf_amd64_4e7ad8ec950b7e37\B340755\atiesrxx.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avscan.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avscan.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\AviraSoftwareUpdaterToastNotificationsBridge.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.RealTime.Client.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.RealTimeOptimizer.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(D-LINK CORPORATION -> ) C:\Program Files (x86)\D-Link\DWA-172\WPSService20.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
(Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19072.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\FileHistory.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SystemSettingsAdminFlows.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera.exe
(Opera Software AS -> Opera Software) C:\Users\amd\AppData\Local\Programs\Opera\63.0.3368.88\opera_crashreporter.exe
(SA International) [File not signed] C:\Windows\SysWOW64\SAiAdmin.exe
(SA International) [File not signed] C:\Windows\SysWOW64\SAiDownloaderVista.exe
(SA International) [File not signed] C:\Windows\SysWOW64\SAiLicSvr.exe
(SafeNet, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2176648 2018-12-09] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2622520 2019-05-19] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5007408 2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [227648 2019-08-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331016 2019-09-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-3818584211-8296589-4235223502-1001\...\MountPoints2: {5438f5e8-24ae-11e9-af2d-54a05055a63d} - "H:\HiSuiteDownLoader.exe" 
HKU\S-1-5-21-3818584211-8296589-4235223502-1001\...\MountPoints2: {694c1b40-c438-11e9-af5c-54a05055a63d} - "H:\Welcome.exe" 
HKU\S-1-5-21-3818584211-8296589-4235223502-1001\...\Winlogon: [Shell] C:\WINDOWS\explorer.exe [4040008 2019-08-13] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-08-26] (Google LLC -> Google LLC)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0035C05E-E28F-426B-9EFC-4DD5F35C778C} - \CCleanerSkipUAC -> No File <==== ATTENTION
Task: {0EA906CB-EADB-4BF3-9060-55C7FD828C08} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [157144 2019-09-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {0FBC2DCB-396B-461B-BCC5-404CE91F8827} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [58760 2019-03-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {24C2FE9B-F0A1-483E-8A73-4F922EA0E17C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3273F2F0-A30A-4CF4-8716-C011BB87FECE} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367016 2019-08-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {40C76101-AE70-4E95-9316-1AAD13E5DF82} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe
Task: {70C36BDF-27E6-4242-A3C1-BCB6C083E90A} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-R2T9L7L-amd => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {761DC1F9-9DAA-4277-9BC0-3FBC3251C3E8} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2345608 2019-09-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {7C3480DF-1693-496A-9148-4135E17D1CE1} - System32\Tasks\Opera scheduled Autoupdate 1568644657 => C:\Users\amd\AppData\Local\Programs\Opera\launcher.exe [1348632 2019-09-12] (Opera Software AS -> Opera Software)
Task: {7F349D47-694D-485A-A990-CDC54F25C4A4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [157144 2019-09-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {833C393B-DF4E-4B54-AE22-528C3C651452} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367016 2019-08-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {848EA308-0E8E-421E-B9EE-5074B3EAF46B} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2174624 2019-09-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {894074BC-E8C2-4628-9BEB-2E068CACF7CE} - System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-R2T9L7L-amd => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {8B1ECA5D-2448-4071-8A36-F9F95C68074E} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-03-27] (Advanced Micro Devices, Inc.) [File not signed]
Task: {9CBE07F6-12BF-46FF-960C-1F7430B3D757} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {9D48FBB6-FAF1-4E76-BA4B-7125FDAB594C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2045832 2019-08-19] (AVAST Software s.r.o. -> AVAST Software)
Task: {A3A3E7A7-7338-4FB1-B470-B04925AF6B9A} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2757472 2019-08-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {A3E75E37-16F7-4EE8-B05F-8A52A2074B0C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {A8052144-5C36-4A6D-A11B-C11483868DAA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2174624 2019-09-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {BE518CD9-B318-493B-956D-925CCCE90B99} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe
Task: {C874D2AB-C47B-465F-AFF4-6D1AE829C355} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [26062808 2019-09-16] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG )
Task: {D5AF35B5-B98F-431A-8A78-BC1532A2B227} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-03-27] (Advanced Micro Devices, Inc.) [File not signed]
Task: {DE9E5B64-8836-4451-9F81-FE12F8F36B76} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {EBF825C9-0F40-4007-A7D1-8AD00A297883} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{9ad075e3-9332-4990-afc5-2dee51afdd80}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9fc6db52-9f7f-49b5-a223-e6d2b05d8112}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{c1e9de52-c43c-4dce-9f34-3e787d43b536}: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{f8bbeae9-4460-490e-84ea-3a66b9479dda}: [DhcpNameServer] 192.168.2.1 192.168.2.1

Internet Explorer:
==================
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-09-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-09-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-09-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-09-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-09-01] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: m5b14z16.default
FF ProfilePath: C:\Users\amd\AppData\Roaming\Mozilla\Firefox\Profiles\m5b14z16.default [2019-09-16]
FF Extension: (ETP Search Volume Study) - C:\Users\amd\AppData\Roaming\Mozilla\Firefox\Profiles\m5b14z16.default\Extensions\etp-search-volume-study@shield.mozilla.org.xpi [2019-07-17]
FF Extension: (Avira Password Manager) - C:\Users\amd\AppData\Roaming\Mozilla\Firefox\Profiles\m5b14z16.default\Extensions\passwordmanager@avira.com [2019-09-16]
FF Extension: (Mozilla Official) - C:\Users\amd\AppData\Roaming\Mozilla\Firefox\Profiles\m5b14z16.default\Extensions\{14553439-2741-4e9d-b474-784f336f58c9} [2019-09-16] [not signed]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-05-02]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-05-19] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-05-19] (Adobe Inc. -> Adobe Systems)

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.uspesne-podnikanie.sk/organizujete-sutaz-na-fb-alebo-v-e-shope-nezabudnite-zverejnit-pravidla
CHR StartupUrls: Default -> "hxxp://www.google.sk/"
CHR Profile: C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default [2019-09-16]
CHR Extension: (Prezentácie) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-09]
CHR Extension: (Dokumenty) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-09]
CHR Extension: (Disk Google) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-09]
CHR Extension: (SEO META in 1 CLICK) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjogjfinolnhfhkbipphpdlldadpnmhc [2019-07-21]
CHR Extension: (YouTube) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-09]
CHR Extension: (Avira Password Manager) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2019-09-16]
CHR Extension: (Avira Safe Shopping) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2019-09-16]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-08-27]
CHR Extension: (Sumo Paint - Online Image Editor) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpgjihldbpodlmnjolekemlfbcajnmod [2018-12-09]
CHR Extension: (Blue Messenger) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecmfchgfmbbddembehpkopmhjiepcckd [2019-08-25]
CHR Extension: (Adobe Acrobat) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-08-21]
CHR Extension: (Tabuľky) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-09]
CHR Extension: (Page Analytics (by Google)) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnbdnhhicmebfgdgglcdacdapkcihcoh [2019-02-20]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-09]
CHR Extension: (Google Calendar) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2019-08-15]
CHR Extension: (WGT Baseball: MLB) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\hpbjopfokekaencoephlgdbnljhcflhm [2018-12-09]
CHR Extension: (WhatsGreen Multi Messenger) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbhfoiaobflocffnclkigpkeoagheimn [2019-01-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-12-09]
CHR Extension: (Gmail) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-05]
CHR Extension: (Chrome Media Router) - C:\Users\amd\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-11]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

Opera: 
=======
OPR Extension: (Avira Browser Safety) - C:\Users\amd\AppData\Roaming\Opera Software\Opera Stable\Extensions\dalelnnofafalcmkmnhdbigbjjkloabo [2019-09-16]
OPR Extension: (Avira Password Manager) - C:\Users\amd\AppData\Roaming\Opera Software\Opera Stable\Extensions\ngohaaocccbohaffogpbgfpmpgbcgccg [2019-09-16]
OPR Extension: (Free Avira Phantom VPN – Unblock Websites) - C:\Users\amd\AppData\Roaming\Opera Software\Opera Stable\Extensions\pcgkmkjdikhiodinhloioejnpjgmfigd [2019-09-16]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-05-19] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0340998.inf_amd64_4e7ad8ec950b7e37\B340755\atiesrxx.exe [508208 2019-04-03] (Advanced Micro Devices, Inc. -> AMD)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1207624 2019-08-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [535360 2019-08-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [484144 2019-08-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [484144 2019-08-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [501600 2019-08-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [582016 2019-08-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2989536 2019-08-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [382232 2019-09-16] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [116176 2019-09-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [844888 2019-08-21] (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11568144 2019-08-30] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3644008 2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2018-12-15] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 SAiAdmin; C:\Windows\SysWOW64\SAiAdmin.exe [65536 2011-10-12] (SA International) [File not signed]
R2 SAiDownloaderVista; C:\Windows\SysWOW64\SAiDownloaderVista.exe [77824 2011-10-12] (SA International) [File not signed]
R2 SAiLicSvr; C:\Windows\SysWOW64\SAiLicSvr.exe [86016 2007-12-19] (SA International) [File not signed]
R2 SentinelKeysServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [374304 2011-05-27] (SafeNet, Inc. -> SafeNet, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WPSService20; C:\Program Files (x86)\D-Link\DWA-172\WPSService20.exe [104144 2015-11-22] (D-LINK CORPORATION -> )

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [58760 2018-06-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0340998.inf_amd64_4e7ad8ec950b7e37\B340755\atikmdag.sys [52888368 2019-04-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0340998.inf_amd64_4e7ad8ec950b7e37\B340755\atikmpag.sys [590128 2019-04-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [102856 2019-04-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [38320 2017-09-01] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [107400 2018-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-03-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [203440 2019-08-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [195648 2019-08-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2019-01-12] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2019-01-12] (Disc Soft Ltd -> Disc Soft Ltd)
R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Microsoft Windows -> Realtek )
R3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [5707264 2018-04-12] (Microsoft Windows -> Realtek Semiconductor Corporation )
S3 Ser2pl; C:\WINDOWS\system32\DRIVERS\ser2pl64.sys [97280 2010-03-12] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 SNTUSB64; C:\WINDOWS\System32\drivers\SNTUSB64.SYS [63528 2011-05-27] (SafeNet, Inc. -> SafeNet, Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [22016 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [47496 2019-07-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [344288 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
U3 aswbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-16 17:30 - 2019-09-16 17:31 - 000040446 _____ C:\Users\amd\Downloads\FRST.txt
2019-09-16 17:30 - 2019-09-16 17:30 - 000000000 ____D C:\FRST
2019-09-16 17:29 - 2019-09-16 17:29 - 001614848 _____ (Farbar) C:\Users\amd\Downloads\FRST64.exe
2019-09-16 17:25 - 2019-09-16 17:25 - 000000000 ___HD C:\$SysReset
2019-09-16 17:13 - 2019-09-16 17:13 - 000000000 ____D C:\Users\amd\AppData\Local\Avira
2019-09-16 17:10 - 2019-09-16 17:10 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avira
2019-09-16 16:55 - 2019-09-16 17:09 - 000000150 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2019-09-16 16:55 - 2019-09-16 16:56 - 000000000 ____D C:\ProgramData\AomeiBR
2019-09-16 16:55 - 2019-09-16 16:55 - 000001126 _____ C:\Users\Public\Desktop\AOMEI Backupper Professional Trial.lnk
2019-09-16 16:55 - 2019-09-16 16:55 - 000001024 ____H C:\SYSTAG.BIN
2019-09-16 16:55 - 2019-09-16 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper
2019-09-16 16:54 - 2019-09-16 17:09 - 000000000 ____D C:\Program Files (x86)\AOMEI Backupper
2019-09-16 16:54 - 2017-09-01 18:12 - 000038320 _____ C:\WINDOWS\system32\amwrtdrv.sys
2019-09-16 16:54 - 2016-12-21 22:54 - 000051120 _____ C:\WINDOWS\system32\ambakdrv.sys
2019-09-16 16:54 - 2016-12-21 22:52 - 000171952 _____ C:\WINDOWS\system32\ammntdrv.sys
2019-09-16 16:47 - 2019-09-16 16:48 - 111186080 _____ (AOMEI Technology Co., Ltd. ) C:\Users\amd\Downloads\BackupperFull.exe
2019-09-16 16:46 - 2019-09-16 16:53 - 624435064 _____ C:\Users\amd\Downloads\AcronisTrueImage2020.exe
2019-09-16 16:37 - 2019-09-16 16:37 - 000004202 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1568644657
2019-09-16 16:37 - 2019-09-16 16:37 - 000001367 _____ C:\Users\amd\Desktop\Prehliadač Opera.lnk
2019-09-16 16:37 - 2019-09-16 16:37 - 000001367 _____ C:\Users\amd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prehliadač Opera.lnk
2019-09-16 16:37 - 2019-09-16 16:37 - 000000000 ____D C:\Users\amd\AppData\Roaming\Opera Software
2019-09-16 16:37 - 2019-09-16 16:37 - 000000000 ____D C:\Users\amd\AppData\Local\Opera Software
2019-09-16 16:36 - 2019-09-16 16:36 - 000003374 _____ C:\WINDOWS\System32\Tasks\Avira_Antivirus_Systray
2019-09-16 16:36 - 2019-08-30 10:13 - 000203440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2019-09-16 16:36 - 2019-08-30 10:13 - 000195648 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2019-09-16 16:36 - 2019-06-07 15:09 - 000078936 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avdevprot.sys
2019-09-16 16:36 - 2019-03-20 19:50 - 000089736 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2019-09-16 16:36 - 2019-03-20 19:50 - 000046704 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2019-09-16 16:36 - 2019-03-20 19:50 - 000045472 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys
2019-09-16 16:36 - 2019-03-20 19:50 - 000022336 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avelam.sys
2019-09-16 16:34 - 2019-09-16 17:09 - 000000000 ____D C:\Users\Public\Speedup Sessions
2019-09-16 16:34 - 2019-09-16 16:34 - 000000000 ____D C:\Users\Public\PrivacyPal Sessions
2019-09-16 16:33 - 2019-09-16 16:33 - 000003786 _____ C:\WINDOWS\System32\Tasks\AviraSystemSpeedupUpdate
2019-09-16 16:32 - 2019-09-16 16:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2019-09-16 16:32 - 2019-09-16 16:32 - 000001257 _____ C:\Users\Public\Desktop\Avira.lnk
2019-09-16 16:31 - 2019-09-16 16:31 - 006118048 _____ (Avira Operations GmbH & Co. KG) C:\Users\amd\Downloads\avira_en_fass0_589507256-1568644282__phpws.exe
2019-09-16 16:08 - 2019-09-16 16:39 - 000000004 _____ C:\ProgramData\lock.dat
2019-09-16 16:08 - 2019-09-16 16:10 - 000000008 _____ C:\ProgramData\irw.atsd
2019-09-16 16:08 - 2019-09-16 16:08 - 000000008 _____ C:\ProgramData\ts.dat
2019-09-16 15:55 - 2019-09-16 15:55 - 000001117 _____ C:\Users\amd\_readme.txt
2019-09-16 15:47 - 2019-09-16 16:05 - 000000000 ____D C:\Program Files\KMSpico
2019-09-16 15:47 - 2019-09-16 15:47 - 003194923 _____ C:\Users\amd\Downloads\KMSpico.zip
2019-09-16 15:43 - 2019-09-16 16:08 - 000000000 ____D C:\Users\amd\AppData\Local\c5a25553-bc52-4388-8dfd-a32ae8dbf214
2019-09-16 15:43 - 2019-09-16 15:44 - 000000000 ____D C:\Users\amd\AppData\Local\61ffa73a-7bd2-4621-8659-69d4d311555d
2019-09-16 15:43 - 2019-09-16 15:43 - 000000000 ____D C:\SystemID
2019-09-16 15:43 - 2019-09-16 15:43 - 000000000 ____D C:\ProgramData\Lamia
2019-09-16 15:42 - 2019-09-16 17:20 - 000000000 ____D C:\Program Files (x86)\MachinerData
2019-09-16 15:42 - 2019-09-16 15:42 - 007848276 _____ C:\Users\amd\Documents\126
2019-09-16 15:42 - 2019-09-16 15:42 - 000001745 _____ C:\Users\amd\Desktop\Garbage Cleaner.lnk
2019-09-16 15:42 - 2019-09-16 15:42 - 000000000 ____D C:\ProgramData\Garbage Cleaner
2019-09-16 15:19 - 2019-09-16 15:19 - 002138855 _____ C:\Users\amd\Downloads\kmspico-10-2-0_04de48.zip
2019-09-16 15:09 - 2019-09-16 15:55 - 000000000 ___HD C:\OneDriveTemp
2019-09-16 00:02 - 2019-09-16 00:02 - 009550932 _____ C:\Users\amd\Downloads\green-grass-flat-horizontal-banners-set.zip
2019-09-15 16:44 - 2019-09-15 16:44 - 000097389 _____ C:\Users\amd\Desktop\tráva.pdf
2019-09-14 21:00 - 2019-09-14 21:00 - 000814816 _____ C:\Users\amd\Desktop\florest_cisla.pdf
2019-09-14 21:00 - 2019-09-14 21:00 - 000805789 _____ C:\Users\amd\Desktop\florest_web.pdf
2019-09-13 18:27 - 2019-09-16 03:03 - 085865006 _____ C:\Users\amd\Desktop\florest_dodávka.psb
2019-09-13 17:02 - 2019-09-13 17:02 - 000001471 _____ C:\Users\amd\Downloads\phone-symbol-of-an-auricular-inside-a-circle.svg
2019-09-13 16:39 - 2019-09-13 16:39 - 003411169 _____ C:\Users\amd\Downloads\set-diferentes-cesped-jardin.zip
2019-09-13 14:36 - 2019-09-13 14:36 - 000288308 _____ C:\Users\amd\Downloads\air-x-ekonomy-zasobnik-sk (1).pdf
2019-09-13 14:36 - 2019-09-13 14:36 - 000287784 _____ C:\Users\amd\Downloads\eq-podlahovka-sk (1).pdf
2019-09-13 14:36 - 2019-09-13 14:36 - 000287426 _____ C:\Users\amd\Downloads\air-x-komfort-chlazeni-sk (1).pdf
2019-09-13 11:43 - 2019-09-13 11:44 - 037212164 _____ C:\Users\amd\Downloads\Buderus_Logatherm_ODU_Split13_frontal.tif
2019-09-13 11:43 - 2019-09-13 11:43 - 018203364 _____ C:\Users\amd\Downloads\Logatherm_IDU_W8_T_links (1).tif
2019-09-13 11:41 - 2019-09-13 11:42 - 017768304 _____ C:\Users\amd\Downloads\Montage_WPL_AR.tif
2019-09-13 11:40 - 2019-09-13 11:41 - 018203364 _____ C:\Users\amd\Downloads\Logatherm_IDU_W8_T_links.tif
2019-09-13 11:25 - 2019-09-13 11:26 - 006368861 _____ C:\Users\amd\Downloads\A3 (1).pdf
2019-09-13 11:19 - 2019-09-13 11:20 - 037509352 _____ C:\Users\amd\Downloads\Buderus_Logatherm_ODU_W_6_frontal.tif
2019-09-13 10:34 - 2019-09-13 10:35 - 007948008 _____ (Tim Kosse) C:\Users\amd\Downloads\FileZilla_3.44.2_win64-setup.exe
2019-09-12 20:17 - 2019-09-12 20:17 - 006368861 _____ C:\Users\amd\Downloads\A3.pdf
2019-09-12 20:16 - 2019-09-12 20:16 - 009239842 _____ C:\Users\amd\Desktop\bunbonambo-1ks.pdf
2019-09-12 20:14 - 2019-09-12 20:16 - 161117277 _____ C:\Users\amd\Desktop\sush-bunbonambo.psb
2019-09-12 20:01 - 2019-09-12 20:01 - 000067645 _____ C:\Users\amd\Downloads\bankgothic-lt-bt.zip
2019-09-12 20:01 - 2019-09-12 20:01 - 000067645 _____ C:\Users\amd\Downloads\bankgothic-lt-bt (1).zip
2019-09-12 20:00 - 2019-09-12 20:00 - 000009333 _____ C:\Users\amd\Downloads\LOGO (1).pdf
2019-09-12 19:48 - 2019-09-12 19:48 - 000009333 _____ C:\Users\amd\Downloads\LOGO.pdf
2019-09-12 16:22 - 2019-09-12 16:22 - 000216827 _____ C:\Users\amd\Desktop\sushi-house.ai
2019-09-12 16:06 - 2019-09-12 16:06 - 000044680 _____ C:\Users\amd\Downloads\image1.jpeg
2019-09-12 15:24 - 2019-09-12 15:24 - 001332228 _____ C:\Users\amd\Downloads\set-spa-center-banners-with-waves.zip
2019-09-12 15:15 - 2019-09-12 15:15 - 024282796 _____ C:\Users\amd\Downloads\watercolor-illustration-with-creative-sushi-themed-banners-advertisement-leaflet.zip
2019-09-12 14:57 - 2019-09-12 14:57 - 007917553 _____ C:\Users\amd\Downloads\sushi letak1.pdf
2019-09-12 14:57 - 2019-09-12 14:57 - 006552372 _____ C:\Users\amd\Downloads\sushi letak2.pdf
2019-09-12 14:53 - 2019-09-12 14:53 - 000545029 _____ C:\Users\amd\Downloads\WhatsApp Image 2019-09-12 at 14.52.49.jpeg
2019-09-12 12:17 - 2019-09-12 12:17 - 000355817 _____ C:\Users\amd\Downloads\WhatsApp Image 2019-09-12 at 12.17.24.jpeg
2019-09-12 12:14 - 2019-09-12 12:14 - 000367402 _____ C:\Users\amd\Downloads\WhatsApp Image 2019-09-11 at 15.05.12 (1).jpeg
2019-09-12 11:36 - 2019-09-12 11:36 - 001859809 _____ C:\Users\amd\Downloads\Logatherm_WPLS2_SK.PDF
2019-09-12 11:36 - 2019-09-12 11:36 - 000809054 _____ C:\Users\amd\Downloads\Logatherm_WPL_AR.PDF
2019-09-12 11:36 - 2019-09-12 11:36 - 000659192 _____ C:\Users\amd\Downloads\Logatherm_WPS_CZ.PDF
2019-09-11 15:10 - 2019-09-11 15:10 - 000367402 _____ C:\Users\amd\Downloads\WhatsApp Image 2019-09-11 at 15.05.12.jpeg
2019-09-11 14:10 - 2019-09-11 14:10 - 001896778 _____ C:\Users\amd\Downloads\zelena_domacnostiam.pdf
2019-09-11 14:10 - 2019-09-11 14:10 - 000496783 _____ C:\Users\amd\Downloads\letak_tepelne_cerpadla_buderus__akcia_2019_web.pdf
2019-09-11 14:10 - 2019-09-11 14:10 - 000288308 _____ C:\Users\amd\Downloads\air-x-ekonomy-zasobnik-sk.pdf
2019-09-11 14:10 - 2019-09-11 14:10 - 000287784 _____ C:\Users\amd\Downloads\eq-podlahovka-sk.pdf
2019-09-11 14:10 - 2019-09-11 14:10 - 000287426 _____ C:\Users\amd\Downloads\air-x-komfort-chlazeni-sk.pdf
2019-09-11 14:10 - 2019-09-11 14:10 - 000280808 _____ C:\Users\amd\Downloads\0826_0001.pdf
2019-09-11 11:30 - 2019-09-11 11:30 - 003149997 _____ C:\Users\amd\Desktop\filip.pdf
2019-09-11 11:26 - 2019-09-11 11:26 - 008106853 _____ C:\Users\amd\Downloads\kids-large-group-acting-our-varoous-roles.zip
2019-09-11 00:33 - 2019-09-11 00:33 - 003779032 _____ C:\Users\amd\Downloads\icone-sociais-skribble.zip
2019-09-11 00:31 - 2019-09-11 00:31 - 005971745 _____ C:\Users\amd\Downloads\social-media-logo-collection.zip
2019-09-10 23:54 - 2019-09-04 12:01 - 004527800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-09-10 23:54 - 2019-09-04 11:42 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll
2019-09-10 23:54 - 2019-09-04 11:39 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-09-10 23:54 - 2019-09-04 07:25 - 003180080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2019-09-10 23:54 - 2019-09-04 07:25 - 001613096 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-09-10 23:54 - 2019-09-04 07:24 - 002417744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2019-09-10 23:54 - 2019-09-04 07:24 - 001298960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-09-10 23:54 - 2019-09-04 07:24 - 000705336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-09-10 23:54 - 2019-09-04 07:15 - 000500744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-09-10 23:54 - 2019-09-04 07:14 - 002469920 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-09-10 23:54 - 2019-09-04 07:13 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-09-10 23:54 - 2019-09-04 07:03 - 001993136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-09-10 23:54 - 2019-09-04 07:02 - 006568280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-09-10 23:54 - 2019-09-04 06:55 - 025857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-09-10 23:54 - 2019-09-04 06:48 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2019-09-10 23:54 - 2019-09-04 06:45 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2019-09-10 23:54 - 2019-09-04 06:40 - 001232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-09-10 23:54 - 2019-09-04 06:39 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2019-09-10 23:54 - 2019-09-04 06:39 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2019-09-10 23:54 - 2019-09-04 06:38 - 000884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2019-09-10 23:54 - 2019-09-04 06:38 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2019-09-10 23:54 - 2019-08-16 00:55 - 000786072 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-09-10 23:54 - 2019-08-16 00:55 - 000604000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-09-10 23:54 - 2019-08-13 17:04 - 001651040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2019-09-10 23:54 - 2019-08-13 16:46 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-09-10 23:54 - 2019-08-13 16:43 - 001295872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-09-10 23:54 - 2019-08-13 16:43 - 000624128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2019-09-10 23:54 - 2019-08-13 06:46 - 000611640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-09-10 23:54 - 2019-08-13 06:45 - 002718736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-09-10 23:54 - 2019-08-13 06:44 - 002161288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2019-09-10 23:54 - 2019-08-13 06:16 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-09-10 23:54 - 2019-08-13 06:12 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-09-10 23:54 - 2019-08-13 06:11 - 000737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2019-09-10 23:54 - 2019-08-13 04:51 - 000421376 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\system32\curl.exe
2019-09-10 23:54 - 2019-08-13 04:49 - 000806328 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-09-10 23:54 - 2019-08-13 04:49 - 000806328 _____ C:\WINDOWS\system32\locale.nls
2019-09-10 23:53 - 2019-09-04 12:16 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-09-10 23:53 - 2019-09-04 12:16 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-09-10 23:53 - 2019-09-04 12:16 - 000810808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-09-10 23:53 - 2019-09-04 12:16 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-09-10 23:53 - 2019-09-04 12:16 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-09-10 23:53 - 2019-09-04 12:15 - 000637752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-09-10 23:53 - 2019-09-04 12:15 - 000464696 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-09-10 23:53 - 2019-09-04 12:15 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-09-10 23:53 - 2019-09-04 12:15 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-09-10 23:53 - 2019-09-04 12:06 - 000581016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-09-10 23:53 - 2019-09-04 12:06 - 000541200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-09-10 23:53 - 2019-09-04 12:06 - 000402016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2019-09-10 23:53 - 2019-09-04 12:01 - 001516632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-09-10 23:53 - 2019-09-04 12:01 - 000790936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-09-10 23:53 - 2019-09-04 12:01 - 000396088 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2019-09-10 23:53 - 2019-09-04 12:00 - 021399576 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-09-10 23:53 - 2019-09-04 12:00 - 001632112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-09-10 23:53 - 2019-09-04 12:00 - 001616840 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-09-10 23:53 - 2019-09-04 11:46 - 012838400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-09-10 23:53 - 2019-09-04 11:45 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-09-10 23:53 - 2019-09-04 11:44 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-09-10 23:53 - 2019-09-04 11:43 - 008627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-09-10 23:53 - 2019-09-04 11:41 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-09-10 23:53 - 2019-09-04 11:40 - 003614208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-09-10 23:53 - 2019-09-04 11:40 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-09-10 23:53 - 2019-09-04 11:40 - 000957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-09-10 23:53 - 2019-09-04 11:40 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-09-10 23:53 - 2019-09-04 10:52 - 001453624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-09-10 23:53 - 2019-09-04 10:52 - 000467400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-09-10 23:53 - 2019-09-04 10:51 - 000662328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-09-10 23:53 - 2019-09-04 10:51 - 000322360 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2019-09-10 23:53 - 2019-09-04 10:50 - 001320344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-09-10 23:53 - 2019-09-04 10:50 - 000356896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2019-09-10 23:53 - 2019-09-04 10:48 - 020393120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-09-10 23:53 - 2019-09-04 10:38 - 012039680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-09-10 23:53 - 2019-09-04 10:38 - 007990784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-09-10 23:53 - 2019-09-04 10:35 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-09-10 23:53 - 2019-09-04 10:33 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-09-10 23:53 - 2019-09-04 07:19 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-09-10 23:53 - 2019-09-04 07:19 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-09-10 23:53 - 2019-09-04 07:19 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-09-10 23:53 - 2019-09-04 07:17 - 001213264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-09-10 23:53 - 2019-09-04 07:17 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-09-10 23:53 - 2019-09-04 07:15 - 005627280 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-09-10 23:53 - 2019-09-04 07:15 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-09-10 23:53 - 2019-09-04 07:15 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-09-10 23:53 - 2019-09-04 07:15 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-09-10 23:53 - 2019-09-04 07:15 - 000491208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-09-10 23:53 - 2019-09-04 07:15 - 000323904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2019-09-10 23:53 - 2019-09-04 07:14 - 007437592 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-09-10 23:53 - 2019-09-04 07:14 - 003290584 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-09-10 23:53 - 2019-09-04 07:14 - 001934808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-09-10 23:53 - 2019-09-04 07:14 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-09-10 23:53 - 2019-09-04 07:14 - 001209696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-09-10 23:53 - 2019-09-04 07:14 - 000594032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-09-10 23:53 - 2019-09-04 07:14 - 000420984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xbgmengine.dll
2019-09-10 23:53 - 2019-09-04 07:14 - 000361752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-09-10 23:53 - 2019-09-04 07:13 - 009084424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-09-10 23:53 - 2019-09-04 07:13 - 004405232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-09-10 23:53 - 2019-09-04 07:13 - 002773816 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-09-10 23:53 - 2019-09-04 07:13 - 002571848 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-09-10 23:53 - 2019-09-04 07:13 - 002371296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-09-10 23:53 - 2019-09-04 07:13 - 001459120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-09-10 23:53 - 2019-09-04 07:13 - 001260776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-09-10 23:53 - 2019-09-04 07:13 - 001141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-09-10 23:53 - 2019-09-04 07:13 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-09-10 23:53 - 2019-09-04 07:13 - 000983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-09-10 23:53 - 2019-09-04 07:13 - 000735680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-09-10 23:53 - 2019-09-04 07:13 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-09-10 23:53 - 2019-09-04 07:13 - 000692352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-09-10 23:53 - 2019-09-04 07:13 - 000545808 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-09-10 23:53 - 2019-09-04 07:13 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-09-10 23:53 - 2019-09-04 07:13 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2019-09-10 23:53 - 2019-09-04 07:13 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-09-10 23:53 - 2019-09-04 07:13 - 000129040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-09-10 23:53 - 2019-09-04 07:10 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-09-10 23:53 - 2019-09-04 07:05 - 000550520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-09-10 23:53 - 2019-09-04 07:04 - 000286616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2019-09-10 23:53 - 2019-09-04 07:03 - 006046096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-09-10 23:53 - 2019-09-04 07:03 - 002478664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-09-10 23:53 - 2019-09-04 07:03 - 002331696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-09-10 23:53 - 2019-09-04 07:03 - 002261448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-09-10 23:53 - 2019-09-04 07:03 - 001980264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-09-10 23:53 - 2019-09-04 07:03 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-09-10 23:53 - 2019-09-04 07:03 - 000581264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-09-10 23:53 - 2019-09-04 07:03 - 000538192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-09-10 23:53 - 2019-09-04 07:02 - 004790160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-09-10 23:53 - 2019-09-04 07:02 - 001805872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-09-10 23:53 - 2019-09-04 07:02 - 000560600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-09-10 23:53 - 2019-09-04 07:02 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2019-09-10 23:53 - 2019-09-04 06:54 - 022017024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-09-10 23:53 - 2019-09-04 06:48 - 019385344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-09-10 23:53 - 2019-09-04 06:46 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2019-09-10 23:53 - 2019-09-04 06:46 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-09-10 23:53 - 2019-09-04 06:45 - 022734336 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-09-10 23:53 - 2019-09-04 06:45 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2019-09-10 23:53 - 2019-09-04 06:45 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-09-10 23:53 - 2019-09-04 06:45 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys
2019-09-10 23:53 - 2019-09-04 06:44 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2019-09-10 23:53 - 2019-09-04 06:44 - 004388864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-09-10 23:53 - 2019-09-04 06:44 - 003687424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-09-10 23:53 - 2019-09-04 06:43 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-09-10 23:53 - 2019-09-04 06:43 - 004849664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-09-10 23:53 - 2019-09-04 06:43 - 003402240 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-09-10 23:53 - 2019-09-04 06:43 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2019-09-10 23:53 - 2019-09-04 06:43 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-09-10 23:53 - 2019-09-04 06:43 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2019-09-10 23:53 - 2019-09-04 06:43 - 000436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2019-09-10 23:53 - 2019-09-04 06:43 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-09-10 23:53 - 2019-09-04 06:43 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-09-10 23:53 - 2019-09-04 06:43 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2019-09-10 23:53 - 2019-09-04 06:42 - 007572992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-09-10 23:53 - 2019-09-04 06:42 - 006032384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2019-09-10 23:53 - 2019-09-04 06:42 - 005769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-09-10 23:53 - 2019-09-04 06:42 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2019-09-10 23:53 - 2019-09-04 06:42 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-09-10 23:53 - 2019-09-04 06:42 - 001862656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-09-10 23:53 - 2019-09-04 06:42 - 001765888 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-09-10 23:53 - 2019-09-04 06:42 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-09-10 23:53 - 2019-09-04 06:42 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-09-10 23:53 - 2019-09-04 06:42 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-09-10 23:53 - 2019-09-04 06:42 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-09-10 23:53 - 2019-09-04 06:42 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2019-09-10 23:53 - 2019-09-04 06:42 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-09-10 23:53 - 2019-09-04 06:42 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-09-10 23:53 - 2019-09-04 06:41 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2019-09-10 23:53 - 2019-09-04 06:41 - 002373632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-09-10 23:53 - 2019-09-04 06:41 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2019-09-10 23:53 - 2019-09-04 06:41 - 001634304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-09-10 23:53 - 2019-09-04 06:41 - 001347584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2019-09-10 23:53 - 2019-09-04 06:41 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-09-10 23:53 - 2019-09-04 06:41 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-09-10 23:53 - 2019-09-04 06:40 - 002912256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-09-10 23:53 - 2019-09-04 06:40 - 002602496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-09-10 23:53 - 2019-09-04 06:40 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2019-09-10 23:53 - 2019-09-04 06:40 - 002179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-09-10 23:53 - 2019-09-04 06:40 - 001808896 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-09-10 23:53 - 2019-09-04 06:40 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-09-10 23:53 - 2019-09-04 06:40 - 000978944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2019-09-10 23:53 - 2019-09-04 06:40 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-09-10 23:53 - 2019-09-04 06:40 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-09-10 23:53 - 2019-09-04 06:40 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2019-09-10 23:53 - 2019-09-04 06:39 - 003203072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-09-10 23:53 - 2019-09-04 06:39 - 002166272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-09-10 23:53 - 2019-09-04 06:39 - 001920512 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-09-10 23:53 - 2019-09-04 06:39 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2019-09-10 23:53 - 2019-09-04 06:39 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2019-09-10 23:53 - 2019-09-04 06:39 - 000976896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-09-10 23:53 - 2019-09-04 06:39 - 000961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-09-10 23:53 - 2019-09-04 06:39 - 000927744 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2019-09-10 23:53 - 2019-09-04 06:39 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2019-09-10 23:53 - 2019-09-04 06:39 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-09-10 23:53 - 2019-09-04 06:39 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-09-10 23:53 - 2019-09-04 06:39 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-09-10 23:53 - 2019-09-04 06:38 - 001398272 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-09-10 23:53 - 2019-09-04 06:38 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-09-10 23:53 - 2019-09-04 06:38 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-09-10 23:53 - 2019-09-04 06:38 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-09-10 23:53 - 2019-09-04 05:22 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-09-10 23:53 - 2019-08-15 11:59 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-09-10 23:53 - 2019-08-13 20:21 - 000665400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2019-09-10 23:53 - 2019-08-13 20:21 - 000221016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2019-09-10 23:53 - 2019-08-13 20:20 - 003701184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-09-10 23:53 - 2019-08-13 20:20 - 000106560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-09-10 23:53 - 2019-08-13 20:06 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-09-10 23:53 - 2019-08-13 20:06 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2019-09-10 23:53 - 2019-08-13 20:06 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComputerDefaults.exe
2019-09-10 23:53 - 2019-08-13 20:05 - 002017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-09-10 23:53 - 2019-08-13 17:06 - 000443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-09-10 23:53 - 2019-08-13 17:04 - 001585304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-09-10 23:53 - 2019-08-13 16:45 - 002969600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-09-10 23:53 - 2019-08-13 16:44 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2019-09-10 23:53 - 2019-08-13 16:43 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2019-09-10 23:53 - 2019-08-13 16:42 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2019-09-10 23:53 - 2019-08-13 16:40 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-09-10 23:53 - 2019-08-13 16:39 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-09-10 23:53 - 2019-08-13 12:14 - 004040008 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-09-10 23:53 - 2019-08-13 12:09 - 000771384 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2019-09-10 23:53 - 2019-08-13 12:09 - 000571688 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2019-09-10 23:53 - 2019-08-13 12:08 - 000117240 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-09-10 23:53 - 2019-08-13 11:51 - 004853248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-09-10 23:53 - 2019-08-13 11:51 - 000905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2019-09-10 23:53 - 2019-08-13 11:50 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2019-09-10 23:53 - 2019-08-13 11:49 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2019-09-10 23:53 - 2019-08-13 11:49 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComputerDefaults.exe
2019-09-10 23:53 - 2019-08-13 11:47 - 001262080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-09-10 23:53 - 2019-08-13 11:46 - 002084864 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-09-10 23:53 - 2019-08-13 11:46 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2019-09-10 23:53 - 2019-08-13 08:37 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-09-10 23:53 - 2019-08-13 06:54 - 000790208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-09-10 23:53 - 2019-08-13 06:46 - 000510288 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-09-10 23:53 - 2019-08-13 06:46 - 000194360 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-09-10 23:53 - 2019-08-13 06:45 - 000723216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-09-10 23:53 - 2019-08-13 06:45 - 000722960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-09-10 23:53 - 2019-08-13 06:44 - 001793472 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-09-10 23:53 - 2019-08-13 06:17 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-09-10 23:53 - 2019-08-13 06:16 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-09-10 23:53 - 2019-08-13 06:15 - 001626112 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-09-10 23:53 - 2019-08-13 06:14 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-09-10 23:53 - 2019-08-13 06:13 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-09-10 23:53 - 2019-08-13 06:13 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2019-09-10 23:53 - 2019-08-13 06:12 - 000300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-09-10 23:53 - 2019-08-13 06:12 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-09-10 23:53 - 2019-08-13 06:12 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2019-09-10 23:53 - 2019-08-13 06:12 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2019-09-10 23:53 - 2019-08-13 06:11 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-09-10 23:53 - 2019-08-13 06:11 - 000302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2019-09-10 23:53 - 2019-08-13 06:08 - 001221120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-09-10 23:53 - 2019-08-13 06:08 - 000662016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-09-10 23:53 - 2019-08-13 06:08 - 000320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2019-09-10 23:53 - 2019-08-13 02:57 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-09-10 23:53 - 2019-08-13 02:57 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-09-10 23:53 - 2019-08-13 02:57 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-09-10 23:53 - 2019-08-13 02:57 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-09-10 18:23 - 2019-09-10 18:23 - 001476198 _____ C:\Users\amd\Downloads\reklama_102x137mm (1).pdf
2019-09-10 18:21 - 2019-09-10 18:21 - 001489816 _____ C:\Users\amd\Downloads\reklama_102x137mm.pdf
2019-09-10 18:13 - 2019-09-10 18:13 - 001447385 _____ C:\Users\amd\Desktop\102x137 (1).pdf
2019-09-10 13:21 - 2019-09-10 13:21 - 001447385 _____ C:\Users\amd\Downloads\102x137 (1).pdf
2019-09-10 12:51 - 2019-09-10 12:51 - 001447385 _____ C:\Users\amd\Downloads\102x137.pdf
2019-09-10 11:50 - 2019-09-10 11:50 - 006041376 _____ C:\Users\amd\Downloads\eventhall_1 (1).pdf
2019-09-09 17:45 - 2019-09-09 17:45 - 006041376 _____ C:\Users\amd\Downloads\eventhall_1.pdf
2019-09-09 13:49 - 2019-09-09 13:50 - 177118750 _____ C:\Users\amd\Downloads\RestauraciaHrad_Dlhsia.mp4
2019-09-09 11:18 - 2019-09-11 12:03 - 1426484608 _____ C:\Users\amd\Desktop\papagrill-vacsia.psb
2019-09-09 11:02 - 2019-09-09 11:02 - 000164007 _____ C:\Users\amd\Downloads\kg-no-regrets.zip
2019-09-09 10:44 - 2019-09-09 10:44 - 007570286 _____ C:\Users\amd\Downloads\quadro-negro-de-volta-ao-fundo-da-escola.zip
2019-09-09 10:44 - 2019-09-09 10:44 - 006838732 _____ C:\Users\amd\Downloads\burger-grill-illustration-black-chalkboard.zip
2019-09-09 10:31 - 2019-09-09 10:31 - 005991889 _____ C:\Users\amd\Downloads\lovely-restaurant-composition.zip
2019-09-06 00:07 - 2019-09-06 00:07 - 000047086 _____ C:\Users\amd\Desktop\tričko_vlado2.pdf
2019-09-05 14:48 - 2019-09-05 14:48 - 062607716 _____ C:\Users\amd\Desktop\sushi-menu-tlač.pdf
2019-09-05 01:16 - 2015-08-28 07:41 - 000000000 ____D C:\Users\amd\Desktop\Advent10
2019-09-05 00:33 - 2019-09-05 02:24 - 000000000 ____D C:\Users\amd\Desktop\tryart
2019-09-04 22:28 - 2019-09-04 22:36 - 000491567 _____ C:\Users\amd\Desktop\tričko_vlado.pdf
2019-09-04 17:48 - 2019-09-04 17:56 - 000000283 _____ C:\Users\amd\Desktop\formulár nikolas.txt
2019-09-03 21:06 - 2019-09-03 21:06 - 012969535 _____ C:\Users\amd\Desktop\vlado.pdf
2019-09-03 19:57 - 2019-09-03 19:57 - 106624975 _____ C:\Users\amd\Desktop\vlado.psd
2019-09-02 12:57 - 2019-09-02 12:58 - 000000000 ____D C:\Users\amd\Desktop\microsoft-toolkit-2.6.5
2019-09-02 12:47 - 2019-09-02 12:51 - 000000000 ____D C:\Users\amd\Desktop\Activation
2019-09-02 12:44 - 2019-09-02 12:44 - 000003249 _____ C:\Users\amd\Desktop\windows10.cmd
2019-09-02 10:53 - 2019-09-02 23:46 - 000061728 _____ C:\Users\amd\Desktop\banner-na-predaj.pdf
2019-09-02 10:53 - 2019-09-02 10:53 - 000085795 _____ C:\Users\amd\Desktop\banner-bezociek.pdf
2019-08-30 16:05 - 2019-08-30 16:05 - 000000000 ____D C:\Users\amd\Desktop\yo
2019-08-29 12:53 - 2019-09-05 14:50 - 1348959518 _____ C:\Users\amd\Desktop\sushi_menu2.psd
2019-08-29 12:38 - 2019-08-29 12:38 - 000000000 ___HD C:\$WINDOWS.~BT
2019-08-29 00:38 - 2019-08-29 12:54 - 635971884 _____ C:\Users\amd\Desktop\sushi-menu.psd
2019-08-28 21:04 - 2019-08-28 21:04 - 003131326 _____ C:\Users\amd\Desktop\banner_hádzaná.ai
2019-08-28 21:04 - 2019-08-28 21:04 - 001628676 _____ C:\Users\amd\Desktop\žaneta-na-predaj.ai
2019-08-27 18:11 - 2019-08-27 18:11 - 103436153 _____ C:\Users\amd\Desktop\mockup_dl.psd
2019-08-27 14:31 - 2019-08-27 14:31 - 001638913 _____ C:\Users\amd\Desktop\bezodnypohar_pdf.pdf
2019-08-27 14:24 - 2019-08-27 14:40 - 000000000 ____D C:\Users\amd\Desktop\shamul
2019-08-27 11:45 - 2019-08-27 11:47 - 004544938 _____ C:\Users\amd\Desktop\pozvánka_casinonight2.pdf
2019-08-27 11:45 - 2019-08-27 11:46 - 004604629 _____ C:\Users\amd\Desktop\pozvánka_casinonight.pdf
2019-08-27 11:39 - 2019-08-27 11:46 - 030983729 _____ C:\Users\amd\Desktop\casino_night.pdf
2019-08-27 06:50 - 2019-08-28 01:11 - 191777100 _____ C:\Users\amd\Desktop\feim.psd
2019-08-26 16:42 - 2019-08-27 12:02 - 083513009 _____ C:\Users\amd\Desktop\pozvánka_casinonight.psd
2019-08-26 14:14 - 2019-08-26 12:12 - 026128318 _____ C:\Users\amd\Desktop\banner.pdf
2019-08-26 12:05 - 2019-08-26 12:05 - 000001250 _____ C:\Users\Public\Desktop\DragonCut Basic.lnk
2019-08-26 12:05 - 2019-08-26 12:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DragonCut
2019-08-26 12:04 - 2019-08-26 12:05 - 000000000 ____D C:\Users\Public\Documents\DragonCut Files
2019-08-26 12:04 - 2019-08-26 12:04 - 000000000 ____D C:\Program Files (x86)\gs32_
2019-08-25 15:15 - 2019-09-09 19:03 - 002949990 _____ C:\Users\amd\Desktop\fun with english.eps
2019-08-23 16:29 - 2019-08-27 12:02 - 684657693 _____ C:\Users\amd\Desktop\casino_night.psd
2019-08-22 10:31 - 2019-08-22 10:31 - 000002157 _____ C:\Users\amd\Documents\c.vmconfig
2019-08-21 21:38 - 2019-08-21 21:38 - 000000000 ____D C:\ProgramData\FutureCorp
2019-08-21 21:38 - 2019-08-21 21:38 - 000000000 ____D C:\Program Files (x86)\FutureCorp
2019-08-19 13:39 - 2019-08-19 13:39 - 015335388 _____ C:\Users\amd\Desktop\Prezentácia-eventhall-krivky.pdf

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-16 17:21 - 2018-12-15 22:50 - 000000000 ____D C:\Users\amd\AppData\Local\D3DSCache
2019-09-16 17:09 - 2019-05-15 20:04 - 000003108 _____ C:\WINDOWS\System32\Tasks\AMDLinkUpdate
2019-09-16 17:09 - 2018-12-15 22:49 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-09-16 17:09 - 2018-12-15 22:42 - 006336608 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-09-16 17:09 - 2018-12-15 22:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-09-16 17:09 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-09-16 16:43 - 2019-02-10 18:43 - 000000000 ____D C:\Users\amd\AppData\Local\Deployment
2019-09-16 16:36 - 2018-12-09 20:28 - 000000000 ____D C:\ProgramData\Avira
2019-09-16 16:36 - 2018-12-09 20:28 - 000000000 ____D C:\Program Files (x86)\Avira
2019-09-16 16:36 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-09-16 16:32 - 2018-12-08 15:37 - 000000000 ____D C:\ProgramData\Package Cache
2019-09-16 16:32 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2019-09-16 16:30 - 2018-12-08 15:33 - 000000000 ___RD C:\Users\amd\OneDrive
2019-09-16 16:26 - 2018-12-15 22:52 - 001081184 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-09-16 16:26 - 2018-12-09 20:36 - 000197872 _____ C:\WINDOWS\system32\perfh01B.dat
2019-09-16 16:26 - 2018-12-09 20:36 - 000058252 _____ C:\WINDOWS\system32\perfc01B.dat
2019-09-16 16:07 - 2018-12-08 15:37 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2019-09-16 16:07 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-09-16 16:02 - 2019-01-07 11:24 - 000000000 ____D C:\Users\amd\AppData\Local\CrashDumps
2019-09-16 15:55 - 2019-08-11 16:06 - 000000000 ____D C:\Downloaded Web Sites
2019-09-16 15:55 - 2019-03-31 13:52 - 000000000 ____D C:\artcut6
2019-09-16 15:55 - 2018-12-15 22:44 - 000000000 ____D C:\Users\amd
2019-09-16 15:55 - 2018-12-08 15:36 - 000000000 ____D C:\AMD
2019-09-16 15:55 - 2018-12-08 03:13 - 000000000 ____D C:\Users\amd\AppData\Local\VirtualStore
2019-09-16 15:42 - 2019-06-13 17:17 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-09-16 03:03 - 2019-05-17 10:14 - 007218321 _____ C:\Users\amd\Desktop\auto_rekons.psd
2019-09-15 16:43 - 2018-12-09 00:31 - 000000033 _____ C:\Users\amd\AppData\Roaming\AdobeWLCMCache.dat
2019-09-15 12:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-09-14 20:06 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-09-13 17:40 - 2018-12-11 12:47 - 000000000 ____D C:\Program Files\Microsoft Office
2019-09-13 12:18 - 2018-12-14 01:27 - 000000000 ____D C:\Users\amd\AppData\Roaming\FileZilla
2019-09-11 14:31 - 2018-12-15 22:49 - 000003370 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3818584211-8296589-4235223502-1001
2019-09-11 14:31 - 2018-12-15 22:44 - 000002341 _____ C:\Users\amd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-09-11 09:57 - 2019-01-07 11:05 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-09-11 09:49 - 2018-12-15 22:50 - 000000000 ___RD C:\Users\amd\3D Objects
2019-09-11 09:49 - 2018-12-08 03:13 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-09-11 01:53 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-09-11 01:53 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-09-11 01:53 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-09-11 01:53 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-09-11 01:53 - 2018-04-11 23:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-09-11 01:52 - 2018-04-12 01:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-09-11 01:52 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-09-11 01:52 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-09-11 01:52 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-09-11 01:52 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-09-10 23:57 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-09-06 00:11 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-09-05 02:22 - 2019-01-17 23:51 - 000001456 _____ C:\Users\amd\AppData\Local\Adobe Save for Web 13.0 Prefs
2019-09-04 00:26 - 2019-08-15 16:23 - 005270251 _____ C:\Users\amd\Desktop\nálepka-hádzana.psd
2019-09-03 23:20 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-09-02 14:35 - 2019-03-11 04:01 - 000000000 ____D C:\Users\amd\Desktop\fitness wellness
2019-09-02 13:28 - 2018-12-16 00:50 - 000000000 ____D C:\Users\amd\AppData\Local\PlaceholderTileLogoFolder
2019-09-02 13:28 - 2018-12-08 03:13 - 000000000 ____D C:\Users\amd\AppData\Local\Packages
2019-09-01 21:27 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-09-01 05:57 - 2018-04-12 01:41 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-09-01 05:57 - 2018-04-12 01:41 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-08-30 16:06 - 2018-12-09 22:20 - 000000000 ____D C:\Program Files\rempl
2019-08-29 12:38 - 2018-12-09 22:19 - 000000000 ___DC C:\WINDOWS\Panther
2019-08-29 11:02 - 2019-08-02 16:31 - 000212992 _____ C:\WINDOWS\system32\ClickToRun_Pipeline16
2019-08-27 14:25 - 2019-08-15 02:16 - 000000000 ____D C:\Users\amd\Desktop\wellness USB
2019-08-26 22:00 - 2018-12-09 13:04 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-26 22:00 - 2018-12-09 13:04 - 000002272 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-08-26 11:43 - 2018-12-09 19:57 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-08-26 11:42 - 2019-03-23 16:00 - 000000000 ____D C:\Program Files (x86)\SAi
2019-08-25 11:50 - 2018-12-21 01:51 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2019-08-25 11:50 - 2018-12-21 01:51 - 000002114 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2019-08-23 14:07 - 2018-12-11 12:21 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-08-22 10:30 - 2019-08-09 00:00 - 000000000 ____D C:\Users\amd\Desktop\polep fábia
2019-08-20 13:16 - 2018-12-15 22:49 - 000004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-08-19 13:27 - 2019-07-31 13:21 - 105321431 _____ C:\Users\amd\Desktop\Prezentácia eventhall.pdf
2019-08-19 09:43 - 2018-12-10 12:09 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-08-19 09:41 - 2018-12-10 12:09 - 134272480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories ================

2019-09-16 16:08 - 2019-09-16 16:39 - 000000004 _____ () C:\ProgramData\lock.dat
2019-09-16 16:08 - 2019-09-16 16:08 - 000000008 _____ () C:\ProgramData\ts.dat
2018-12-09 00:31 - 2019-09-15 16:43 - 000000033 _____ () C:\Users\amd\AppData\Roaming\AdobeWLCMCache.dat
2019-01-17 23:51 - 2019-09-05 02:22 - 000001456 _____ () C:\Users\amd\AppData\Local\Adobe Save for Web 13.0 Prefs
2018-12-11 20:19 - 2018-12-11 20:19 - 000000000 _____ () C:\Users\amd\AppData\Local\oobelibMkey.log
2019-01-05 21:08 - 2019-05-17 21:38 - 000007626 _____ () C:\Users\amd\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================
Naposledy upravil(a) Archi69 dne 16 zář 2019 16:47, celkem upraveno 1 x.

Archi69
Návštěvník
Návštěvník
Příspěvky: 3
Registrován: 16 zář 2019 16:24

Re: Problém so súbormy .domn

#2 Příspěvek od Archi69 »

Kód: Vybrat vše

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-09-2019
Ran by amd (16-09-2019 17:32:28)
Running from C:\Users\amd\Downloads
Windows 10 Home Version 1803 17134.1006 (X64) (2018-12-15 20:50:08)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3818584211-8296589-4235223502-500 - Administrator - Disabled)
amd (S-1-5-21-3818584211-8296589-4235223502-1001 - Administrator - Enabled) => C:\Users\amd
DefaultAccount (S-1-5-21-3818584211-8296589-4235223502-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-3818584211-8296589-4235223502-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-3818584211-8296589-4235223502-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3818584211-8296589-4235223502-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {88AE6B46-DC3C-455A-A21B-085F285A3546}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {33CF8AA2-FA06-4AD4-98AB-332D53DD7FFB}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe After Effects CC 2017 (HKLM-x32\...\AEFT_14_0_0) (Version: 14.0.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.8.2.476 - Adobe Systems Incorporated)
Adobe Dreamweaver CC 2018 (HKLM-x32\...\DRWV_18_2) (Version: 18.2 - Adobe Systems Incorporated)
Adobe Illustrator CC 2017 (HKLM-x32\...\ILST_21_1_0) (Version: 21.1.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_1_7) (Version: 19.1.7 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2018 (HKLM\...\{7DC3F900-68E5-40F1-869D-9D20A69D8A1D}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.4.1 - Advanced Micro Devices, Inc.)
AOMEI Backupper Professional Trial (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version:  - AOMEI Technology Co., Ltd.)
APLI Soft SE (HKLM-x32\...\APLI Soft SE) (Version: 2.0 - APLI PAPER S.A. )
Avira (HKLM-x32\...\{1db45392-716a-490d-9b3e-2d96adbb5ab0}) (Version: 1.2.136.25116 - Avira Operations GmbH & Co. KG)
Avira (HKLM-x32\...\{CC898F82-66EF-4083-947F-5C69703DDBAF}) (Version: 1.2.136.25116 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.1908.1579 - Avira Operations GmbH & Co. KG)
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.28.5.20306 - Avira Operations GmbH & Co. KG)
Avira Privacy Pal (HKLM-x32\...\{F2BC8305-DFBE-4C02-A906-9BBD8EE299A3}_is1) (Version: 2.0.2.1915 - Avira Operations GmbH & Co. KG)
Avira Software Updater (HKLM-x32\...\{644ABCB8-ADC7-46AA-809C-E8A6EE76F7A8}) (Version: 2.0.6.20377 - Avira Operations GmbH & Co. KG)
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 6.2.1.10749 - Avira Operations GmbH & Co. KG)
Branding64 (HKLM\...\{EE2AFCE4-0238-4DE0-A140-1647021627C1}) (Version: 1.00.0001 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.50 - Piriform)
Cyotek WebCopy version 1.7.0.600 (HKLM-x32\...\{D5FAF1F8-C903-41b2-AC66-2682A02A78CB}_is1) (Version: 1.7.0.600 - Cyotek Ltd)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0677 - Disc Soft Ltd)
DiskProtect190916 version 19.16 (HKLM-x32\...\{D04B32B1-1242-4E3E-99D6-CB9801BEDD30}_is1) (Version: 19.16 - )
D-Link DWA-131 - V5.04b03 (HKLM-x32\...\{B7C11488-750D-4E48-A9A4-7207A335984D}) (Version: 5.00.0000 - D-Link)
DragonCut V5.0 (Build 4.21 2014-12-15) (HKLM-x32\...\{CB2752F8-4A65-445E-B388-DCF316418D0F}_is1) (Version:  - Future Corporation Ltd)
DWA-172 (HKLM-x32\...\{B63CCD1C-A133-4DF8-8306-DA0387231152}) (Version: 1.00.0205.2 - D-Link Corporation)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epson Print CD (HKLM-x32\...\{D16A31F9-276D-4968-A753-FFEAC56995D0}) (Version: 2.00.00 - SEIKO EPSON CORPORATION)
EPSON Printer Software (HKLM\...\EPSON Printer and Utilities) (Version:  - SEIKO EPSON Corporation)
Free AVI to MP4 Converter 1.0 (HKLM-x32\...\{756DF96D-E40E-4B52-A53D-036E3D6AAB44}_is1) (Version:  - PolySoft Solutions)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 76.0.3809.132 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Chinese Traditional Graphics (HKLM-x32\...\Chinese Traditional Graphics) (Version:  - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LogiOptionsExcelAddin (HKU\S-1-5-21-3818584211-8296589-4235223502-1001\...\5B9DBC017A73395321F758581D1CBC19EA9DF4FF) (Version: 7.0.5.0 - Logitech)
LogiOptionsWordAddin (HKU\S-1-5-21-3818584211-8296589-4235223502-1001\...\77F95DB8F75F35C40BD868B4D39ADCCB966A0FD1) (Version: 7.0.5.0 - Logitech)
Logitech Options (HKLM\...\LogiOptions) (Version: 7.0.564 - Logitech)
Microsoft Office 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.11929.20300 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3818584211-8296589-4235223502-1001\...\OneDriveSetup.exe) (Version: 19.152.0801.0008 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.60724 - Microsoft Corporation)
Mozilla Firefox 67.0.2 (x64 sk) (HKLM\...\Mozilla Firefox 67.0.2 (x64 sk)) (Version: 67.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11929.20300 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11126.20266 - Microsoft Corporation) Hidden
Opera Stable 63.0.3368.88 (HKU\S-1-5-21-3818584211-8296589-4235223502-1001\...\Opera 63.0.3368.88) (Version: 63.0.3368.88 - Opera Software)
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.00.000 - Prolific Technology INC)
Poedit (HKLM-x32\...\{68EB2C37-083A-4303-B5D8-41FA67E50B8F}_is1) (Version: 2.2.3 - Vaclav Slavik)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Sentinel Protection Installer 7.6.4 (HKLM-x32\...\{7444785E-886F-4989-A69E-6394E36F3982}) (Version: 7.6.4 - SafeNet, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steep (HKLM-x32\...\Uplay Install 3279) (Version:  - Ubisoft)
UltraISO Premium V9.71 (HKLM-x32\...\UltraISO_is1) (Version:  - )
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{EC4F72E8-52FE-454E-B70F-DBE5C0FA44C5}) (Version: 1.20.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 87.0 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.5 - VideoLAN)
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
WinHTTrack Website Copier 3.49-2 (x64) (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.49.2 - HTTrack)
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
Wondershare Filmora(Build 8.2.1) (HKLM\...\Wondershare Filmora_is1) (Version:  - Wondershare Software)
Wondershare Filmora9(Build 9.0.7) (HKLM\...\Wondershare Filmora9_is1) (Version:  - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.0.2.0_x64__tf1gferkr813w [2019-05-28] (Autodesk Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-11] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-11] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.8204.0_x64__8wekyb3d8bbwe [2019-08-28] (Microsoft Studios) [MS Ad]
MSN Počasie -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-12] (Microsoft Corporation) [MS Ad]
Pošta a kalendár -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe [2019-08-02] (Microsoft Corporation) [MS Ad]

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3818584211-8296589-4235223502-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-8999FA35C723} -> [Creative Cloud Files] => C:\Users\amd\Creative Cloud Files [2018-12-09 14:16]
CustomCLSID: HKU\S-1-5-21-3818584211-8296589-4235223502-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6722448 2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-08-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:/Program Files (x86)/Avira/System Speedup/Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-09-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:/Program Files (x86)/Avira/System Speedup/Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-09-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-03-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:/Program Files (x86)/Avira/System Speedup/Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-09-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-08-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\amd\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\c4bcb13789de53ac\Blue Messenger.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=ecmfchgfmbbddembehpkopmhjiepcckd
ShortcutWithArgument: C:\Users\amd\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5803ea45d7990e6f\WhatsGreen Multi Messenger.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=kbhfoiaobflocffnclkigpkeoagheimn

==================== Loaded Modules (Whitelisted) ==============

2015-03-17 02:34 - 2015-03-17 02:34 - 000010240 _____ () [File not signed] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\sk_sk\AcroTray.sky
2019-01-24 15:38 - 2019-01-24 15:38 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2019-01-24 15:38 - 2019-01-24 15:38 - 002551808 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2015-03-17 02:34 - 2015-03-17 02:34 - 000013312 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\sk_sk\Acrobat Elements\ContextMenuShim64.sky
2019-08-26 22:00 - 2019-09-16 15:42 - 062488048 _____ (Google LLC -> Google LLC) [File not signed] C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\chrome.dll
2018-12-21 01:32 - 2018-12-21 01:32 - 000065536 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll
2018-12-10 14:34 - 2013-05-15 16:27 - 000524288 ____N (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\D-Link\DWA-172\RtlLib.dll
2018-12-10 14:34 - 2013-05-15 16:27 - 000200704 ____N (Realtek) [File not signed] C:\Program Files (x86)\D-Link\DWA-172\IpLib.dll
2018-12-10 14:34 - 2013-05-15 16:27 - 000286720 ____N (Realtek) [File not signed] C:\Program Files (x86)\D-Link\DWA-172\RtlIhvOid.dll
2011-05-27 01:03 - 2011-05-27 01:03 - 000225400 _____ (SafeNet, Inc. -> SafeNet, Inc.) [File not signed] C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\MD5CHAP.dll
2019-09-16 16:34 - 2019-09-16 16:34 - 000880128 _____ (ServiceStack) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\ServiceStack.Text\cc16a990a171fd99dd1220a9eae18848\ServiceStack.Text.ni.dll
2018-12-10 14:34 - 2013-05-15 16:27 - 001122304 ____N (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\D-Link\DWA-172\LIBEAY32.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000345600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000502784 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 001413632 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2019-03-26 23:50 - 2019-03-26 23:50 - 005786112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2019-01-24 15:37 - 2019-01-24 15:37 - 006303232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2019-01-24 15:37 - 2019-01-24 15:37 - 001077248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2019-01-24 15:37 - 2019-01-24 15:37 - 000323584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2019-01-24 15:37 - 2019-01-24 15:37 - 003556352 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2019-01-24 15:37 - 2019-01-24 15:37 - 003699712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2019-01-24 15:37 - 2019-01-24 15:37 - 000331264 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2019-01-24 15:37 - 2019-01-24 15:37 - 000355328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2019-01-24 15:37 - 2019-01-24 15:37 - 076171264 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2019-01-24 15:37 - 2019-01-24 15:37 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 005590528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000461312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000189952 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 002821632 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000327680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000137728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000089600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2019-01-24 15:38 - 2019-01-24 15:38 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll
2019-01-11 20:37 - 2007-01-26 14:08 - 000024576 _____ (Windows (R) Codename Longhorn DDK provider) [File not signed] C:\WINDOWS\SysWOW64\HotFldr.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 13:47 - 2016-07-16 13:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts


2019-02-13 12:16 - 2019-02-13 12:16 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3818584211-8296589-4235223502-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\amd\Desktop\space-art-starkiteckt-v4.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-3818584211-8296589-4235223502-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3818584211-8296589-4235223502-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-3818584211-8296589-4235223502-1001\...\StartupApproved\Run: => "ETP"
HKU\S-1-5-21-3818584211-8296589-4235223502-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{7DCDC9C1-1470-44F6-A144-D266C306DE01}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{FF835730-529E-4D42-A5C2-B42004F8AAF3}C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe] => (Allow) C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe (Adobe Systems Incorporated -> Node.js)
FirewallRules: [TCP Query User{BA5D2DC8-903A-4742-9734-08F37A4B19F0}C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe] => (Allow) C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe (Adobe Systems Incorporated -> Node.js)
FirewallRules: [{688A7466-8949-4865-95F3-727FA5FA10F5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{615B6AC9-1ABD-4B3A-ABF8-DA5FA8F33318}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{7E0A2056-0CB2-45C9-976A-FE89FE3D03BD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DD349022-8516-4B7C-A415-FCCBD5892563}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{280E53A1-7DD6-44A3-98A1-4AC10DA7CC0E}] => (Allow) C:\Program Files (x86)\D-Link\DWA-131 revE\IHV\PortableWiFi.exe (D-Link Corporation -> D-Link Corp.)
FirewallRules: [{237FFA83-8EFB-4CAA-8F0A-77858B5792AB}] => (Allow) C:\Program Files (x86)\D-Link\DWA-131 revE\IHV\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{F9AAF0C1-3B8E-4B88-8718-FC3563DDD51F}] => (Allow) C:\Program Files (x86)\D-Link\DWA-131 revE\IHV\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{A1C5C506-8122-44D2-90A9-DA284416CD67}] => (Allow) C:\Program Files (x86)\D-Link\DWA-131 revE\IHV\PortableWiFi.exe (D-Link Corporation -> D-Link Corp.)
FirewallRules: [{1CB06D1B-3C6A-4B57-A663-A4BC509F2705}] => (Allow) C:\Program Files (x86)\D-Link\DWA-131 revE\IHV\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{9ADFEEA6-5991-498E-AF31-C25382F588D6}] => (Allow) C:\Program Files (x86)\D-Link\DWA-131 revE\IHV\PortableWiFi.exe (D-Link Corporation -> D-Link Corp.)
FirewallRules: [{FFDB971A-AF91-4DEF-9B60-B1D6581FB786}] => (Allow) C:\Program Files (x86)\D-Link\DWA-131 revE\IHV\PortableWiFi.exe (D-Link Corporation -> D-Link Corp.)
FirewallRules: [{1373C9B2-7933-4CF1-AD7D-7512D2530937}] => (Allow) C:\Program Files (x86)\D-Link\DWA-131 revE\IHV\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{23004E6E-949B-405B-9021-7D17EE975F52}] => (Allow) C:\Program Files (x86)\D-Link\DWA-131 revE\IHV\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{4F0128E3-67CA-437A-9572-CF710C93C432}] => (Allow) C:\Program Files (x86)\D-Link\DWA-131 revE\IHV\PortableWiFi.exe (D-Link Corporation -> D-Link Corp.)
FirewallRules: [{F3B0CC37-CA3D-47AE-B22E-2FACB78B435D}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{616F9E78-57A5-4F19-A1F0-7DA148C6435A}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{8793B246-9D1C-42E2-90B1-A630D69D42A5}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{F8D8FFA6-3B73-4B40-AAC4-D62736CBCA54}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{5B238C7D-D163-485F-B530-4415685196A3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A18D7F94-02D8-490A-987B-96A439B104EB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4C2F16DA-4128-4DBB-A866-B470FB5451B7}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{3CAC126C-1F1F-4AFC-AB53-BD93DCBAC048}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{377984CF-4B12-46D0-90D5-97D4E359F8D0}C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe] => (Block) C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe (Adobe Systems Incorporated -> Node.js)
FirewallRules: [UDP Query User{F3221525-9A0A-4FD7-AF5A-341F0D2C9DF8}C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe] => (Block) C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe (Adobe Systems Incorporated -> Node.js)
FirewallRules: [{6597EB53-0C79-4CE4-A45B-7510E14776BA}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet, Inc. -> SafeNet, Inc.)
FirewallRules: [{327E1D4B-ED8E-421C-994D-A49423CFB9F2}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe (SafeNet, Inc. -> SafeNet, Inc.)
FirewallRules: [{649761B2-1147-4B1F-B337-647BF36B5C97}] => (Allow) C:\Windows\SysWOW64\SAiLicSvr.exe (SA International) [File not signed]
FirewallRules: [{068A860A-36E4-46BD-A3E8-3690BE43500F}] => (Allow) C:\Windows\SysWOW64\SAiLicSvr.exe (SA International) [File not signed]
FirewallRules: [{AE31134B-D3B6-4A95-A64D-6C7EF71510A4}] => (Allow) D:\Steep\steep.exe No File
FirewallRules: [{A76EC314-67E8-4BE7-896D-194A5372ACAE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{EE3585AD-F527-4E0E-8267-9321B31BCEE0}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E5D30C8C-1107-4D13-A4A2-05D24B2E443A}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{8DE09465-2F79-47E9-877F-4334C312CCF6}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{5D4F339B-7D6B-4DB6-83E7-A11BE86C071A}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{FF1858BF-00AE-49E6-8732-0B2CC04DE8BF}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI TECHNOLOGY CO., LTD. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{0353D054-F85B-47F7-B0E4-0F8ECC321D19}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{CA889990-8238-429D-BBF0-BCA65FA8D17E}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{82D0C531-79E7-471A-B1E3-AA75558D6BCE}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:110.84 GB) (Free:17.89 GB) (16%)

==================== Faulty Device Manager Devices =============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/16/2019 05:21:31 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-R2T9L7L)
Description: httphttp-2147467263

Error: (09/16/2019 05:10:56 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007000D
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (09/16/2019 05:09:40 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0x8007000D
Command-line arguments:
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (09/16/2019 05:06:01 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {0c245613-cca0-478d-9788-2cfb55fc6fb9}

Error: (09/16/2019 05:05:50 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {0c245613-cca0-478d-9788-2cfb55fc6fb9}

Error: (09/16/2019 04:43:32 PM) (Source: VSTO 4.0) (EventID: 4096) (User: )
Description: Customization URI: file:///C:/ProgramData/Logishrd/LogiOptions/Plugins/abc9594a-1092-4a3a-8a1d-d05e602a10b8/Content/publish/LogiOptionsPowerPointAddin.vsto
Exception: Attempting to uninstall a customization that has not been installed on this computer or has already been uninstalled from this computer. Please correct the parameter values and try again.


************** Exception Text **************
Microsoft.VisualStudio.Tools.Office.Runtime.SolutionInstallerException: Attempting to uninstall a customization that has not been installed on this computer or has already been uninstalled from this computer. Please correct the parameter values and try again.
   at Microsoft.VisualStudio.Tools.Office.Runtime.SolutionInstaller.ProcessInstallerOperation(ClickOnceAddInDeploymentManager clickOnceAddInDeploymentManager, OfficeAddInDeploymentManager officeAddInDeploymentManager, AddInInformation& info)
   at Microsoft.VisualStudio.Tools.Office.Runtime.SolutionInstaller.ProcessInstallerOperation(Boolean uninstall, Boolean silent, Uri manifest, Int32& errorCode, String& errorMessage)


************** Loaded Assemblies **************
mscorlib
    Assembly Version: 4.0.0.0
    Win32 Version: 4.7.3460.0 built by: NET472REL1LAST_B
    CodeBase: file:///C:/Windows/Microsoft.NET/Framework/v4.0.30319/mscorlib.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Office.Runtime
    Assembly Version: 10.0.0.0
    Win32 Version: 10.0.60828.0
    CodeBase: file:///C:/WINDOWS/Microsoft.Net/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Office.Runtime/v4.0_10.0.0.0__b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Office.Runtime.dll
----------------------------------------
System.Core
    Assembly Version: 4.0.0.0
    Win32 Version: 4.7.3429.0 built by: NET472REL1LAST_C
    CodeBase: file:///C:/WINDOWS/Microsoft.Net/assembly/GAC_MSIL/System.Core/v4.0_4.0.0.0__b77a5c561934e089/System.Core.dll
----------------------------------------
System
    Assembly Version: 4.0.0.0
    Win32 Version: 4.7.3451.0 built by: NET472REL1LAST_C
    CodeBase: file:///C:/WINDOWS/Microsoft.Net/assembly/GAC_MSIL/System/v4.0_4.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Applications.Hosting
    Assembly Version: 10.0.0.0
    Win32 Version: 10.0.60828.0
    CodeBase: file:///C:/WINDOWS/Microsoft.Net/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Applications.Hosting/v4.0_10.0.0.0__b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Applications.Hosting.dll
----------------------------------------
System.Windows.Forms
    Assembly Version: 4.0.0.0
    Win32 Version: 4.7.3324.0 built by: NET472REL1LAST_C
    CodeBase: file:///C:/WINDOWS/Microsoft.Net/assembly/GAC_MSIL/System.Windows.Forms/v4.0_4.0.0.0__b77a5c561934e089/System.Windows.Forms.dll
----------------------------------------
System.Drawing
    Assembly Version: 4.0.0.0
    Win32 Version: 4.7.3056.0 built by: NET472REL1
    CodeBase: file:///C:/WINDOWS/Microsoft.Net/assembly/GAC_MSIL/System.Drawing/v4.0_4.0.0.0__b03f5f7f11d50a3a/System.Drawing.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Applications.ServerDocument
    Assembly Version: 10.0.0.0
    Win32 Version: 10.0.60828.0
    CodeBase: file:///C:/WINDOWS/Microsoft.Net/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Applications.ServerDocument/v4.0_10.0.0.0__b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Applications.ServerDocument.dll
----------------------------------------
System.Deployment
    Assembly Version: 4.0.0.0
    Win32 Version: 4.7.3056.0 built by: NET472REL1
    CodeBase: file:///C:/WINDOWS/Microsoft.Net/assembly/GAC_MSIL/System.Deployment/v4.0_4.0.0.0__b03f5f7f11d50a3a/System.Deployment.dll
----------------------------------------
Microsoft.VisualStudio.Tools.Applications.Runtime
    Assembly Version: 10.0.0.0
    Win32 Version: 10.0.60828.0
    CodeBase: file:///C:/WINDOWS/Microsoft.Net/assembly/GAC_MSIL/Microsoft.VisualStudio.Tools.Applications.Runtime/v4.0_10.0.0.0__b03f5f7f11d50a3a/Microsoft.VisualStudio.Tools.Applications.Runtime.dll
----------------------------------------

Error: (09/16/2019 04:37:55 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Windows cannot load the extensible counter DLL rdyboost. The first four bytes (DWORD) of the Data section contains the Windows error code.

Error: (09/16/2019 04:37:55 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code.


System errors:
=============
Error: (09/16/2019 05:18:16 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-R2T9L7L)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user DESKTOP-R2T9L7L\amd SID (S-1-5-21-3818584211-8296589-4235223502-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/16/2019 05:15:44 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-R2T9L7L)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user DESKTOP-R2T9L7L\amd SID (S-1-5-21-3818584211-8296589-4235223502-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/16/2019 05:11:42 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID 
Windows.SecurityCenter.WscBrokerManager
 and APPID 
Unavailable
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/16/2019 05:09:58 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-R2T9L7L)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user DESKTOP-R2T9L7L\amd SID (S-1-5-21-3818584211-8296589-4235223502-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/16/2019 05:09:13 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 16:48:18 on ‎16. ‎9. ‎2019 was unexpected.

Error: (09/16/2019 05:04:14 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-R2T9L7L)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 and APPID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 to the user DESKTOP-R2T9L7L\amd SID (S-1-5-21-3818584211-8296589-4235223502-1001) from address LocalHost (Using LRPC) running in the application container Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). This security permission can be modified using the Component Services administrative tool.

Error: (09/16/2019 04:55:45 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-R2T9L7L)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user DESKTOP-R2T9L7L\amd SID (S-1-5-21-3818584211-8296589-4235223502-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/16/2019 04:55:31 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-R2T9L7L)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user DESKTOP-R2T9L7L\amd SID (S-1-5-21-3818584211-8296589-4235223502-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.


Windows Defender:
===================================
Date: 2019-09-16 16:13:45.285
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win64/AutoKMS&threatid=2147723334&enterprise=0
Name: HackTool:Win64/AutoKMS
ID: 2147723334
Severity: Vysoká
Category: Nástroj
Path: file:_C:\WINDOWS\SECOH-QAD.dll; file:_C:\WINDOWS\SECOH-QAD.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: User
Process Name: Unknown
Signature Version: AV: 1.301.1377.0, AS: 1.301.1377.0, NIS: 1.301.1377.0
Engine Version: AM: 1.1.16300.1, NIS: 1.1.16300.1

Date: 2019-09-16 16:13:45.283
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Dynamer!rfn&threatid=2147721515&enterprise=0
Name: Trojan:Win32/Dynamer!rfn
ID: 2147721515
Severity: Závažná
Category: Trójsky kôň
Path: file:_C:\Program Files (x86)\MachinerData\55e790576082f1a3b1fed8da293eca8d.exe; process:_pid:3156,ProcessStart:132131164595801176; service:_Main Service
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: User
Process Name: C:\Program Files (x86)\MachinerData\55e790576082f1a3b1fed8da293eca8d.exe
Signature Version: AV: 1.301.1377.0, AS: 1.301.1377.0, NIS: 1.301.1377.0
Engine Version: AM: 1.1.16300.1, NIS: 1.1.16300.1

Date: 2019-09-16 16:08:47.824
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Behavior:Win32/Persistence.BP!ml&threatid=2147737437&enterprise=0
Name: Behavior:Win32/Persistence.BP!ml
ID: 2147737437
Severity: Závažná
Category: Podozrivé správanie
Path: file:_C:\Users\amd\AppData\Local\c5a25553-bc52-4388-8dfd-a32ae8dbf214\9024366344.exe; file:_C:\WINDOWS\System32\Tasks\Time Trigger Task->(UTF-16LE); regkey:_HKCU@S-1-5-21-3818584211-8296589-4235223502-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\SysHelper; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C3887DC2-0577-468B-8D36-49D23EF3F471}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Time Trigger Task; runkey:_HKCU@S-1-5-21-3818584211-8296589-4235223502-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\SysHelper; taskscheduler:_C:\WINDOWS\System32\Tasks\Time Trigger Task
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Windows\explorer.exe
Signature Version: AV: 1.301.1377.0, AS: 1.301.1377.0, NIS: 1.301.1377.0
Engine Version: AM: 1.1.16300.1, NIS: 1.1.16300.1

Date: 2019-09-16 16:08:16.324
Description: 
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Behavior:Win32/Persistence.BP!ml&threatid=2147737437&enterprise=0
Name: Behavior:Win32/Persistence.BP!ml
ID: 2147737437
Severity: Závažná
Category: Podozrivé správanie
Path: file:_C:\Users\amd\AppData\Local\c5a25553-bc52-4388-8dfd-a32ae8dbf214\9024366344.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Windows\explorer.exe
Signature Version: AV: 1.301.1377.0, AS: 1.301.1377.0, NIS: 1.301.1377.0
Engine Version: AM: 1.1.16300.1, NIS: 1.1.16300.1

Date: 2019-09-16 16:07:05.020
Description: 
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {3E2FAC2C-4322-402A-813F-8AF6E647B964}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2019-09-11 09:59:03.993
Description: 
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.301.981.0
Update Source: Microsoft Update Server
Signature Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16300.1
Error code: 0x8024402c
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore. 

Date: 2019-08-29 11:12:23.347
Description: 
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.299.3035.0
Update Source: Microsoft Update Server
Signature Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16200.1
Error code: 0x8024402c
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore. 

Date: 2019-08-28 21:15:42.173
Description: 
Windows Defender Antivirus has encountered an error trying to update signatures.
New Signature Version: 
Previous Signature Version: 1.299.3035.0
Update Source: Microsoft Update Server
Signature Type: AntiVirus
Update Type: Full
Current Engine Version: 
Previous Engine Version: 1.1.16200.1
Error code: 0x8024402c
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore. 

CodeIntegrity:
===================================

Date: 2019-08-26 10:31:10.502
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2019-08-26 10:31:10.494
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2019-08-26 10:31:10.485
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2019-03-29 12:59:20.361
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-03-29 12:59:20.341
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-03-29 12:59:20.216
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-03-29 12:59:20.189
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-03-29 12:59:20.158
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. 2603 06/26/2015
Motherboard: ASUSTeK COMPUTER INC. M5A97 R2.0
Processor: AMD FX(tm)-6300 Six-Core Processor 
Percentage of memory in use: 52%
Total physical RAM: 16283.47 MB
Available physical RAM: 7697.36 MB
Total Virtual: 34715.47 MB
Available Virtual: 22399.21 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:110.84 GB) (Free:17.89 GB) NTFS
Drive d: () (Fixed) (Total:465.76 GB) (Free:313.73 GB) NTFS
Drive e: (Vyhradené systémom) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive f: (Nový zväzok) (Fixed) (Total:465.76 GB) (Free:43.33 GB) NTFS
Drive g: () (Fixed) (Total:111.69 GB) (Free:106.25 GB) NTFS

\\?\Volume{7c35d3a4-0000-0000-0000-100000000000}\ (Vyhradené systémom) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{7c35d3a4-0000-0000-0000-30d51b000000}\ () (Fixed) (Total:0.46 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 7C35D3A4)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=110.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=468 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 5AD850F3)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 856A856A)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 20890766)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118198
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Problém so súbormi .domn

#3 Příspěvek od Rudy »

Zdravím!
Váš PC byl napaden virem Ransomware, který zakóduje některé soubory (většinou dokumenty). Tyto soubory lze rozkódovat jen tehdy, je-li k dispozici dešifrovací klíč. My vám můžeme jen PC vyčistit, k rozkódování je třeba přímý přístup do PC, což nemáme právně ošetřeno. Mohou vám pomoci zde: https://neslape.cz/?utm_campaign=neslap ... ium=banner naši kolegové, samozřejmě jen tehdy, pokud je k dispozici dešifrovací klíč. Máte-li soubory zazálohovány někde mimo PC, postačí vyčistit a pak soubory překopírovat ze zálohy.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Archi69
Návštěvník
Návštěvník
Příspěvky: 3
Registrován: 16 zář 2019 16:24

Re: Problém so súbormi .domn

#4 Příspěvek od Archi69 »

Zdravím!
Váš PC byl napaden virem Ransomware, který zakóduje některé soubory (většinou dokumenty). Tyto soubory lze rozkódovat jen tehdy, je-li k dispozici dešifrovací klíč. My vám můžeme jen PC vyčistit, k rozkódování je třeba přímý přístup do PC, což nemáme právně ošetřeno. Mohou vám pomoci zde: https://neslape.cz/?utm_campaign=neslap ... ium=banner naši kolegové, samozřejmě jen tehdy, pokud je k dispozici dešifrovací klíč. Máte-li soubory zazálohovány někde mimo PC, postačí vyčistit a pak soubory překopírovat ze zálohy.
Zdravím, zálohu mám ale pol roka starú :( takže mi chcete povedať že sa môžem zo súbormi rozlúčiť ?? :shock:

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118198
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Problém so súbormi .domn

#5 Příspěvek od Rudy »

Pokud kolegové nemají dešifrovací klíč, pak ano. Bohužel, tento vir tohle způsobuje.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Jugh
Návštěvník
Návštěvník
Příspěvky: 1
Registrován: 07 lis 2019 07:40

Re: Problém so súbormi .domn

#6 Příspěvek od Jugh »

Dobrý den, myslím, že můžete použít obnovení dat Bitwar, vaše soubory mohou být i nadále obnoveny pomocí tohoto nástroje, mám v Evě možnost obnovit soubory ztracené po několik měsíců. A je to zadarmo, máš šanci, naděje ti stejně pomůže.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118198
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Problém so súbormi .domn

#7 Příspěvek od Rudy »

Jugh píše:Dobrý den, myslím, že můžete použít obnovení dat Bitwar, vaše soubory mohou být i nadále obnoveny pomocí tohoto nástroje, mám v Evě možnost obnovit soubory ztracené po několik měsíců. A je to zadarmo, máš šanci, naděje ti stejně pomůže.
Díky za tip, ale po 2 měsících to už asi uživatel vzdal. :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět