Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivna kontrola

Patříte mezi Vzorné návštěvníky? Pak je tato sekce pro vás.

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Odpovědět
Zpráva
Autor
Kikino
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 54
Registrován: 08 črc 2008 22:23

Preventivna kontrola

#1 Příspěvek od Kikino »

Zdravim,

chcel by som vas poprosit o kontrolu po dlhsej dobe. Diiik :)


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13.03.2019 01
Ran by Peter (administrator) on PETER-PC (15-03-2019 20:41:59)
Running from C:\Users\Peter\Desktop
Loaded Profiles: Peter (Available Profiles: Peter)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Microsoft Windows -> Microsoft Corporation) C:\windows\System32\wlanext.exe
(Microsoft Corporation -> Microsoft Corporation) C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eguiProxy.exe
(Microsoft Windows -> Microsoft Corporation) C:\windows\System32\dllhost.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Windows -> Microsoft Corporation) C:\windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11779176 2011-02-18] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Lenovo EE Boot Optimizer] => C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [206176 2012-04-17] (Lenovo (Beijing) Limited -> Lenovo)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [9753024 2012-04-17] (Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [5908928 2012-04-17] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2531624 2010-12-17] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\nvspcap64.dll [1923008 2017-08-18] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmdS.exe [177928 2019-03-13] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [IntelWireless] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1933584 2011-01-05] (Intel Corporation - Mobile Wireless Group -> Intel(R) Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKU\S-1-5-21-3721545487-109903091-240251889-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3721545487-109903091-240251889-1001\...\MountPoints2: {55922ac9-194f-11e6-8507-b870f44ae816} - "G:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
HKLM\...\Drivers32: [msacm.clmp3enc] => C:\Program Files (x86)\Lenovo\Power2Go\CLMP3Enc.ACM [217088 2005-05-13] (CyberLink Corp.) [File not signed]
HKU\S-1-5-21-3721545487-109903091-240251889-1001\...\Drivers32: [vidc.spv1] => C:\Users\Peter\AppData\Local\Learnpulse\Screenpresso\ScreenpressoCodec.dll [167656 2019-02-10] (Learnpulse -> LearnPulse)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.121\Installer\chrmstp.exe [2019-03-05] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\Lenovo\Bluetooth Software\\BtwCP.dll [2010-12-14] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [181280 2017-01-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\windows\SysWOW64\nvinit.dll => C:\windows\SysWOW64\nvinit.dll [158392 2017-01-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 217.75.71.141 217.75.71.142
Tcpip\..\Interfaces\{43F0DF57-CA95-4991-9928-0B428E763D33}: [DhcpNameServer] 217.75.71.141 217.75.71.142

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131099668040423143&GUID=00000000-0000-0000-0000-000000000000
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131099668040579143&GUID=00000000-0000-0000-0000-000000000000
HKU\S-1-5-21-3721545487-109903091-240251889-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo.msn.com/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Wondershare Video Converter Ultimate 7.1.0 -> {451C804F-C205-4F03-B48E-537EC94937BF} -> C:\ProgramData\Wondershare\Video Converter Ultimate\WSBrowserAppMgr.dll [2015-01-15] (Shenzhen Wondershare Information Technology Co., Ltd. -> Wondershare)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 - No File
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)

FireFox:
========
FF DefaultProfile: y3bgouo9.default
FF ProfilePath: C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\y3bgouo9.default [2019-03-15]
FF Homepage: Mozilla\Firefox\Profiles\y3bgouo9.default -> about:blank
FF Extension: (Nepi Jano!) - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\y3bgouo9.default\Extensions\@nepi-jano.xpi [2017-11-02]
FF Extension: (Bookmark Deduplicator) - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\y3bgouo9.default\Extensions\bookmarkdeduplicator@foxhatdev.xpi [2017-04-14] [Legacy]
FF Extension: (downloadviaidmtm) - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\y3bgouo9.default\Extensions\{39196a20-59c9-4b25-b09c-86b25a0043d3}.xpi [2018-08-06]
FF Extension: (Stylus) - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\y3bgouo9.default\Extensions\{7a7a4a92-a2a0-41d1-9fd7-1e92480d612d}.xpi [2018-12-11]
FF HKLM-x32\...\Firefox\Extensions: [WSVCU@Wondershare.com] - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com
FF Extension: (Wondershare Video Converter Ultimate) - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com [2018-05-03] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_32_0_0_142.dll [2019-02-23] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_142.dll [2019-02-23] (Adobe Systems Incorporated -> )
FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 10\npnitromozilla.dll [2015-05-26] (Nitro Software, Inc. -> Nitro PDF)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default [2019-03-14]
CHR Extension: (Dokumenty) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16]
CHR Extension: (Disk Google) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-14]
CHR Extension: (YouTube) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-14]
CHR Extension: (Nepi Jano!) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmiebaglkdeebobffhbomapifjjjjakj [2017-11-20]
CHR Extension: (Stylish - Custom themes for any website) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2018-03-21]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-20]
CHR Extension: (Mixcloud Downloader) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcacjajhaajmpeladcjdbgghfgfamome [2018-02-16]
CHR Extension: (IDM Integration Module) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2018-10-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-10-20]
CHR Extension: (Gmail) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-14]
CHR Extension: (Chrome Media Router) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-20]
CHR Profile: C:\Users\Peter\AppData\Local\Google\Chrome\User Data\System Profile [2019-03-14]

Opera:
=======
OPR StartupUrls: "hxxp://google.sk/"

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [953632 2010-12-14] (Broadcom Corporation -> Broadcom Corporation.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11129928 2019-03-06] (Microsoft Corporation -> Microsoft Corporation)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-03-22] (Digital Wave Ltd -> Digital Wave Ltd.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2359312 2019-03-13] (ESET, spol. s r.o. -> ESET)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] (Canon Inc. -> )
S4 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-06-02] (LENOVO -> Lenovo)
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-01-05] (Intel Corporation - Mobile Wireless Group -> )
S4 NitroDriverReadSpool10; C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe [324760 2015-05-26] (Nitro Software, Inc. -> Nitro PDF Software)
S4 NitroUpdateService; C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe [418968 2015-05-26] (Nitro Software, Inc. -> )
S4 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Miroslav Topolar -> Mister Group)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10885360 2017-05-31] (TeamViewer GmbH -> TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S3 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [658600 2018-07-20] (Lespeed Technology Ltd. -> WiseCleaner.com)
S4 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.224\WsAppService.exe [473824 2017-04-20] (Wondershare Technology Co.,Ltd -> Wondershare)
S4 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S4 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
S4 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 a4djavs; C:\windows\System32\Drivers\a4djavs.sys [359784 2012-12-18] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 a4djusb_svc; C:\windows\System32\Drivers\a4djusb.sys [99688 2012-12-18] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 a8djavs; C:\windows\System32\Drivers\a8djavs.sys [359784 2012-12-18] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 a8djusb_svc; C:\windows\System32\Drivers\a8djusb.sys [100712 2012-12-18] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 BTWAMPFL; C:\windows\System32\DRIVERS\btwampfl.sys [349224 2010-12-15] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwaudio; C:\windows\System32\drivers\btwaudio.sys [106536 2010-12-15] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwavdt; C:\windows\System32\DRIVERS\btwavdt.sys [138280 2010-12-15] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwl2cap; C:\windows\System32\DRIVERS\btwl2cap.sys [39464 2010-12-15] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwrchid; C:\windows\System32\DRIVERS\btwrchid.sys [21416 2010-12-15] (Broadcom Corporation -> Broadcom Corporation.)
R3 DelayMan; C:\windows\System32\DRIVERS\delayman.sys [20064 2012-04-17] (Lenovo (Beijing) Limited -> Ensurebit Inc.)
S3 dg_ssudbus; C:\windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\windows\System32\DRIVERS\eamonm.sys [145600 2019-03-13] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\windows\System32\DRIVERS\edevmon.sys [107744 2019-03-13] (ESET, spol. s r.o. -> ESET)
R1 ehdrv; C:\windows\System32\DRIVERS\ehdrv.sys [188240 2019-03-13] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\windows\System32\DRIVERS\ekbdflt.sys [50280 2019-03-13] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\windows\System32\DRIVERS\epfw.sys [82472 2019-03-13] (ESET, spol. s r.o. -> ESET)
R1 EpfwLWF; C:\windows\System32\DRIVERS\EpfwLWF.sys [61152 2019-03-13] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\windows\system32\DRIVERS\epfwwfp.sys [110000 2019-03-13] (ESET, spol. s r.o. -> ESET)
S3 ESETCleanersDriver; C:\windows\system32\Drivers\ESETCleanersDriver.sys [181160 2017-09-21] (ESET, spol. s r.o. -> ESET)
R1 HWiNFO32; C:\windows\system32\drivers\HWiNFO64A.SYS [27552 2017-08-08] (Martin Malik - REALiX -> REALiX(tm))
R3 IntcDAud; C:\windows\System32\DRIVERS\IntcDAud.sys [317440 2010-10-15] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
S3 JmUsbCcgp; C:\windows\System32\DRIVERS\jmccgp.sys [17880 2010-07-21] (JMicron Technology Corp. -> JMicron Technology Corp.)
S3 JmUsbVideo; C:\windows\System32\Drivers\jmcam.sys [57816 2010-08-27] (JMicron Technology Corp. -> JMicron Technology Corp.)
S3 JmUsbVideo2; C:\windows\System32\Drivers\jmcam_lo.sys [32088 2010-08-27] (JMicron Technology Corp. -> JMicron Technology Corp.)
R3 k57nd60a; C:\windows\System32\DRIVERS\k57nd60a.sys [411688 2011-01-05] (Broadcom Corporation -> Broadcom Corporation)
R3 NETwNs64; C:\windows\System32\DRIVERS\NETwNs64.sys [8507392 2011-01-04] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S3 niks8audio; C:\windows\System32\Drivers\niks8audio.sys [375208 2015-09-03] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 niks8usb; C:\windows\System32\DRIVERS\niks8usb.sys [95584 2015-09-03] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
R3 NIWinCDEmu; C:\windows\System32\DRIVERS\NIWinCDEmu.sys [112408 2015-08-24] (NATIVE INSTRUMENTS GmbH -> )
R3 nusb3hub; C:\windows\System32\DRIVERS\nusb3hub.sys [80384 2010-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R3 nusb3xhc; C:\windows\System32\DRIVERS\nusb3xhc.sys [181248 2010-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-08-18] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\windows\System32\drivers\nvvad64v.sys [48064 2017-08-18] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\windows\System32\DRIVERS\nvvhci.sys [57792 2017-08-18] (NVIDIA Corporation -> NVIDIA Corporation)
R2 speedfan; C:\windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WDC_SAM; C:\windows\System32\DRIVERS\wdcsam64.sys [23200 2015-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
R3 wdkmd; C:\windows\System32\DRIVERS\WDKMD.sys [42392 2010-12-01] (Wireless Display -> Intel Corporation)
R1 winioex; C:\windows\System32\drivers\winioex.sys [15456 2012-04-17] (Lenovo (Beijing) Limited -> Ensurebit Inc.)
S3 WiseHDInfo; C:\windows\WiseHDInfo64.dll [33864 2018-10-07] (Beijing Lang Xingda Network Technology Co., Ltd -> wisecleaner.com)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [121840 2009-07-21] (CyberLink -> CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-15 20:41 - 2019-03-15 20:45 - 000030592 _____ C:\Users\Peter\Desktop\FRST.txt
2019-03-15 20:41 - 2019-03-15 20:41 - 000000000 ____D C:\FRST
2019-03-15 20:40 - 2019-03-15 20:40 - 002433536 _____ (Farbar) C:\Users\Peter\Desktop\FRST64.exe
2019-03-15 00:14 - 2019-03-15 00:14 - 000130416 _____ C:\Users\Peter\AppData\Local\GDIPFONTCACHEV1.DAT
2019-03-15 00:11 - 2019-03-15 00:12 - 000463360 _____ C:\windows\system32\FNTCACHE.DAT
2019-03-14 20:06 - 2019-03-14 20:06 - 000001288 _____ C:\Users\Public\Desktop\Wondershare Video Converter Ultimate.lnk
2019-03-14 20:06 - 2019-03-14 20:06 - 000000000 ____D C:\ProgramData\Wondershare MediaServer
2019-03-14 20:06 - 2019-03-14 20:06 - 000000000 ____D C:\ProgramData\GraphicsType
2019-03-14 20:05 - 2019-03-14 20:05 - 000000000 ____D C:\Users\Peter\AppData\Roaming\TransferSupport
2019-03-12 18:42 - 2019-02-16 06:32 - 000142336 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2019-03-12 18:42 - 2019-02-16 06:30 - 000123904 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2019-03-12 18:42 - 2019-02-10 17:41 - 001329664 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2019-03-12 18:42 - 2019-02-10 17:41 - 000988160 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmv2clt.dll
2019-03-12 18:42 - 2019-02-10 17:41 - 000744960 _____ (Microsoft Corporation) C:\windows\SysWOW64\blackbox.dll
2019-03-12 18:42 - 2019-02-10 17:41 - 000617984 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmdrmsdk.dll
2019-03-12 18:42 - 2019-02-10 17:41 - 000504320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msscp.dll
2019-03-12 18:42 - 2019-02-10 17:41 - 000489984 _____ (Microsoft Corporation) C:\windows\SysWOW64\evr.dll
2019-03-12 18:42 - 2019-02-10 17:41 - 000442368 _____ (Microsoft Corporation) C:\windows\SysWOW64\AUDIOKSE.dll
2019-03-12 18:42 - 2019-02-10 17:41 - 000406016 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmmgrtn.dll
2019-03-12 18:42 - 2019-02-10 17:09 - 001574400 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2019-03-12 18:42 - 2019-02-10 17:09 - 000782848 _____ (Microsoft Corporation) C:\windows\system32\wmdrmsdk.dll
2019-03-12 18:42 - 2019-02-10 17:09 - 000499712 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2019-03-12 18:42 - 2019-02-10 17:08 - 001202176 _____ (Microsoft Corporation) C:\windows\system32\drmv2clt.dll
2019-03-12 18:42 - 2019-02-10 17:08 - 000641024 _____ (Microsoft Corporation) C:\windows\system32\msscp.dll
2019-03-12 18:42 - 2019-02-10 17:08 - 000497664 _____ (Microsoft Corporation) C:\windows\system32\drmmgrtn.dll
2019-03-12 18:42 - 2019-02-10 17:08 - 000325632 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2019-03-12 18:42 - 2019-02-10 17:07 - 000842240 _____ (Microsoft Corporation) C:\windows\system32\blackbox.dll
2019-03-12 18:42 - 2019-02-10 17:07 - 000680448 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2019-03-12 18:41 - 2019-03-06 04:10 - 001211392 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2019-03-12 18:41 - 2019-03-06 04:10 - 000733184 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2019-03-12 18:41 - 2019-03-06 04:01 - 000556032 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2019-03-12 18:41 - 2019-03-06 03:42 - 003228160 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2019-03-12 18:41 - 2019-02-26 08:57 - 025737216 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2019-03-12 18:41 - 2019-02-26 08:33 - 002902528 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2019-03-12 18:41 - 2019-02-26 08:31 - 000576512 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2019-03-12 18:41 - 2019-02-26 08:25 - 020281856 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2019-03-12 18:41 - 2019-02-26 08:22 - 005777920 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2019-03-12 18:41 - 2019-02-26 08:20 - 000790528 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2019-03-12 18:41 - 2019-02-26 08:07 - 000498176 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2019-03-12 18:41 - 2019-02-26 08:04 - 002295808 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2019-03-12 18:41 - 2019-02-26 07:57 - 000663040 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2019-03-12 18:41 - 2019-02-26 07:43 - 015284224 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2019-03-12 18:41 - 2019-02-26 07:43 - 000809472 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2019-03-12 18:41 - 2019-02-26 07:35 - 004494848 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2019-03-12 18:41 - 2019-02-26 07:29 - 013681664 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2019-03-12 18:41 - 2019-02-26 07:29 - 004858880 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2019-03-12 18:41 - 2019-02-26 07:18 - 001557504 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2019-03-12 18:41 - 2019-02-26 07:12 - 004386304 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2019-03-12 18:41 - 2019-02-26 07:09 - 001332224 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2019-03-12 18:41 - 2019-02-16 07:02 - 000972288 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
2019-03-12 18:41 - 2019-02-16 07:02 - 000443904 _____ (Microsoft Corporation) C:\windows\system32\winspool.drv
2019-03-12 18:41 - 2019-02-16 06:50 - 000321536 _____ (Microsoft Corporation) C:\windows\SysWOW64\winspool.drv
2019-03-12 18:41 - 2019-02-15 17:09 - 000485888 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2019-03-12 18:41 - 2019-02-15 17:09 - 000355328 _____ (Microsoft Corporation) C:\windows\system32\Faultrep.dll
2019-03-12 18:41 - 2019-02-15 16:58 - 000320512 _____ (Microsoft Corporation) C:\windows\SysWOW64\Faultrep.dll
2019-03-12 18:41 - 2019-02-15 16:40 - 000415744 _____ (Microsoft Corporation) C:\windows\system32\WerFault.exe
2019-03-12 18:41 - 2019-02-15 16:40 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\WerFaultSecure.exe
2019-03-12 18:41 - 2019-02-15 16:38 - 000360960 _____ (Microsoft Corporation) C:\windows\SysWOW64\WerFault.exe
2019-03-12 18:41 - 2019-02-15 16:38 - 000028672 _____ (Microsoft Corporation) C:\windows\SysWOW64\WerFaultSecure.exe
2019-03-12 18:41 - 2019-02-10 17:41 - 012574208 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2019-03-12 18:41 - 2019-02-10 17:41 - 011411968 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 003207168 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 001177088 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 001005056 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptui.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000519680 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000373248 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioEng.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000354816 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfplat.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000265216 _____ (Microsoft Corporation) C:\windows\SysWOW64\msnetobj.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000195072 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioSes.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000179712 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000106496 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000103424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfps.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000080896 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsp.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000046592 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssign32.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\mferror.dll
2019-03-12 18:41 - 2019-02-10 17:29 - 000008192 _____ (Microsoft Corporation) C:\windows\SysWOW64\spwmp.dll
2019-03-12 18:41 - 2019-02-10 17:29 - 000004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdxm.ocx
2019-03-12 18:41 - 2019-02-10 17:29 - 000004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxmasf.dll
2019-03-12 18:41 - 2019-02-10 17:28 - 000050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\rrinstaller.exe
2019-03-12 18:41 - 2019-02-10 17:28 - 000023040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfpmp.exe
2019-03-12 18:41 - 2019-02-10 17:10 - 001680104 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2019-03-12 18:41 - 2019-02-10 17:10 - 000094440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2019-03-12 18:41 - 2019-02-10 17:09 - 014635520 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2019-03-12 18:41 - 2019-02-10 17:09 - 012574720 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2019-03-12 18:41 - 2019-02-10 17:09 - 000371712 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2019-03-12 18:41 - 2019-02-10 17:09 - 000229376 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2019-03-12 18:41 - 2019-02-10 17:09 - 000187904 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2019-03-12 18:41 - 2019-02-10 17:09 - 000037376 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2019-03-12 18:41 - 2019-02-10 17:09 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2019-03-12 18:41 - 2019-02-10 17:09 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2019-03-12 18:41 - 2019-02-10 17:09 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2019-03-12 18:41 - 2019-02-10 17:09 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 004120576 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 001484800 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 001068544 _____ (Microsoft Corporation) C:\windows\system32\cryptui.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000632320 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000433152 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000284672 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000206848 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000190976 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000141824 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000081920 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\mssign32.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000011264 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2019-03-12 18:41 - 2019-02-10 17:07 - 000438784 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2019-03-12 18:41 - 2019-02-10 17:07 - 000295936 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2019-03-12 18:41 - 2019-02-10 17:02 - 000663552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2019-03-12 18:41 - 2019-02-10 16:50 - 000055808 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2019-03-12 18:41 - 2019-02-10 16:49 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2019-03-12 18:41 - 2019-02-10 16:49 - 000024576 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2019-03-12 18:41 - 2019-02-10 16:38 - 000011264 _____ (Microsoft Corporation) C:\windows\system32\pcawrk.exe
2019-03-12 18:41 - 2019-02-10 16:38 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2019-03-12 18:41 - 2019-02-10 16:36 - 000328192 _____ (Microsoft Corporation) C:\windows\system32\Drivers\udfs.sys
2019-03-12 18:41 - 2019-02-10 16:35 - 000092672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cdfs.sys
2019-03-12 18:41 - 2019-02-08 17:08 - 002009088 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2019-03-12 18:41 - 2019-02-08 17:08 - 001889280 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2019-03-12 18:41 - 2019-02-08 16:59 - 001391104 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2019-03-12 18:41 - 2019-02-08 16:59 - 001241088 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2019-03-12 18:41 - 2019-02-07 17:01 - 000095232 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bridge.sys
2019-03-12 18:40 - 2019-03-06 04:18 - 000154856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2019-03-12 18:40 - 2019-03-06 04:18 - 000095464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2019-03-12 18:40 - 2019-03-06 04:14 - 000708328 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2019-03-12 18:40 - 2019-03-06 04:14 - 000631680 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2019-03-12 18:40 - 2019-03-06 04:13 - 005552872 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2019-03-12 18:40 - 2019-03-06 04:13 - 000262376 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2019-03-12 18:40 - 2019-03-06 04:12 - 001664360 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 001472512 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 001162752 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000419840 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000361984 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000316928 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000236032 _____ (Microsoft Corporation) C:\windows\system32\srvsvc.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\sscore.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:04 - 004055784 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2019-03-12 18:40 - 2019-03-06 04:04 - 003960552 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2019-03-12 18:40 - 2019-03-06 04:02 - 001314104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 001114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000261120 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 03:45 - 000148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2019-03-12 18:40 - 2019-03-06 03:45 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2019-03-12 18:40 - 2019-03-06 03:45 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2019-03-12 18:40 - 2019-03-06 03:44 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2019-03-12 18:40 - 2019-03-06 03:42 - 000338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2019-03-12 18:40 - 2019-03-06 03:41 - 000296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2019-03-12 18:40 - 2019-03-06 03:41 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\videoprt.sys
2019-03-12 18:40 - 2019-03-06 03:41 - 000009728 _____ (Microsoft Corporation) C:\windows\SysWOW64\sscore.dll
2019-03-12 18:40 - 2019-03-06 03:40 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2019-03-12 18:40 - 2019-03-06 03:38 - 000464384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2019-03-12 18:40 - 2019-03-06 03:38 - 000406016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2019-03-12 18:40 - 2019-03-06 03:38 - 000291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2019-03-12 18:40 - 2019-03-06 03:38 - 000169984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2019-03-12 18:40 - 2019-03-06 03:38 - 000161280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2019-03-12 18:40 - 2019-03-06 03:38 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2019-03-12 18:40 - 2019-03-06 03:37 - 000112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2019-03-12 18:40 - 2019-03-06 03:37 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdk8.sys
2019-03-12 18:40 - 2019-03-06 03:37 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelppm.sys
2019-03-12 18:40 - 2019-03-06 03:37 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\processr.sys
2019-03-12 18:40 - 2019-03-06 03:37 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdppm.sys
2019-03-12 18:40 - 2019-03-06 03:37 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\Drivers\npfs.sys
2019-03-12 18:40 - 2019-03-06 03:37 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2019-03-12 18:40 - 2019-03-06 03:37 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2019-03-12 18:40 - 2019-03-06 03:37 - 000014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2019-03-12 18:40 - 2019-03-06 03:37 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2019-03-12 18:40 - 2019-03-06 03:37 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2019-03-12 18:40 - 2019-03-06 03:36 - 000036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2019-03-12 18:40 - 2019-03-06 03:36 - 000006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 03:36 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 03:36 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 03:36 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-03-12 18:40 - 2019-03-05 03:44 - 000076800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2019-03-12 18:40 - 2019-03-05 03:44 - 000033280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2019-03-12 18:40 - 2019-03-05 03:44 - 000030208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidusb.sys
2019-03-12 18:40 - 2019-02-26 23:41 - 000397104 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2019-03-12 18:40 - 2019-02-26 22:47 - 000348984 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2019-03-12 18:40 - 2019-02-26 08:46 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2019-03-12 18:40 - 2019-02-26 08:45 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2019-03-12 18:40 - 2019-02-26 08:32 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2019-03-12 18:40 - 2019-02-26 08:31 - 000417280 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2019-03-12 18:40 - 2019-02-26 08:31 - 000088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2019-03-12 18:40 - 2019-02-26 08:31 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2019-03-12 18:40 - 2019-02-26 08:25 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2019-03-12 18:40 - 2019-02-26 08:24 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2019-03-12 18:40 - 2019-02-26 08:21 - 000615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2019-03-12 18:40 - 2019-02-26 08:20 - 000814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2019-03-12 18:40 - 2019-02-26 08:20 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2019-03-12 18:40 - 2019-02-26 08:20 - 000116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2019-03-12 18:40 - 2019-02-26 08:19 - 002724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2019-03-12 18:40 - 2019-02-26 08:12 - 000969216 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2019-03-12 18:40 - 2019-02-26 08:09 - 000489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2019-03-12 18:40 - 2019-02-26 08:07 - 000062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2019-03-12 18:40 - 2019-02-26 08:06 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2019-03-12 18:40 - 2019-02-26 08:06 - 000047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2019-03-12 18:40 - 2019-02-26 08:05 - 000064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2019-03-12 18:40 - 2019-02-26 08:03 - 000077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2019-03-12 18:40 - 2019-02-26 08:02 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2019-03-12 18:40 - 2019-02-26 08:02 - 000087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2019-03-12 18:40 - 2019-02-26 08:01 - 000047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2019-03-12 18:40 - 2019-02-26 08:00 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2019-03-12 18:40 - 2019-02-26 07:59 - 000199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2019-03-12 18:40 - 2019-02-26 07:58 - 000476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2019-03-12 18:40 - 2019-02-26 07:58 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2019-03-12 18:40 - 2019-02-26 07:57 - 000620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2019-03-12 18:40 - 2019-02-26 07:57 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2019-03-12 18:40 - 2019-02-26 07:56 - 000315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2019-03-12 18:40 - 2019-02-26 07:54 - 000152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2019-03-12 18:40 - 2019-02-26 07:49 - 000416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2019-03-12 18:40 - 2019-02-26 07:46 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2019-03-12 18:40 - 2019-02-26 07:44 - 000073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2019-03-12 18:40 - 2019-02-26 07:44 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-03-12 18:40 - 2019-02-26 07:43 - 000728064 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2019-03-12 18:40 - 2019-02-26 07:43 - 000091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2019-03-12 18:40 - 2019-02-26 07:41 - 002135552 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2019-03-12 18:40 - 2019-02-26 07:41 - 001359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2019-03-12 18:40 - 2019-02-26 07:41 - 000168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2019-03-12 18:40 - 2019-02-26 07:41 - 000076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2019-03-12 18:40 - 2019-02-26 07:39 - 000279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2019-03-12 18:40 - 2019-02-26 07:38 - 000130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2019-03-12 18:40 - 2019-02-26 07:33 - 000230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2019-03-12 18:40 - 2019-02-26 07:31 - 002059776 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2019-03-12 18:40 - 2019-02-26 07:31 - 000696320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2019-03-12 18:40 - 2019-02-26 07:30 - 001155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2019-03-12 18:40 - 2019-02-26 07:07 - 000710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2019-03-12 18:40 - 2019-02-26 07:06 - 000800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2019-03-12 18:40 - 2019-02-22 04:07 - 000058880 _____ (Microsoft Corporation) C:\windows\system32\mf3216.dll
2019-03-12 18:40 - 2019-02-22 04:07 - 000008192 _____ (Microsoft Corporation) C:\windows\system32\msimg32.dll
2019-03-12 18:40 - 2019-02-22 03:56 - 000004608 _____ (Microsoft Corporation) C:\windows\SysWOW64\msimg32.dll
2019-03-12 18:40 - 2019-02-22 03:55 - 000044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf3216.dll
2019-03-12 18:40 - 2019-02-22 03:35 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd2x40.dll
2019-03-12 18:40 - 2019-02-16 07:02 - 002072576 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2019-03-12 18:40 - 2019-02-16 07:02 - 000878080 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2019-03-12 18:40 - 2019-02-16 07:02 - 000516608 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2019-03-12 18:40 - 2019-02-16 07:02 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\oleres.dll
2019-03-12 18:40 - 2019-02-16 07:01 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\comcat.dll
2019-03-12 18:40 - 2019-02-16 06:50 - 001425920 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2019-03-12 18:40 - 2019-02-16 06:50 - 000583680 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2019-03-12 18:40 - 2019-02-16 06:50 - 000026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleres.dll
2019-03-12 18:40 - 2019-02-16 06:33 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\comcat.dll
2019-03-12 18:40 - 2019-02-15 17:09 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\werdiagcontroller.dll
2019-03-12 18:40 - 2019-02-15 16:58 - 000382976 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll
2019-03-12 18:40 - 2019-02-15 16:40 - 000050688 _____ (Microsoft Corporation) C:\windows\system32\wermgr.exe
2019-03-12 18:40 - 2019-02-15 16:38 - 000053760 _____ (Microsoft Corporation) C:\windows\SysWOW64\wermgr.exe
2019-03-12 18:40 - 2019-02-15 16:38 - 000028672 _____ (Microsoft Corporation) C:\windows\SysWOW64\werdiagcontroller.dll
2019-03-12 18:40 - 2019-02-10 16:36 - 000205312 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fastfat.sys
2019-03-12 18:40 - 2019-02-10 16:36 - 000195584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\exfat.sys
2019-03-12 18:40 - 2019-02-08 17:08 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2019-03-12 18:40 - 2019-02-08 17:08 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2019-03-12 18:40 - 2019-02-08 17:07 - 001133568 _____ (Microsoft Corporation) C:\windows\system32\cdosys.dll
2019-03-12 18:40 - 2019-02-08 16:59 - 000805376 _____ (Microsoft Corporation) C:\windows\SysWOW64\cdosys.dll
2019-03-12 18:40 - 2019-02-08 16:59 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6r.dll
2019-03-12 18:40 - 2019-02-08 16:59 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3r.dll
2019-03-12 18:40 - 2019-02-07 17:06 - 000027648 _____ (Microsoft Corporation) C:\windows\system32\brdgcfg.dll
2019-03-12 18:40 - 2019-02-07 17:06 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\bridgeres.dll
2019-03-12 18:40 - 2019-02-07 16:46 - 000020992 _____ (Microsoft Corporation) C:\windows\system32\bridgeunattend.exe
2019-03-12 18:40 - 2019-02-03 16:36 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\Drivers\msfs.sys
2019-03-06 19:02 - 2019-03-06 19:02 - 000000000 ____D C:\Users\Public\Documents\Wondershare
2019-03-06 01:24 - 2019-03-12 00:22 - 000000000 ____D C:\ProgramData\Avg
2019-03-06 01:24 - 2019-03-12 00:22 - 000000000 ____D C:\Program Files (x86)\AVG
2019-03-06 01:23 - 2019-03-12 00:22 - 000000000 ____D C:\Users\Peter\AppData\Local\AvgSetupLog
2019-03-06 01:23 - 2019-03-06 01:26 - 000000000 ____D C:\Users\Peter\AppData\Local\Avg
2019-03-05 00:06 - 2019-03-06 21:36 - 000187392 ___SH C:\Users\Peter\Downloads\Thumbs.db
2019-02-23 17:17 - 2019-01-04 17:13 - 000143592 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2019-02-23 17:17 - 2019-01-04 17:07 - 000727040 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2019-02-23 17:17 - 2019-01-04 15:05 - 002862592 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2019-02-23 17:17 - 2019-01-04 15:05 - 001635328 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2019-02-23 17:17 - 2019-01-04 15:05 - 000799744 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2019-02-23 17:17 - 2019-01-04 15:05 - 000623104 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2019-02-23 17:17 - 2019-01-04 15:05 - 000495616 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2019-02-23 17:17 - 2019-01-04 15:05 - 000451584 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2019-02-23 17:17 - 2019-01-04 15:05 - 000313856 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2019-02-23 17:17 - 2019-01-04 15:05 - 000253952 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2019-02-23 17:17 - 2019-01-03 17:10 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2019-02-23 17:17 - 2019-01-03 16:55 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2019-02-21 19:02 - 2019-02-21 19:02 - 000001022 _____ C:\Users\Public\Desktop\Traktor Pro 3.lnk
2019-02-21 19:02 - 2019-02-21 19:02 - 000000000 __HDC C:\ProgramData\{924FFD26-EE82-4048-AE3D-60C3FFADB608}
2019-02-21 18:39 - 2019-02-21 18:39 - 000001094 _____ C:\Users\Public\Desktop\Controller Editor.lnk
2019-02-21 18:39 - 2019-02-21 18:39 - 000000000 __HDC C:\ProgramData\{B027DDC5-482A-4E25-817A-97ECB2471349}
2019-02-21 18:28 - 2019-02-21 18:28 - 000001054 _____ C:\Users\Public\Desktop\Native Access.lnk
2019-02-21 18:28 - 2019-02-21 18:28 - 000000000 __HDC C:\ProgramData\{346374E1-ABC8-46AE-8BB0-50CF1E6C441B}
2019-02-21 18:25 - 2019-02-21 18:28 - 000000000 ___HD C:\.native-instruments.suht.tmp

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-15 20:44 - 2009-07-14 05:45 - 000013632 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-03-15 20:44 - 2009-07-14 05:45 - 000013632 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-03-15 20:33 - 2016-11-18 19:54 - 000000000 ____D C:\Users\Peter\AppData\LocalLow\Mozilla
2019-03-15 20:31 - 2017-09-20 23:11 - 000000000 ____D C:\Program Files\Malwarebytes
2019-03-15 20:31 - 2016-05-23 11:12 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-03-15 20:26 - 2012-04-17 14:31 - 000167042 _____ C:\windows\system32\fastboot.set
2019-03-15 20:25 - 2012-04-17 13:50 - 000000000 ____D C:\ProgramData\NVIDIA
2019-03-15 20:24 - 2009-07-14 06:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-03-15 19:28 - 2016-05-13 15:35 - 000000000 ____D C:\Users\Peter\AppData\Roaming\ESET
2019-03-15 00:17 - 2009-07-14 04:20 - 000000000 ____D C:\windows\registration
2019-03-15 00:10 - 2009-07-14 04:20 - 000000000 ____D C:\windows\inf
2019-03-14 23:34 - 2018-10-06 23:01 - 000000000 ____D C:\Users\Peter\AppData\Roaming\Wise Care 365
2019-03-14 23:27 - 2018-01-05 23:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2019-03-14 23:27 - 2016-06-07 21:07 - 000000000 ____D C:\Users\Peter\AppData\Roaming\BitTorrent
2019-03-14 23:27 - 2016-05-26 23:38 - 000000000 ____D C:\Users\Peter\AppData\Local\CrashDumps
2019-03-14 23:26 - 2009-07-29 08:00 - 000000000 ____D C:\windows\Panther
2019-03-14 23:26 - 2009-07-14 06:32 - 000000000 ____D C:\windows\Downloaded Program Files
2019-03-14 22:55 - 2016-05-14 20:10 - 000000000 ____D C:\Users\Peter\AppData\Roaming\KeePass
2019-03-14 22:25 - 2016-05-19 17:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-03-14 22:23 - 2016-05-19 17:32 - 000000000 ____D C:\Program Files\Microsoft Office
2019-03-14 20:39 - 2016-06-02 20:10 - 000000000 ____D C:\temp
2019-03-14 20:06 - 2017-03-25 22:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2019-03-14 20:05 - 2017-03-25 22:30 - 000000000 ____D C:\Program Files (x86)\Wondershare
2019-03-13 18:48 - 2016-11-14 19:07 - 000050280 _____ (ESET) C:\windows\system32\Drivers\ekbdflt.sys
2019-03-13 18:48 - 2016-04-14 14:09 - 000107744 _____ (ESET) C:\windows\system32\Drivers\edevmon.sys
2019-03-13 18:48 - 2016-04-14 14:09 - 000061152 _____ (ESET) C:\windows\system32\Drivers\EpfwLWF.sys
2019-03-13 18:48 - 2011-08-09 13:24 - 000145600 _____ (ESET) C:\windows\system32\Drivers\eamonm.sys
2019-03-13 18:48 - 2011-08-04 08:20 - 000188240 _____ (ESET) C:\windows\system32\Drivers\ehdrv.sys
2019-03-13 18:48 - 2011-08-04 08:20 - 000110000 _____ (ESET) C:\windows\system32\Drivers\epfwwfp.sys
2019-03-13 18:48 - 2011-08-04 08:20 - 000082472 _____ (ESET) C:\windows\system32\Drivers\epfw.sys
2019-03-13 17:02 - 2009-07-14 06:13 - 000797006 _____ C:\windows\system32\PerfStringBackup.INI
2019-03-13 16:47 - 2009-07-14 04:20 - 000000000 ____D C:\windows\SysWOW64\Dism
2019-03-13 16:47 - 2009-07-14 04:20 - 000000000 ____D C:\windows\system32\Dism
2019-03-13 01:08 - 2016-05-12 21:53 - 000000000 ____D C:\windows\system32\MRT
2019-03-13 01:01 - 2016-05-12 21:53 - 127411920 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2019-03-12 00:21 - 2016-05-31 23:40 - 000003858 _____ C:\windows\System32\Tasks\Opera scheduled Autoupdate 1464734428
2019-03-12 00:21 - 2016-05-31 23:24 - 000003408 _____ C:\windows\System32\Tasks\RealDownloader Update Check
2019-03-11 23:56 - 2016-05-19 17:59 - 000000000 ____D C:\Users\Peter\Documents\Súbory programu Outlook
2019-03-11 20:36 - 2018-07-05 22:44 - 000000000 ____D C:\Users\Peter\AppData\Roaming\5KPlayer
2019-03-08 00:05 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2019-03-08 00:03 - 2016-05-25 21:16 - 000000000 ____D C:\ProgramData\Skype
2019-03-08 00:02 - 2016-05-25 21:16 - 000000000 ____D C:\Users\Peter\AppData\Roaming\Skype
2019-03-06 21:44 - 2019-02-01 23:03 - 000000000 ____D C:\Users\Peter\AppData\LocalLow\BitTorrent
2019-03-06 21:43 - 2016-05-14 19:34 - 000000000 ____D C:\Users\Peter\0PETER_MEDIA
2019-03-06 02:07 - 2017-09-18 17:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaCoder x64
2019-03-06 02:07 - 2016-08-01 23:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2019-03-06 02:07 - 2016-05-15 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg WaveLab
2019-03-06 01:30 - 2016-11-22 19:35 - 000001040 _____ C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2019-03-06 01:20 - 2016-05-15 17:46 - 000000000 ____D C:\windows\pss
2019-03-05 23:53 - 2016-06-10 21:40 - 000002196 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-05 23:53 - 2016-06-10 21:40 - 000002155 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-03-05 00:21 - 2016-05-14 19:31 - 000000000 ____D C:\Users\Peter\0PETER_FILES
2019-03-03 20:31 - 2018-01-05 22:09 - 000000000 ____D C:\ProgramData\CanonIJPLM
2019-03-02 17:18 - 2016-07-16 21:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-03-02 01:02 - 2016-11-18 18:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-03-01 22:22 - 2016-05-31 23:40 - 000000000 ____D C:\Program Files (x86)\Opera
2019-02-27 22:18 - 2016-05-13 14:30 - 000007596 _____ C:\Users\Peter\AppData\Local\Resmon.ResmonCfg
2019-02-24 00:30 - 2016-10-23 00:07 - 000000000 ____D C:\KMPlayer
2019-02-23 23:50 - 2016-10-23 01:44 - 000000000 ____D C:\Users\Peter\AppData\Roaming\vlc
2019-02-23 17:41 - 2018-10-30 23:15 - 000004462 _____ C:\windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-02-23 17:41 - 2016-05-15 22:13 - 000842240 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2019-02-23 17:41 - 2016-05-15 22:13 - 000175104 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-02-23 17:41 - 2016-05-15 22:13 - 000000000 ____D C:\windows\SysWOW64\Macromed
2019-02-23 17:41 - 2016-05-15 22:13 - 000000000 ____D C:\windows\system32\Macromed
2019-02-23 17:41 - 2016-05-15 22:10 - 000000000 ____D C:\Users\Peter\AppData\Local\Adobe
2019-02-23 17:26 - 2016-05-24 22:50 - 000000000 ___SD C:\windows\system32\CompatTel
2019-02-23 17:26 - 2016-05-24 22:50 - 000000000 ____D C:\windows\system32\appraiser
2019-02-23 17:21 - 2016-05-15 21:05 - 000781316 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2019-02-21 19:00 - 2016-12-17 00:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments
2019-02-21 18:39 - 2016-12-17 00:47 - 000000000 ____D C:\Program Files\Native Instruments
2019-02-21 18:39 - 2016-05-14 01:30 - 000000000 ____D C:\Program Files\Common Files\Native Instruments
2019-02-18 18:47 - 2018-05-12 16:54 - 000000000 ____D C:\Users\Peter\Downloads\ScanDoc
2019-02-18 18:04 - 2018-04-09 22:26 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2019-02-17 19:58 - 2018-04-09 19:25 - 000000000 ____D C:\Users\Peter\AppData\Roaming\IDM

==================== Files in the root of some directories =======

2019-01-19 16:18 - 2019-01-21 21:37 - 000001186 _____ () C:\Users\Peter\AppData\Roaming\DVDSubEdit.ini
2019-01-19 16:13 - 2019-01-21 21:36 - 000009445 _____ () C:\Users\Peter\AppData\Roaming\DVDSubEditLastFile0.txt
2019-01-19 17:29 - 2019-01-19 23:59 - 000009514 _____ () C:\Users\Peter\AppData\Roaming\DVDSubEditLastFile1.txt
2017-09-17 18:53 - 2018-05-17 23:30 - 232769920 _____ ( ) C:\Users\Peter\AppData\Roaming\filmora_64bit_full846.exe
2018-05-02 22:52 - 2018-05-03 19:47 - 000000120 _____ () C:\Users\Peter\AppData\Roaming\System Monitor II_UptimeRecord.ini
2017-12-10 13:34 - 2017-12-10 13:34 - 000000093 _____ () C:\Users\Peter\AppData\Local\fusioncache.dat
2019-01-19 17:05 - 2019-01-19 17:25 - 018157448 _____ () C:\Users\Peter\AppData\Local\OcrMap.bin
2019-01-12 01:49 - 2019-01-12 01:49 - 000003335 _____ () C:\Users\Peter\AppData\Local\recently-used.xbel
2016-05-13 14:30 - 2019-02-27 22:18 - 000007596 _____ () C:\Users\Peter\AppData\Local\Resmon.ResmonCfg

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\SysWOW64\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\dllhost.exe => File is digitally signed
C:\windows\SysWOW64\dllhost.exe => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-06-17 19:53

==================== End of FRST.txt ============================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventivna kontrola

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Kikino
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 54
Registrován: 08 črc 2008 22:23

Re: Preventivna kontrola

#3 Příspěvek od Kikino »

# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-03-11.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-15-2019
# Duration: 00:00:02
# OS: Windows 7 Home Premium
# Cleaned: 12
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKU\S-1-5-18\SOFTWARE\83650759FC2708B7712E4C220683CBE9
Deleted HKCU\SOFTWARE\83650759FC2708B7712E4C220683CBE9
Deleted HKU\.DEFAULT\SOFTWARE\83650759FC2708B7712E4C220683CBE9
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SystemExplorerAutoStart
Deleted HKLM\Software\Wow6432Node\WinZiper
Deleted HKLM\Software\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Deleted HKLM\Software\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted HKLM\Software\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted HKLM\Software\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2418 octets] - [15/03/2019 21:17:57]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventivna kontrola

#4 Příspěvek od Rudy »

OK. Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Kikino
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 54
Registrován: 08 črc 2008 22:23

Re: Preventivna kontrola

#5 Příspěvek od Kikino »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13.03.2019 01
Ran by Peter (administrator) on PETER-PC (15-03-2019 22:00:20)
Running from C:\Users\Peter\Desktop
Loaded Profiles: Peter (Available Profiles: Peter)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Microsoft Windows -> Microsoft Corporation) C:\windows\System32\wlanext.exe
(Microsoft Corporation -> Microsoft Corporation) C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eguiProxy.exe
(Microsoft Windows -> Microsoft Corporation) C:\windows\System32\dllhost.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Windows -> Microsoft Corporation) C:\windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11779176 2011-02-18] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Lenovo EE Boot Optimizer] => C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [206176 2012-04-17] (Lenovo (Beijing) Limited -> Lenovo)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [9753024 2012-04-17] (Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [5908928 2012-04-17] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2531624 2010-12-17] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\nvspcap64.dll [1923008 2017-08-18] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmdS.exe [177928 2019-03-13] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [IntelWireless] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1933584 2011-01-05] (Intel Corporation - Mobile Wireless Group -> Intel(R) Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKU\S-1-5-21-3721545487-109903091-240251889-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3721545487-109903091-240251889-1001\...\MountPoints2: {55922ac9-194f-11e6-8507-b870f44ae816} - "G:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
HKLM\...\Drivers32: [msacm.clmp3enc] => C:\Program Files (x86)\Lenovo\Power2Go\CLMP3Enc.ACM [217088 2005-05-13] (CyberLink Corp.) [File not signed]
HKU\S-1-5-21-3721545487-109903091-240251889-1001\...\Drivers32: [vidc.spv1] => C:\Users\Peter\AppData\Local\Learnpulse\Screenpresso\ScreenpressoCodec.dll [167656 2019-02-10] (Learnpulse -> LearnPulse)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.121\Installer\chrmstp.exe [2019-03-05] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\Lenovo\Bluetooth Software\\BtwCP.dll [2010-12-14] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
AppInit_DLLs: C:\windows\system32\nvinitx.dll => C:\windows\system32\nvinitx.dll [181280 2017-01-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)
AppInit_DLLs-x32: C:\windows\SysWOW64\nvinit.dll => C:\windows\SysWOW64\nvinit.dll [158392 2017-01-25] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 217.75.71.141 217.75.71.142
Tcpip\..\Interfaces\{43F0DF57-CA95-4991-9928-0B428E763D33}: [DhcpNameServer] 217.75.71.141 217.75.71.142

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131099668040423143&GUID=00000000-0000-0000-0000-000000000000
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131099668040579143&GUID=00000000-0000-0000-0000-000000000000
HKU\S-1-5-21-3721545487-109903091-240251889-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo.msn.com/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Wondershare Video Converter Ultimate 7.1.0 -> {451C804F-C205-4F03-B48E-537EC94937BF} -> C:\ProgramData\Wondershare\Video Converter Ultimate\WSBrowserAppMgr.dll [2015-01-15] (Shenzhen Wondershare Information Technology Co., Ltd. -> Wondershare)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 - No File
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)

FireFox:
========
FF DefaultProfile: y3bgouo9.default
FF ProfilePath: C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\y3bgouo9.default [2019-03-15]
FF Homepage: Mozilla\Firefox\Profiles\y3bgouo9.default -> about:blank
FF Extension: (Nepi Jano!) - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\y3bgouo9.default\Extensions\@nepi-jano.xpi [2017-11-02]
FF Extension: (Bookmark Deduplicator) - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\y3bgouo9.default\Extensions\bookmarkdeduplicator@foxhatdev.xpi [2017-04-14] [Legacy]
FF Extension: (downloadviaidmtm) - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\y3bgouo9.default\Extensions\{39196a20-59c9-4b25-b09c-86b25a0043d3}.xpi [2018-08-06]
FF Extension: (Stylus) - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\y3bgouo9.default\Extensions\{7a7a4a92-a2a0-41d1-9fd7-1e92480d612d}.xpi [2018-12-11]
FF HKLM-x32\...\Firefox\Extensions: [WSVCU@Wondershare.com] - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com
FF Extension: (Wondershare Video Converter Ultimate) - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com [2018-05-03] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_32_0_0_142.dll [2019-02-23] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_142.dll [2019-02-23] (Adobe Systems Incorporated -> )
FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll [2016-04-25] (Citrix Systems, Inc. -> Citrix Systems, Inc.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2015-12-29] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 10\npnitromozilla.dll [2015-05-26] (Nitro Software, Inc. -> Nitro PDF)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default [2019-03-14]
CHR Extension: (Dokumenty) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16]
CHR Extension: (Disk Google) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-14]
CHR Extension: (YouTube) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-14]
CHR Extension: (Nepi Jano!) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmiebaglkdeebobffhbomapifjjjjakj [2017-11-20]
CHR Extension: (Stylish - Custom themes for any website) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2018-03-21]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-20]
CHR Extension: (Mixcloud Downloader) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcacjajhaajmpeladcjdbgghfgfamome [2018-02-16]
CHR Extension: (IDM Integration Module) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2018-10-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-10-20]
CHR Extension: (Gmail) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-14]
CHR Extension: (Chrome Media Router) - C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-20]
CHR Profile: C:\Users\Peter\AppData\Local\Google\Chrome\User Data\System Profile [2019-03-14]

Opera:
=======
OPR StartupUrls: "hxxp://google.sk/"

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [953632 2010-12-14] (Broadcom Corporation -> Broadcom Corporation.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11129928 2019-03-06] (Microsoft Corporation -> Microsoft Corporation)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-03-22] (Digital Wave Ltd -> Digital Wave Ltd.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2359312 2019-03-13] (ESET, spol. s r.o. -> ESET)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] (Canon Inc. -> )
S4 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-06-02] (LENOVO -> Lenovo)
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-01-05] (Intel Corporation - Mobile Wireless Group -> )
S4 NitroDriverReadSpool10; C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe [324760 2015-05-26] (Nitro Software, Inc. -> Nitro PDF Software)
S4 NitroUpdateService; C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe [418968 2015-05-26] (Nitro Software, Inc. -> )
S4 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [820960 2014-12-20] (Miroslav Topolar -> Mister Group)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10885360 2017-05-31] (TeamViewer GmbH -> TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S3 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [658600 2018-07-20] (Lespeed Technology Ltd. -> WiseCleaner.com)
S4 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.224\WsAppService.exe [473824 2017-04-20] (Wondershare Technology Co.,Ltd -> Wondershare)
S4 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S4 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
S4 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 a4djavs; C:\windows\System32\Drivers\a4djavs.sys [359784 2012-12-18] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 a4djusb_svc; C:\windows\System32\Drivers\a4djusb.sys [99688 2012-12-18] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 a8djavs; C:\windows\System32\Drivers\a8djavs.sys [359784 2012-12-18] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 a8djusb_svc; C:\windows\System32\Drivers\a8djusb.sys [100712 2012-12-18] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 BTWAMPFL; C:\windows\System32\DRIVERS\btwampfl.sys [349224 2010-12-15] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwaudio; C:\windows\System32\drivers\btwaudio.sys [106536 2010-12-15] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwavdt; C:\windows\System32\DRIVERS\btwavdt.sys [138280 2010-12-15] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwl2cap; C:\windows\System32\DRIVERS\btwl2cap.sys [39464 2010-12-15] (Broadcom Corporation -> Broadcom Corporation.)
S3 btwrchid; C:\windows\System32\DRIVERS\btwrchid.sys [21416 2010-12-15] (Broadcom Corporation -> Broadcom Corporation.)
R3 DelayMan; C:\windows\System32\DRIVERS\delayman.sys [20064 2012-04-17] (Lenovo (Beijing) Limited -> Ensurebit Inc.)
S3 dg_ssudbus; C:\windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\windows\System32\DRIVERS\eamonm.sys [145600 2019-03-13] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\windows\System32\DRIVERS\edevmon.sys [107744 2019-03-13] (ESET, spol. s r.o. -> ESET)
R1 ehdrv; C:\windows\System32\DRIVERS\ehdrv.sys [188240 2019-03-13] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\windows\System32\DRIVERS\ekbdflt.sys [50280 2019-03-13] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\windows\System32\DRIVERS\epfw.sys [82472 2019-03-13] (ESET, spol. s r.o. -> ESET)
R1 EpfwLWF; C:\windows\System32\DRIVERS\EpfwLWF.sys [61152 2019-03-13] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\windows\system32\DRIVERS\epfwwfp.sys [110000 2019-03-13] (ESET, spol. s r.o. -> ESET)
S3 ESETCleanersDriver; C:\windows\system32\Drivers\ESETCleanersDriver.sys [181160 2017-09-21] (ESET, spol. s r.o. -> ESET)
R1 HWiNFO32; C:\windows\system32\drivers\HWiNFO64A.SYS [27552 2017-08-08] (Martin Malik - REALiX -> REALiX(tm))
R3 IntcDAud; C:\windows\System32\DRIVERS\IntcDAud.sys [317440 2010-10-15] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
S3 JmUsbCcgp; C:\windows\System32\DRIVERS\jmccgp.sys [17880 2010-07-21] (JMicron Technology Corp. -> JMicron Technology Corp.)
S3 JmUsbVideo; C:\windows\System32\Drivers\jmcam.sys [57816 2010-08-27] (JMicron Technology Corp. -> JMicron Technology Corp.)
S3 JmUsbVideo2; C:\windows\System32\Drivers\jmcam_lo.sys [32088 2010-08-27] (JMicron Technology Corp. -> JMicron Technology Corp.)
R3 k57nd60a; C:\windows\System32\DRIVERS\k57nd60a.sys [411688 2011-01-05] (Broadcom Corporation -> Broadcom Corporation)
R3 NETwNs64; C:\windows\System32\DRIVERS\NETwNs64.sys [8507392 2011-01-04] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S3 niks8audio; C:\windows\System32\Drivers\niks8audio.sys [375208 2015-09-03] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
S3 niks8usb; C:\windows\System32\DRIVERS\niks8usb.sys [95584 2015-09-03] (NATIVE INSTRUMENTS GmbH -> Native Instruments GmbH)
R3 NIWinCDEmu; C:\windows\System32\DRIVERS\NIWinCDEmu.sys [112408 2015-08-24] (NATIVE INSTRUMENTS GmbH -> )
R3 nusb3hub; C:\windows\System32\DRIVERS\nusb3hub.sys [80384 2010-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R3 nusb3xhc; C:\windows\System32\DRIVERS\nusb3xhc.sys [181248 2010-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-08-18] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\windows\System32\drivers\nvvad64v.sys [48064 2017-08-18] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\windows\System32\DRIVERS\nvvhci.sys [57792 2017-08-18] (NVIDIA Corporation -> NVIDIA Corporation)
R2 speedfan; C:\windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WDC_SAM; C:\windows\System32\DRIVERS\wdcsam64.sys [23200 2015-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
R3 wdkmd; C:\windows\System32\DRIVERS\WDKMD.sys [42392 2010-12-01] (Wireless Display -> Intel Corporation)
R1 winioex; C:\windows\System32\drivers\winioex.sys [15456 2012-04-17] (Lenovo (Beijing) Limited -> Ensurebit Inc.)
S3 WiseHDInfo; C:\windows\WiseHDInfo64.dll [33864 2018-10-07] (Beijing Lang Xingda Network Technology Co., Ltd -> wisecleaner.com)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [121840 2009-07-21] (CyberLink -> CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-15 22:00 - 2019-03-15 22:02 - 000030010 _____ C:\Users\Peter\Desktop\FRST.txt
2019-03-15 21:16 - 2019-03-15 21:19 - 000000000 ____D C:\AdwCleaner
2019-03-15 21:14 - 2019-03-15 21:14 - 007316688 _____ (Malwarebytes) C:\Users\Peter\Desktop\adwcleaner_7.2.7.0.exe
2019-03-15 20:41 - 2019-03-15 22:00 - 000000000 ____D C:\FRST
2019-03-15 20:40 - 2019-03-15 20:40 - 002433536 _____ (Farbar) C:\Users\Peter\Desktop\FRST64.exe
2019-03-15 00:14 - 2019-03-15 00:14 - 000130416 _____ C:\Users\Peter\AppData\Local\GDIPFONTCACHEV1.DAT
2019-03-15 00:11 - 2019-03-15 00:12 - 000463360 _____ C:\windows\system32\FNTCACHE.DAT
2019-03-14 20:06 - 2019-03-14 20:06 - 000001288 _____ C:\Users\Public\Desktop\Wondershare Video Converter Ultimate.lnk
2019-03-14 20:06 - 2019-03-14 20:06 - 000000000 ____D C:\ProgramData\Wondershare MediaServer
2019-03-14 20:06 - 2019-03-14 20:06 - 000000000 ____D C:\ProgramData\GraphicsType
2019-03-14 20:05 - 2019-03-14 20:05 - 000000000 ____D C:\Users\Peter\AppData\Roaming\TransferSupport
2019-03-12 18:42 - 2019-02-16 06:32 - 000142336 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2019-03-12 18:42 - 2019-02-16 06:30 - 000123904 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2019-03-12 18:42 - 2019-02-10 17:41 - 001329664 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2019-03-12 18:42 - 2019-02-10 17:41 - 000988160 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmv2clt.dll
2019-03-12 18:42 - 2019-02-10 17:41 - 000744960 _____ (Microsoft Corporation) C:\windows\SysWOW64\blackbox.dll
2019-03-12 18:42 - 2019-02-10 17:41 - 000617984 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmdrmsdk.dll
2019-03-12 18:42 - 2019-02-10 17:41 - 000504320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msscp.dll
2019-03-12 18:42 - 2019-02-10 17:41 - 000489984 _____ (Microsoft Corporation) C:\windows\SysWOW64\evr.dll
2019-03-12 18:42 - 2019-02-10 17:41 - 000442368 _____ (Microsoft Corporation) C:\windows\SysWOW64\AUDIOKSE.dll
2019-03-12 18:42 - 2019-02-10 17:41 - 000406016 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmmgrtn.dll
2019-03-12 18:42 - 2019-02-10 17:09 - 001574400 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2019-03-12 18:42 - 2019-02-10 17:09 - 000782848 _____ (Microsoft Corporation) C:\windows\system32\wmdrmsdk.dll
2019-03-12 18:42 - 2019-02-10 17:09 - 000499712 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2019-03-12 18:42 - 2019-02-10 17:08 - 001202176 _____ (Microsoft Corporation) C:\windows\system32\drmv2clt.dll
2019-03-12 18:42 - 2019-02-10 17:08 - 000641024 _____ (Microsoft Corporation) C:\windows\system32\msscp.dll
2019-03-12 18:42 - 2019-02-10 17:08 - 000497664 _____ (Microsoft Corporation) C:\windows\system32\drmmgrtn.dll
2019-03-12 18:42 - 2019-02-10 17:08 - 000325632 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2019-03-12 18:42 - 2019-02-10 17:07 - 000842240 _____ (Microsoft Corporation) C:\windows\system32\blackbox.dll
2019-03-12 18:42 - 2019-02-10 17:07 - 000680448 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2019-03-12 18:41 - 2019-03-06 04:10 - 001211392 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2019-03-12 18:41 - 2019-03-06 04:10 - 000733184 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2019-03-12 18:41 - 2019-03-06 04:01 - 000556032 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2019-03-12 18:41 - 2019-03-06 03:42 - 003228160 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2019-03-12 18:41 - 2019-02-26 08:57 - 025737216 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2019-03-12 18:41 - 2019-02-26 08:33 - 002902528 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2019-03-12 18:41 - 2019-02-26 08:31 - 000576512 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2019-03-12 18:41 - 2019-02-26 08:25 - 020281856 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2019-03-12 18:41 - 2019-02-26 08:22 - 005777920 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2019-03-12 18:41 - 2019-02-26 08:20 - 000790528 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2019-03-12 18:41 - 2019-02-26 08:07 - 000498176 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2019-03-12 18:41 - 2019-02-26 08:04 - 002295808 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2019-03-12 18:41 - 2019-02-26 07:57 - 000663040 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2019-03-12 18:41 - 2019-02-26 07:43 - 015284224 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2019-03-12 18:41 - 2019-02-26 07:43 - 000809472 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2019-03-12 18:41 - 2019-02-26 07:35 - 004494848 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2019-03-12 18:41 - 2019-02-26 07:29 - 013681664 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2019-03-12 18:41 - 2019-02-26 07:29 - 004858880 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2019-03-12 18:41 - 2019-02-26 07:18 - 001557504 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2019-03-12 18:41 - 2019-02-26 07:12 - 004386304 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2019-03-12 18:41 - 2019-02-26 07:09 - 001332224 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2019-03-12 18:41 - 2019-02-16 07:02 - 000972288 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
2019-03-12 18:41 - 2019-02-16 07:02 - 000443904 _____ (Microsoft Corporation) C:\windows\system32\winspool.drv
2019-03-12 18:41 - 2019-02-16 06:50 - 000321536 _____ (Microsoft Corporation) C:\windows\SysWOW64\winspool.drv
2019-03-12 18:41 - 2019-02-15 17:09 - 000485888 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2019-03-12 18:41 - 2019-02-15 17:09 - 000355328 _____ (Microsoft Corporation) C:\windows\system32\Faultrep.dll
2019-03-12 18:41 - 2019-02-15 16:58 - 000320512 _____ (Microsoft Corporation) C:\windows\SysWOW64\Faultrep.dll
2019-03-12 18:41 - 2019-02-15 16:40 - 000415744 _____ (Microsoft Corporation) C:\windows\system32\WerFault.exe
2019-03-12 18:41 - 2019-02-15 16:40 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\WerFaultSecure.exe
2019-03-12 18:41 - 2019-02-15 16:38 - 000360960 _____ (Microsoft Corporation) C:\windows\SysWOW64\WerFault.exe
2019-03-12 18:41 - 2019-02-15 16:38 - 000028672 _____ (Microsoft Corporation) C:\windows\SysWOW64\WerFaultSecure.exe
2019-03-12 18:41 - 2019-02-10 17:41 - 012574208 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2019-03-12 18:41 - 2019-02-10 17:41 - 011411968 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 003207168 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 001177088 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 001005056 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptui.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000519680 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000373248 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioEng.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000354816 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfplat.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000265216 _____ (Microsoft Corporation) C:\windows\SysWOW64\msnetobj.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000195072 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioSes.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000179712 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000106496 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000103424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfps.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000080896 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsp.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000046592 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssign32.dll
2019-03-12 18:41 - 2019-02-10 17:41 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\mferror.dll
2019-03-12 18:41 - 2019-02-10 17:29 - 000008192 _____ (Microsoft Corporation) C:\windows\SysWOW64\spwmp.dll
2019-03-12 18:41 - 2019-02-10 17:29 - 000004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdxm.ocx
2019-03-12 18:41 - 2019-02-10 17:29 - 000004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxmasf.dll
2019-03-12 18:41 - 2019-02-10 17:28 - 000050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\rrinstaller.exe
2019-03-12 18:41 - 2019-02-10 17:28 - 000023040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfpmp.exe
2019-03-12 18:41 - 2019-02-10 17:10 - 001680104 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2019-03-12 18:41 - 2019-02-10 17:10 - 000094440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2019-03-12 18:41 - 2019-02-10 17:09 - 014635520 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2019-03-12 18:41 - 2019-02-10 17:09 - 012574720 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2019-03-12 18:41 - 2019-02-10 17:09 - 000371712 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2019-03-12 18:41 - 2019-02-10 17:09 - 000229376 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2019-03-12 18:41 - 2019-02-10 17:09 - 000187904 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2019-03-12 18:41 - 2019-02-10 17:09 - 000037376 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2019-03-12 18:41 - 2019-02-10 17:09 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2019-03-12 18:41 - 2019-02-10 17:09 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2019-03-12 18:41 - 2019-02-10 17:09 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2019-03-12 18:41 - 2019-02-10 17:09 - 000005120 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 004120576 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 001484800 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 001068544 _____ (Microsoft Corporation) C:\windows\system32\cryptui.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000632320 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000433152 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000284672 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000206848 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000190976 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000141824 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000081920 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\mssign32.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000011264 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2019-03-12 18:41 - 2019-02-10 17:08 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2019-03-12 18:41 - 2019-02-10 17:07 - 000438784 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2019-03-12 18:41 - 2019-02-10 17:07 - 000295936 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2019-03-12 18:41 - 2019-02-10 17:02 - 000663552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2019-03-12 18:41 - 2019-02-10 16:50 - 000055808 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2019-03-12 18:41 - 2019-02-10 16:49 - 000125952 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2019-03-12 18:41 - 2019-02-10 16:49 - 000024576 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2019-03-12 18:41 - 2019-02-10 16:38 - 000011264 _____ (Microsoft Corporation) C:\windows\system32\pcawrk.exe
2019-03-12 18:41 - 2019-02-10 16:38 - 000009728 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2019-03-12 18:41 - 2019-02-10 16:36 - 000328192 _____ (Microsoft Corporation) C:\windows\system32\Drivers\udfs.sys
2019-03-12 18:41 - 2019-02-10 16:35 - 000092672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cdfs.sys
2019-03-12 18:41 - 2019-02-08 17:08 - 002009088 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2019-03-12 18:41 - 2019-02-08 17:08 - 001889280 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2019-03-12 18:41 - 2019-02-08 16:59 - 001391104 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2019-03-12 18:41 - 2019-02-08 16:59 - 001241088 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2019-03-12 18:41 - 2019-02-07 17:01 - 000095232 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bridge.sys
2019-03-12 18:40 - 2019-03-06 04:18 - 000154856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2019-03-12 18:40 - 2019-03-06 04:18 - 000095464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2019-03-12 18:40 - 2019-03-06 04:14 - 000708328 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2019-03-12 18:40 - 2019-03-06 04:14 - 000631680 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2019-03-12 18:40 - 2019-03-06 04:13 - 005552872 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2019-03-12 18:40 - 2019-03-06 04:13 - 000262376 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2019-03-12 18:40 - 2019-03-06 04:12 - 001664360 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 001472512 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 001162752 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000419840 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000361984 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000316928 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000236032 _____ (Microsoft Corporation) C:\windows\system32\srvsvc.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\sscore.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:04 - 004055784 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2019-03-12 18:40 - 2019-03-06 04:04 - 003960552 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2019-03-12 18:40 - 2019-03-06 04:02 - 001314104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 001114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000261120 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2019-03-12 18:40 - 2019-03-06 04:01 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 03:45 - 000148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2019-03-12 18:40 - 2019-03-06 03:45 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2019-03-12 18:40 - 2019-03-06 03:45 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2019-03-12 18:40 - 2019-03-06 03:44 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2019-03-12 18:40 - 2019-03-06 03:42 - 000338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2019-03-12 18:40 - 2019-03-06 03:41 - 000296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2019-03-12 18:40 - 2019-03-06 03:41 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\videoprt.sys
2019-03-12 18:40 - 2019-03-06 03:41 - 000009728 _____ (Microsoft Corporation) C:\windows\SysWOW64\sscore.dll
2019-03-12 18:40 - 2019-03-06 03:40 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2019-03-12 18:40 - 2019-03-06 03:38 - 000464384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2019-03-12 18:40 - 2019-03-06 03:38 - 000406016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2019-03-12 18:40 - 2019-03-06 03:38 - 000291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2019-03-12 18:40 - 2019-03-06 03:38 - 000169984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2019-03-12 18:40 - 2019-03-06 03:38 - 000161280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2019-03-12 18:40 - 2019-03-06 03:38 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2019-03-12 18:40 - 2019-03-06 03:37 - 000112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2019-03-12 18:40 - 2019-03-06 03:37 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdk8.sys
2019-03-12 18:40 - 2019-03-06 03:37 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelppm.sys
2019-03-12 18:40 - 2019-03-06 03:37 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\processr.sys
2019-03-12 18:40 - 2019-03-06 03:37 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdppm.sys
2019-03-12 18:40 - 2019-03-06 03:37 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\Drivers\npfs.sys
2019-03-12 18:40 - 2019-03-06 03:37 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2019-03-12 18:40 - 2019-03-06 03:37 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2019-03-12 18:40 - 2019-03-06 03:37 - 000014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2019-03-12 18:40 - 2019-03-06 03:37 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2019-03-12 18:40 - 2019-03-06 03:37 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2019-03-12 18:40 - 2019-03-06 03:36 - 000036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2019-03-12 18:40 - 2019-03-06 03:36 - 000006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 03:36 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 03:36 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-03-12 18:40 - 2019-03-06 03:36 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-03-12 18:40 - 2019-03-05 03:44 - 000076800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2019-03-12 18:40 - 2019-03-05 03:44 - 000033280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2019-03-12 18:40 - 2019-03-05 03:44 - 000030208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidusb.sys
2019-03-12 18:40 - 2019-02-26 23:41 - 000397104 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2019-03-12 18:40 - 2019-02-26 22:47 - 000348984 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2019-03-12 18:40 - 2019-02-26 08:46 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2019-03-12 18:40 - 2019-02-26 08:45 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2019-03-12 18:40 - 2019-02-26 08:32 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2019-03-12 18:40 - 2019-02-26 08:31 - 000417280 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2019-03-12 18:40 - 2019-02-26 08:31 - 000088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2019-03-12 18:40 - 2019-02-26 08:31 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2019-03-12 18:40 - 2019-02-26 08:25 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2019-03-12 18:40 - 2019-02-26 08:24 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2019-03-12 18:40 - 2019-02-26 08:21 - 000615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2019-03-12 18:40 - 2019-02-26 08:20 - 000814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2019-03-12 18:40 - 2019-02-26 08:20 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2019-03-12 18:40 - 2019-02-26 08:20 - 000116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2019-03-12 18:40 - 2019-02-26 08:19 - 002724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2019-03-12 18:40 - 2019-02-26 08:12 - 000969216 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2019-03-12 18:40 - 2019-02-26 08:09 - 000489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2019-03-12 18:40 - 2019-02-26 08:07 - 000062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2019-03-12 18:40 - 2019-02-26 08:06 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2019-03-12 18:40 - 2019-02-26 08:06 - 000047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2019-03-12 18:40 - 2019-02-26 08:05 - 000064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2019-03-12 18:40 - 2019-02-26 08:03 - 000077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2019-03-12 18:40 - 2019-02-26 08:02 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2019-03-12 18:40 - 2019-02-26 08:02 - 000087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2019-03-12 18:40 - 2019-02-26 08:01 - 000047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2019-03-12 18:40 - 2019-02-26 08:00 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2019-03-12 18:40 - 2019-02-26 07:59 - 000199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2019-03-12 18:40 - 2019-02-26 07:58 - 000476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2019-03-12 18:40 - 2019-02-26 07:58 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2019-03-12 18:40 - 2019-02-26 07:57 - 000620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2019-03-12 18:40 - 2019-02-26 07:57 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2019-03-12 18:40 - 2019-02-26 07:56 - 000315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2019-03-12 18:40 - 2019-02-26 07:54 - 000152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2019-03-12 18:40 - 2019-02-26 07:49 - 000416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2019-03-12 18:40 - 2019-02-26 07:46 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2019-03-12 18:40 - 2019-02-26 07:44 - 000073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2019-03-12 18:40 - 2019-02-26 07:44 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-03-12 18:40 - 2019-02-26 07:43 - 000728064 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2019-03-12 18:40 - 2019-02-26 07:43 - 000091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2019-03-12 18:40 - 2019-02-26 07:41 - 002135552 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2019-03-12 18:40 - 2019-02-26 07:41 - 001359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2019-03-12 18:40 - 2019-02-26 07:41 - 000168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2019-03-12 18:40 - 2019-02-26 07:41 - 000076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2019-03-12 18:40 - 2019-02-26 07:39 - 000279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2019-03-12 18:40 - 2019-02-26 07:38 - 000130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2019-03-12 18:40 - 2019-02-26 07:33 - 000230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2019-03-12 18:40 - 2019-02-26 07:31 - 002059776 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2019-03-12 18:40 - 2019-02-26 07:31 - 000696320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2019-03-12 18:40 - 2019-02-26 07:30 - 001155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2019-03-12 18:40 - 2019-02-26 07:07 - 000710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2019-03-12 18:40 - 2019-02-26 07:06 - 000800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2019-03-12 18:40 - 2019-02-22 04:07 - 000058880 _____ (Microsoft Corporation) C:\windows\system32\mf3216.dll
2019-03-12 18:40 - 2019-02-22 04:07 - 000008192 _____ (Microsoft Corporation) C:\windows\system32\msimg32.dll
2019-03-12 18:40 - 2019-02-22 03:56 - 000004608 _____ (Microsoft Corporation) C:\windows\SysWOW64\msimg32.dll
2019-03-12 18:40 - 2019-02-22 03:55 - 000044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf3216.dll
2019-03-12 18:40 - 2019-02-22 03:35 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd2x40.dll
2019-03-12 18:40 - 2019-02-16 07:02 - 002072576 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2019-03-12 18:40 - 2019-02-16 07:02 - 000878080 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2019-03-12 18:40 - 2019-02-16 07:02 - 000516608 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2019-03-12 18:40 - 2019-02-16 07:02 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\oleres.dll
2019-03-12 18:40 - 2019-02-16 07:01 - 000008704 _____ (Microsoft Corporation) C:\windows\system32\comcat.dll
2019-03-12 18:40 - 2019-02-16 06:50 - 001425920 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2019-03-12 18:40 - 2019-02-16 06:50 - 000583680 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2019-03-12 18:40 - 2019-02-16 06:50 - 000026112 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleres.dll
2019-03-12 18:40 - 2019-02-16 06:33 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\comcat.dll
2019-03-12 18:40 - 2019-02-15 17:09 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\werdiagcontroller.dll
2019-03-12 18:40 - 2019-02-15 16:58 - 000382976 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll
2019-03-12 18:40 - 2019-02-15 16:40 - 000050688 _____ (Microsoft Corporation) C:\windows\system32\wermgr.exe
2019-03-12 18:40 - 2019-02-15 16:38 - 000053760 _____ (Microsoft Corporation) C:\windows\SysWOW64\wermgr.exe
2019-03-12 18:40 - 2019-02-15 16:38 - 000028672 _____ (Microsoft Corporation) C:\windows\SysWOW64\werdiagcontroller.dll
2019-03-12 18:40 - 2019-02-10 16:36 - 000205312 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fastfat.sys
2019-03-12 18:40 - 2019-02-10 16:36 - 000195584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\exfat.sys
2019-03-12 18:40 - 2019-02-08 17:08 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2019-03-12 18:40 - 2019-02-08 17:08 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2019-03-12 18:40 - 2019-02-08 17:07 - 001133568 _____ (Microsoft Corporation) C:\windows\system32\cdosys.dll
2019-03-12 18:40 - 2019-02-08 16:59 - 000805376 _____ (Microsoft Corporation) C:\windows\SysWOW64\cdosys.dll
2019-03-12 18:40 - 2019-02-08 16:59 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6r.dll
2019-03-12 18:40 - 2019-02-08 16:59 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3r.dll
2019-03-12 18:40 - 2019-02-07 17:06 - 000027648 _____ (Microsoft Corporation) C:\windows\system32\brdgcfg.dll
2019-03-12 18:40 - 2019-02-07 17:06 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\bridgeres.dll
2019-03-12 18:40 - 2019-02-07 16:46 - 000020992 _____ (Microsoft Corporation) C:\windows\system32\bridgeunattend.exe
2019-03-12 18:40 - 2019-02-03 16:36 - 000026112 _____ (Microsoft Corporation) C:\windows\system32\Drivers\msfs.sys
2019-03-06 19:02 - 2019-03-06 19:02 - 000000000 ____D C:\Users\Public\Documents\Wondershare
2019-03-06 01:24 - 2019-03-12 00:22 - 000000000 ____D C:\ProgramData\Avg
2019-03-06 01:24 - 2019-03-12 00:22 - 000000000 ____D C:\Program Files (x86)\AVG
2019-03-06 01:23 - 2019-03-12 00:22 - 000000000 ____D C:\Users\Peter\AppData\Local\AvgSetupLog
2019-03-06 01:23 - 2019-03-06 01:26 - 000000000 ____D C:\Users\Peter\AppData\Local\Avg
2019-03-05 00:06 - 2019-03-06 21:36 - 000187392 ___SH C:\Users\Peter\Downloads\Thumbs.db
2019-02-23 17:17 - 2019-01-04 17:13 - 000143592 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2019-02-23 17:17 - 2019-01-04 17:07 - 000727040 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2019-02-23 17:17 - 2019-01-04 15:05 - 002862592 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2019-02-23 17:17 - 2019-01-04 15:05 - 001635328 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2019-02-23 17:17 - 2019-01-04 15:05 - 000799744 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2019-02-23 17:17 - 2019-01-04 15:05 - 000623104 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2019-02-23 17:17 - 2019-01-04 15:05 - 000495616 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2019-02-23 17:17 - 2019-01-04 15:05 - 000451584 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2019-02-23 17:17 - 2019-01-04 15:05 - 000313856 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2019-02-23 17:17 - 2019-01-04 15:05 - 000253952 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2019-02-23 17:17 - 2019-01-03 17:10 - 000002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2019-02-23 17:17 - 2019-01-03 16:55 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2019-02-21 19:02 - 2019-02-21 19:02 - 000001022 _____ C:\Users\Public\Desktop\Traktor Pro 3.lnk
2019-02-21 19:02 - 2019-02-21 19:02 - 000000000 __HDC C:\ProgramData\{924FFD26-EE82-4048-AE3D-60C3FFADB608}
2019-02-21 18:39 - 2019-02-21 18:39 - 000001094 _____ C:\Users\Public\Desktop\Controller Editor.lnk
2019-02-21 18:39 - 2019-02-21 18:39 - 000000000 __HDC C:\ProgramData\{B027DDC5-482A-4E25-817A-97ECB2471349}
2019-02-21 18:28 - 2019-02-21 18:28 - 000001054 _____ C:\Users\Public\Desktop\Native Access.lnk
2019-02-21 18:28 - 2019-02-21 18:28 - 000000000 __HDC C:\ProgramData\{346374E1-ABC8-46AE-8BB0-50CF1E6C441B}
2019-02-21 18:25 - 2019-02-21 18:28 - 000000000 ___HD C:\.native-instruments.suht.tmp

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-15 22:00 - 2016-11-18 19:54 - 000000000 ____D C:\Users\Peter\AppData\LocalLow\Mozilla
2019-03-15 21:30 - 2009-07-14 05:45 - 000013632 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-03-15 21:30 - 2009-07-14 05:45 - 000013632 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-03-15 21:21 - 2012-04-17 14:31 - 000100940 _____ C:\windows\system32\fastboot.set
2019-03-15 21:21 - 2012-04-17 13:50 - 000000000 ____D C:\ProgramData\NVIDIA
2019-03-15 21:20 - 2009-07-14 06:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-03-15 21:13 - 2016-05-14 20:10 - 000000000 ____D C:\Users\Peter\AppData\Roaming\KeePass
2019-03-15 20:31 - 2017-09-20 23:11 - 000000000 ____D C:\Program Files\Malwarebytes
2019-03-15 20:31 - 2016-05-23 11:12 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-03-15 19:28 - 2016-05-13 15:35 - 000000000 ____D C:\Users\Peter\AppData\Roaming\ESET
2019-03-15 00:17 - 2009-07-14 04:20 - 000000000 ____D C:\windows\registration
2019-03-15 00:10 - 2009-07-14 04:20 - 000000000 ____D C:\windows\inf
2019-03-14 23:34 - 2018-10-06 23:01 - 000000000 ____D C:\Users\Peter\AppData\Roaming\Wise Care 365
2019-03-14 23:27 - 2018-01-05 23:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2019-03-14 23:27 - 2016-06-07 21:07 - 000000000 ____D C:\Users\Peter\AppData\Roaming\BitTorrent
2019-03-14 23:27 - 2016-05-26 23:38 - 000000000 ____D C:\Users\Peter\AppData\Local\CrashDumps
2019-03-14 23:26 - 2009-07-29 08:00 - 000000000 ____D C:\windows\Panther
2019-03-14 23:26 - 2009-07-14 06:32 - 000000000 ____D C:\windows\Downloaded Program Files
2019-03-14 22:25 - 2016-05-19 17:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-03-14 22:23 - 2016-05-19 17:32 - 000000000 ____D C:\Program Files\Microsoft Office
2019-03-14 20:39 - 2016-06-02 20:10 - 000000000 ____D C:\temp
2019-03-14 20:06 - 2017-03-25 22:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2019-03-14 20:05 - 2017-03-25 22:30 - 000000000 ____D C:\Program Files (x86)\Wondershare
2019-03-13 18:48 - 2016-11-14 19:07 - 000050280 _____ (ESET) C:\windows\system32\Drivers\ekbdflt.sys
2019-03-13 18:48 - 2016-04-14 14:09 - 000107744 _____ (ESET) C:\windows\system32\Drivers\edevmon.sys
2019-03-13 18:48 - 2016-04-14 14:09 - 000061152 _____ (ESET) C:\windows\system32\Drivers\EpfwLWF.sys
2019-03-13 18:48 - 2011-08-09 13:24 - 000145600 _____ (ESET) C:\windows\system32\Drivers\eamonm.sys
2019-03-13 18:48 - 2011-08-04 08:20 - 000188240 _____ (ESET) C:\windows\system32\Drivers\ehdrv.sys
2019-03-13 18:48 - 2011-08-04 08:20 - 000110000 _____ (ESET) C:\windows\system32\Drivers\epfwwfp.sys
2019-03-13 18:48 - 2011-08-04 08:20 - 000082472 _____ (ESET) C:\windows\system32\Drivers\epfw.sys
2019-03-13 17:02 - 2009-07-14 06:13 - 000797006 _____ C:\windows\system32\PerfStringBackup.INI
2019-03-13 16:47 - 2009-07-14 04:20 - 000000000 ____D C:\windows\SysWOW64\Dism
2019-03-13 16:47 - 2009-07-14 04:20 - 000000000 ____D C:\windows\system32\Dism
2019-03-13 01:08 - 2016-05-12 21:53 - 000000000 ____D C:\windows\system32\MRT
2019-03-13 01:01 - 2016-05-12 21:53 - 127411920 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2019-03-12 00:21 - 2016-05-31 23:40 - 000003858 _____ C:\windows\System32\Tasks\Opera scheduled Autoupdate 1464734428
2019-03-12 00:21 - 2016-05-31 23:24 - 000003408 _____ C:\windows\System32\Tasks\RealDownloader Update Check
2019-03-11 23:56 - 2016-05-19 17:59 - 000000000 ____D C:\Users\Peter\Documents\Súbory programu Outlook
2019-03-11 20:36 - 2018-07-05 22:44 - 000000000 ____D C:\Users\Peter\AppData\Roaming\5KPlayer
2019-03-08 00:05 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2019-03-08 00:03 - 2016-05-25 21:16 - 000000000 ____D C:\ProgramData\Skype
2019-03-08 00:02 - 2016-05-25 21:16 - 000000000 ____D C:\Users\Peter\AppData\Roaming\Skype
2019-03-06 21:44 - 2019-02-01 23:03 - 000000000 ____D C:\Users\Peter\AppData\LocalLow\BitTorrent
2019-03-06 21:43 - 2016-05-14 19:34 - 000000000 ____D C:\Users\Peter\0PETER_MEDIA
2019-03-06 02:07 - 2017-09-18 17:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaCoder x64
2019-03-06 02:07 - 2016-08-01 23:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2019-03-06 02:07 - 2016-05-15 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg WaveLab
2019-03-06 01:30 - 2016-11-22 19:35 - 000001040 _____ C:\Users\Peter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2019-03-06 01:20 - 2016-05-15 17:46 - 000000000 ____D C:\windows\pss
2019-03-05 23:53 - 2016-06-10 21:40 - 000002196 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-05 23:53 - 2016-06-10 21:40 - 000002155 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-03-05 00:21 - 2016-05-14 19:31 - 000000000 ____D C:\Users\Peter\0PETER_FILES
2019-03-03 20:31 - 2018-01-05 22:09 - 000000000 ____D C:\ProgramData\CanonIJPLM
2019-03-02 17:18 - 2016-07-16 21:51 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-03-02 01:02 - 2016-11-18 18:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-03-01 22:22 - 2016-05-31 23:40 - 000000000 ____D C:\Program Files (x86)\Opera
2019-02-27 22:18 - 2016-05-13 14:30 - 000007596 _____ C:\Users\Peter\AppData\Local\Resmon.ResmonCfg
2019-02-24 00:30 - 2016-10-23 00:07 - 000000000 ____D C:\KMPlayer
2019-02-23 23:50 - 2016-10-23 01:44 - 000000000 ____D C:\Users\Peter\AppData\Roaming\vlc
2019-02-23 17:41 - 2018-10-30 23:15 - 000004462 _____ C:\windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-02-23 17:41 - 2016-05-15 22:13 - 000842240 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2019-02-23 17:41 - 2016-05-15 22:13 - 000175104 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-02-23 17:41 - 2016-05-15 22:13 - 000000000 ____D C:\windows\SysWOW64\Macromed
2019-02-23 17:41 - 2016-05-15 22:13 - 000000000 ____D C:\windows\system32\Macromed
2019-02-23 17:41 - 2016-05-15 22:10 - 000000000 ____D C:\Users\Peter\AppData\Local\Adobe
2019-02-23 17:26 - 2016-05-24 22:50 - 000000000 ___SD C:\windows\system32\CompatTel
2019-02-23 17:26 - 2016-05-24 22:50 - 000000000 ____D C:\windows\system32\appraiser
2019-02-23 17:21 - 2016-05-15 21:05 - 000781316 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2019-02-21 19:00 - 2016-12-17 00:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments
2019-02-21 18:39 - 2016-12-17 00:47 - 000000000 ____D C:\Program Files\Native Instruments
2019-02-21 18:39 - 2016-05-14 01:30 - 000000000 ____D C:\Program Files\Common Files\Native Instruments
2019-02-18 18:47 - 2018-05-12 16:54 - 000000000 ____D C:\Users\Peter\Downloads\ScanDoc
2019-02-18 18:04 - 2018-04-09 22:26 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2019-02-17 19:58 - 2018-04-09 19:25 - 000000000 ____D C:\Users\Peter\AppData\Roaming\IDM

==================== Files in the root of some directories =======

2019-01-19 16:18 - 2019-01-21 21:37 - 000001186 _____ () C:\Users\Peter\AppData\Roaming\DVDSubEdit.ini
2019-01-19 16:13 - 2019-01-21 21:36 - 000009445 _____ () C:\Users\Peter\AppData\Roaming\DVDSubEditLastFile0.txt
2019-01-19 17:29 - 2019-01-19 23:59 - 000009514 _____ () C:\Users\Peter\AppData\Roaming\DVDSubEditLastFile1.txt
2017-09-17 18:53 - 2018-05-17 23:30 - 232769920 _____ ( ) C:\Users\Peter\AppData\Roaming\filmora_64bit_full846.exe
2018-05-02 22:52 - 2018-05-03 19:47 - 000000120 _____ () C:\Users\Peter\AppData\Roaming\System Monitor II_UptimeRecord.ini
2017-12-10 13:34 - 2017-12-10 13:34 - 000000093 _____ () C:\Users\Peter\AppData\Local\fusioncache.dat
2019-01-19 17:05 - 2019-01-19 17:25 - 018157448 _____ () C:\Users\Peter\AppData\Local\OcrMap.bin
2019-01-12 01:49 - 2019-01-12 01:49 - 000003335 _____ () C:\Users\Peter\AppData\Local\recently-used.xbel
2016-05-13 14:30 - 2019-02-27 22:18 - 000007596 _____ () C:\Users\Peter\AppData\Local\Resmon.ResmonCfg

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\SysWOW64\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\dllhost.exe => File is digitally signed
C:\windows\SysWOW64\dllhost.exe => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-06-17 19:53

==================== End of FRST.txt ============================

Kikino
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 54
Registrován: 08 črc 2008 22:23

Re: Preventivna kontrola

#6 Příspěvek od Kikino »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13.03.2019 01
Ran by Peter (15-03-2019 22:03:22)
Running from C:\Users\Peter\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2016-05-12 20:43:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3721545487-109903091-240251889-500 - Administrator - Disabled)
ASPNET (S-1-5-21-3721545487-109903091-240251889-1005 - Limited - Enabled)
Guest (S-1-5-21-3721545487-109903091-240251889-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3721545487-109903091-240251889-1003 - Limited - Enabled)
Peter (S-1-5-21-3721545487-109903091-240251889-1001 - Administrator - Enabled) => C:\Users\Peter

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

5KPlayer (HKLM-x32\...\5KPlayer) (Version: 5.1 - DearMob, Inc.)
Adobe Flash Player 27 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.142 - Adobe Systems Incorporated)
Aktualizácie NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 368.81 - NVIDIA Corporation) Hidden
Any Video Converter 5.8.0 (HKLM-x32\...\Any Video Converter) (Version: 5.8.0 - Anvsoft)
BitTorrent (HKU\S-1-5-21-3721545487-109903091-240251889-1001\...\BitTorrent) (Version: 7.10.5.44995 - BitTorrent Inc.)
Broadcom Gigabit NetLink Controller (HKLM\...\{029A4933-3F36-4E4F-AEC3-2207AB26463D}) (Version: 14.4.9.2 - Broadcom Corporation)
Canon CanoScan LiDE 220 On-screen Manual (HKLM-x32\...\Canon CanoScan LiDE 220 On-screen Manual) (Version: 7.7.1 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.11.1 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.4.0 - Canon Inc.)
CanoScan LiDE 220 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ4811) (Version: 1.02 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.35 - Piriform)
Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.4.1000.16 - Citrix Systems, Inc.)
CrystalDiskInfo 7.0.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.0 - Crystal Dew World)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DaVinci Resolve (HKLM\...\{E248E287-CCDC-4F3C-A5AD-AA7ACE50D359}) (Version: 12.5.2010 - Blackmagic Design)
Desktop Restore version 1.6.4 (HKLM\...\{DBD4F07A-7607-4A4F-A46C-6AA399E06E38}_is1) (Version: 1.6.4 - Jamie O'Connell)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
DWGSee Pro 2016 (HKLM-x32\...\{84AAA3F4-45CE-4FC6-8C16-35C98E69673C}) (Version: 4.17 - AutoDWG)
Easy CD-DA Extractor 15 (HKLM-x32\...\Easy CD-DA Extractor 15) (Version: 15 - Poikosoft)
Energy Management (HKLM-x32\...\{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 6.0.2.0 - Lenovo) Hidden
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 6.0.2.0 - Lenovo)
ESET Security (HKLM\...\{B489BC2D-0079-4631-97BF-CA2378299D43}) (Version: 11.0.159.9 - ESET, spol. s r.o.)
EVEREST Ultimate Edition v4.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 4.50 - Lavalys, Inc.)
Exif Pilot 4.13.2 (HKLM-x32\...\Exif Pilot_is1) (Version: 4.13.2 - Two Pilots)
FormatFactory 4.3.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.3.0.0 - Free Time)
Foxit Editor (HKLM-x32\...\{FC0A78F6-D405-431C-A513-8135B9E2AF3C}) (Version: 2.2.0.205 - Foxit Corporation)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.3.4.311 - Foxit Software Inc.)
Free Video Flip and Rotate (HKLM-x32\...\Free Video Flip and Rotate_is1) (Version: 2.2.37.627 - Digital Wave Ltd)
Free VPN version 3.2 (HKLM-x32\...\{05A4243F-4ADC-416C-A21A-91613A87577E}_is1) (Version: 3.2 - VPNMaster, Inc.)
‌F‌r‌e‌e‌F‌i‌l‌e‌S‌y‌n‌c 10.7 (HKLM-x32\...\FreeFileSync_is1) (Version: 10.7 - FreeFileSync.org)
GIMP 2.10.8 (HKLM\...\GIMP-2_is1) (Version: 2.10.8 - The GIMP Team)
Google Earth Pro (HKLM\...\{F914BC59-918A-498F-B2E3-B274C9CB48A8}) (Version: 7.3.2.5491 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 72.0.3626.121 - Spoločnosť Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
HD Tune Pro 5.50 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
HWiNFO64 Version 5.54 (HKLM\...\HWiNFO64_is1) (Version: 5.54 - Martin Malík - REALiX)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{1927E640-A2C6-4BA7-8F43-FFD2AE3DFCF3}) (Version: 14.0.2000 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.2.1004 - Intel Corporation)
Intel(R) Wireless Display (HKLM-x32\...\{F84906ED-BB54-4889-B131-FED9C9056FC8}) (Version: 2.0.27.0 - Intel Corporation)
IrfanView 4.52 (64-bit) (HKLM\...\IrfanView64) (Version: 4.52 - Irfan Skiljan)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.55.0 - JMicron Technology Corp.)
JPEGCrops 0.7.5 beta (HKLM-x32\...\{DEAD07C6-D070-43AB-A60D-D9ABE55E296D}_is1) (Version: - )
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KeePass Password Safe 1.31 (HKLM-x32\...\KeePass Password Safe_is1) (Version: 1.31 - Dominik Reichl)
KeePass Password Safe 2.41 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.41 - Dominik Reichl)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.2.2.20 - PandoraTV)
Kodi (HKU\S-1-5-21-3721545487-109903091-240251889-1001\...\Kodi) (Version: - XBMC-Foundation)
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.7400 - Broadcom Corporation)
Lenovo DirectShare (HKLM-x32\...\{B2164CCB-C002-4B80-8550-7535D80DF237}) (Version: 1.0.1.38 - ArcSoft) Hidden
Lenovo DirectShare (HKLM-x32\...\InstallShield_{B2164CCB-C002-4B80-8550-7535D80DF237}) (Version: 1.0.1.38 - ArcSoft)
Lenovo EasyCamera (HKLM-x32\...\{AD40A06A-77AB-4E2E-B2AA-FDE106A9977A}) (Version: 1.1.1.7 - Suyin Optronics Corp.)
Lenovo EE Boot Optimizer (HKLM\...\Lenovo EE Boot Optimizer) (Version: 0.0.1.7 - Lenovo)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.1628 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.1628 - CyberLink Corp.)
Lenovo R.I.C. (Robust Intelligent Companion) (HKLM\...\Lenovo R.I.C. (Robust Intelligent Companion)) (Version: 1.0.10.1220 - Lenovo)
Lenovo Solution Center (HKLM\...\{C1FC707B-AE6B-4DC4-89A5-6628A01F8103}) (Version: 3.3.003.00 - Lenovo)
Lingea Lexicon 5 (HKLM-x32\...\Lexicon5) (Version: - )
Live 8.2.2 (HKLM-x32\...\Live 8.2.2) (Version: - )
MediaCoder x64 0.8.49.5892 (HKLM\...\MediaCoder x64) (Version: 0.8.49.5892 - Mediatronic)
MediaInfo 0.7.98 (HKLM\...\MediaInfo) (Version: 0.7.98 - MediaArea.net)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2016 Professional Plus - sk-sk (HKLM\...\ProPlusRetail - sk-sk) (Version: 16.0.11328.20158 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3721545487-109903091-240251889-1001\...\OneDriveSetup.exe) (Version: 17.3.6281.1202 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25017 (HKLM-x32\...\{e52a6842-b0ac-476e-b48f-378a97a67346}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25017 (HKLM-x32\...\{f325f05b-f963-4640-a43b-c8a494cdda0f}) (Version: 14.10.25017.0 - Microsoft Corporation)
Mixed in Key (HKLM-x32\...\{F3A4E720-26AE-4EA0-BBCC-9480EAE753EC}) (Version: 8.0.2325.0 - Mixed In Key LLC) Hidden
Mixed In Key 8 (HKU\S-1-5-21-3721545487-109903091-240251889-1001\...\{85c3a10f-312f-40ef-b9ae-21bdd4e92f16}) (Version: 8.0.2325.0 - Mixed In Key LLC)
Mozilla Firefox 48.0.2 (x64 sk) (HKLM\...\Mozilla Firefox 48.0.2 (x64 sk)) (Version: 48.0.2 - Mozilla)
Mozilla Firefox 65.0.2 (x64 sk) (HKLM\...\Mozilla Firefox 65.0.2 (x64 sk)) (Version: 65.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 65.0.2.6995 - Mozilla)
Mp3tag v2.91 (HKLM-x32\...\Mp3tag) (Version: 2.91 - Florian Heidenreich)
Native Instruments Audio 2 DJ Driver (HKLM-x32\...\Native Instruments Audio 2 DJ Driver) (Version: - Native Instruments)
Native Instruments Audio 4 DJ Driver (HKLM-x32\...\Native Instruments Audio 4 DJ Driver) (Version: - Native Instruments)
Native Instruments Audio 8 DJ Driver (HKLM-x32\...\Native Instruments Audio 8 DJ Driver) (Version: - Native Instruments)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 2.3.4.436 - Native Instruments)
Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.9.1.103 - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.6.0.137 - Native Instruments)
Native Instruments Traktor 2 (HKLM-x32\...\Native Instruments Traktor 2) (Version: 2.11.3.17 - Native Instruments)
Native Instruments Traktor Audio 10 Driver (HKLM-x32\...\Native Instruments Traktor Audio 10 Driver) (Version: - Native Instruments)
Native Instruments Traktor Audio 2 Driver (HKLM-x32\...\Native Instruments Traktor Audio 2 Driver) (Version: - Native Instruments)
Native Instruments Traktor Audio 2 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Audio 2 MK2 Driver) (Version: - Native Instruments)
Native Instruments Traktor Audio 6 Driver (HKLM-x32\...\Native Instruments Traktor Audio 6 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol D2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol D2 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol F1 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol F1 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol S2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S2 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol S2 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S2 MK2 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol S4 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S4 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol S4 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S4 MK2 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol S5 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S5 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol S8 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol S8 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol X1 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol X1 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol X1 MK2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol X1 MK2 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol Z1 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol Z1 Driver) (Version: - Native Instruments)
Native Instruments Traktor Kontrol Z2 Driver (HKLM-x32\...\Native Instruments Traktor Kontrol Z2 Driver) (Version: - Native Instruments)
Native Instruments Traktor Pro 3 (HKLM-x32\...\Native Instruments Traktor Pro 3) (Version: 3.1.0.27 - Native Instruments)
Nitro Pro 10 (HKLM\...\{01396EAF-25FE-446F-A021-672FD38FE598}) (Version: 10.5.2.11 - Nitro)
NVIDIA 3D Vision radič ovládača 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.9.0.61 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.61 - NVIDIA Corporation)
NVIDIA Grafický ovládač 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20158 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20158 - Microsoft Corporation) Hidden
Omron Health Management Software (HKLM-x32\...\{E01DFD45-F13A-4F12-AC38-8EEE2163E52E}) (Version: 1.60.0003 - Omron Healthcare)
Onekey Theater (HKLM-x32\...\{D4B060B9-AD4A-4152-9D99-28B93C615AFE}) (Version: 2.0.2.7 - Lenovo) Hidden
Onekey Theater (HKLM-x32\...\InstallShield_{D4B060B9-AD4A-4152-9D99-28B93C615AFE}) (Version: 2.0.2.7 - Lenovo)
Online Plug-in (HKLM-x32\...\{2AB290A4-6B1F-4591-AF1B-73153F10D362}) (Version: 14.4.1000.16 - Citrix Systems, Inc.) Hidden
Opera Stable 38.0.2220.31 (HKLM-x32\...\Opera 38.0.2220.31) (Version: 38.0.2220.31 - Opera Software)
Opera Stable 58.0.3135.79 (HKLM-x32\...\Opera 58.0.3135.79) (Version: 58.0.3135.79 - Opera Software)
Ovládací panel NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (HKLM-x32\...\{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}) (Version: 15.4.5722.2 - Microsoft Corporation)
Pavtube ByteCopy Ver 2.3.1.5362 (HKLM-x32\...\Pavtube ByteCopy_is1) (Version: - )
Pavtube Video Converter Ultimate Ver 4.9.0.0 (HKLM-x32\...\{682B3199-76C3-4745-B7AE-FC13F6676421}_is1) (Version: - )
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.7108 - CyberLink Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6314 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation)
Screenpresso (HKU\S-1-5-21-3721545487-109903091-240251889-1001\...\Screenpresso) (Version: 1.7.5.0 - Learnpulse)
Self-service Plug-in (HKLM-x32\...\{37C6BFE8-9345-4BE5-A807-9E427562958B}) (Version: 4.4.1000.13058 - Citrix Systems, Inc.) Hidden
ShrinkTo5Basic (HKLM-x32\...\ShrinkTo5Basic) (Version: - )
Skype verzia 8.40 (HKLM-x32\...\Skype_is1) (Version: 8.40 - Skype Technologies S.A.)
SopCast 4.2.0 (HKLM-x32\...\SopCast) (Version: 4.2.0 - www.sopcast.com)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
SRS Control Panel (HKLM\...\{F3C66EC8-2F33-452D-9CFF-E8C886B3ECC4}) (Version: 1.11.0200 - SRS Labs, Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.2.6.0 - Synaptics Incorporated)
System Explorer 7.0.0 (HKLM-x32\...\{40F485F7-6478-4896-B0D5-F94BE677EB78}_is1) (Version: - Mister Group)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.78716 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52a - Ghisler Software GmbH)
UserGuide (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.6 - Lenovo) Hidden
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.6 - Lenovo)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
vs2015_redist x86 (HKLM-x32\...\{BD46163A-0331-4A61-B65A-7B66D7C93F8E}) (Version: 1.0.0.0 - Realnetworks) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WaveLab 6 (HKLM-x32\...\WaveLabPro) (Version: 6.1.1.353 - Steinberg)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
WinDirStat 1.1.2 (HKU\S-1-5-21-3721545487-109903091-240251889-1001\...\WinDirStat) (Version: - )
Windows Driver Package - Lenovo (ACPIVPC) System (12/02/2010 6.1.0.1) (HKLM\...\EA12B1FB53CE4E387C31A85236C41EF559B5E392) (Version: 12/02/2010 6.1.0.1 - Lenovo)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 5.30 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
WinX DVD Ripper Platinum 7.3.0 (HKLM-x32\...\WinX DVD Ripper Platinum_is1) (Version: - Digiarty Software, Inc.)
WinX HD Video Converter Deluxe 5.9.9 (HKLM-x32\...\WinX HD Video Converter Deluxe_is1) (Version: - Digiarty Software, Inc.)
Wise Care 365 5.1.8 (HKLM-x32\...\Wise Care 365_is1) (Version: 5.1.8 - WiseCleaner.com, Inc.)
Wondershare Filmora(Build 8.2.2) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.5.3 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare)
Wondershare Video Converter Ultimate(Build 10.4.3.198) (HKLM-x32\...\Video Converter Ultimate_is1) (Version: 10.4.3.198 - Wondershare Software)
XnView 2.46 (HKLM-x32\...\XnView_is1) (Version: 2.46 - Gougelet Pierre-e)
YoWindow (HKLM-x32\...\yowindow) (Version: 3 - RepkaSoft)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [DWGSeeMenu] -> {A6EAF440-149E-4AF3-AE84-5DA3CF791E3B} => C:\Program Files (x86)\AutoDWG\DWGSee Pro 2016\DWGSeeMenu64.dll [2012-07-13] (TODO: <Company name>) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2019-03-13] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [WondershareVideoConverterFileOpreation] -> {FEB746CA-95C2-485F-B386-C30D4E56D22E} => C:\windows\SysWOW64\WSCM64.dll [2014-10-24] () [File not signed]
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2019-03-13] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [DeskMenu] -> {7E74422F-2393-11D4-98E0-444553540000} => C:\Program Files\Desktop Restore\dkticnsr.dll [2014-07-14] (Jamie O'Connell) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2015-06-01] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\windows\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2019-03-13] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {015E8DD4-886B-4915-88EB-21D33B009E61} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {16CE1AE9-D635-4B17-B6FD-EDA04F7CB3F0} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe (LENOVO -> Lenovo)
Task: {1800156E-9413-4B0B-B2DA-58A26DB7CF89} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {22508E86-2C48-4AC9-BF65-E26831F2EE36} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSC.Services.UpdateStatusService.exe (LENOVO -> )
Task: {280FA8DE-40FA-428E-AAED-945CBBC7431D} - System32\Tasks\RealDownloader Update Check => C:\program files (x86)\real\RealDownloader\downloader2.exe
Task: {295AA681-89DE-43B0-8B3F-DA6B5FA4D7B5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {35E4214E-D43E-4742-B77D-18774C7B7A98} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {3B9D7759-E718-4792-9E56-31AB96800EAA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {5E88AA33-438E-4C01-94C0-1B72F684BFE5} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5ECDE617-8FE0-4B00-B893-B0BF3371F60A} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {74B3D1D9-2F2E-437F-9FC4-F6DD0425ADF5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7842EEE1-EB62-46F1-9171-BE3BAD25B72F} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_142_Plugin.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {80707F71-1689-404A-831B-BD7109EEDBC8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {87AA8A6F-ED0D-4040-AAEF-AEBF7245177F} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe (LENOVO -> Lenovo)
Task: {89C51E39-77D5-4AF2-AF80-485225F03E05} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {912E739A-B2DC-4594-B65C-77D459A818E4} - System32\Tasks\{02477ABC-BABE-4E9D-B2B8-EAE642B2F30E} => C:\windows\system32\pcalua.exe -a "C:\Users\Peter\SW\Aimersoft.DVD.Studio\Aimersoft DVD Studio Pack\Aimersoft DVD Studio Pack.exe" -d "C:\Users\Peter\SW\Aimersoft.DVD.Studio\Aimersoft DVD Studio Pack"
Task: {96156504-5755-4FF9-93F5-3EC677CF4C6F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {994C86AD-A929-4B2C-88A0-4E25A107A029} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\windows\system32\srtasks.exe
Task: {A6AF9377-77CE-47AB-AD7D-EC32CAD0C82D} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\windows\System32\LocationNotificationWindows.exe
Task: {A71FA162-9F18-4467-BB7F-05F48F993650} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {A959DF09-08E9-4AFD-B2B1-06DFE9396598} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AC3B561F-790F-4726-9EF6-BAABBE786A3D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {B50E5DFF-E75B-47B4-B5B9-4D9A47201443} - System32\Tasks\Opera scheduled Autoupdate 1464734428 => C:\Program Files (x86)\Opera\launcher.exe (Opera Software AS -> Opera Software)
Task: {B954390F-DDF0-427D-8B05-6B043D308647} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {BFB51968-7CB7-4769-B748-9EE70FA14573} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd -> Piriform Ltd)
Task: {CCA01DE7-CDD0-49CA-8FAE-18ADD4144868} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {DD85DC15-EE02-4CA5-B77E-2234FD77132D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E35F396C-E0E3-484A-AD93-C5A50DB894F1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {EF5460F0-377E-49BE-BE43-E6F19017EBE7} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F706DF2C-1B5E-4B34-AE78-F8FFF0EB3B0F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F7F5B9A3-84A1-44CD-80A7-8296C09D0E45} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2011-01-05 14:37 - 2011-01-05 14:37 - 001812992 _____ (Intel(R) Corporation) [File not signed] C:\windows\System32\IWMSSvc.dll
2011-01-05 13:53 - 2011-01-05 13:53 - 001501696 _____ () [File not signed] C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
2011-01-05 14:27 - 2011-01-05 14:27 - 001070080 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll
2011-01-05 14:28 - 2011-01-05 14:28 - 001044992 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll
2011-01-05 14:28 - 2011-01-05 14:28 - 000336896 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\WiFi\bin\IWMSPROV.DLL
2011-01-05 14:28 - 2011-01-05 14:28 - 000831488 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\WiFi\bin\IntStngs.dll
2011-01-05 14:07 - 2011-01-05 14:07 - 000333824 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll
2017-03-25 22:30 - 2014-10-24 14:16 - 000721263 _____ () [File not signed] C:\windows\SysWOW64\WSCM64.dll
2018-02-24 01:03 - 2012-07-13 16:28 - 000125952 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\AutoDWG\DWGSee Pro 2016\DWGSeeMenu64.dll
2019-02-13 18:15 - 2019-02-13 18:15 - 000019968 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\f4d8a03680dca766ce799dc8179834db\IAStorDataMgrSvc.ni.exe
2019-02-13 18:15 - 2019-02-13 18:15 - 000218624 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\091ab32e6b41b66a24aaf713257341a4\IAStorDataMgr.ni.dll
2019-02-13 18:15 - 2019-02-13 18:15 - 000475648 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\70fac0fee02cc9b89e06ca568f2c6ad1\IAStorUtil.ni.dll
2019-02-13 18:15 - 2019-02-13 18:15 - 000169984 _____ () [File not signed] C:\windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\e5eeaa8e5beef089bb05835543b68814\IsdiInterop.ni.dll
2012-04-17 13:43 - 2011-01-12 16:56 - 000058880 _____ () [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2012-04-17 13:43 - 2011-01-12 16:52 - 000275456 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\ISDI.dll
2016-05-25 21:31 - 2016-05-25 21:31 - 000225280 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
2018-11-15 18:41 - 2018-11-15 18:41 - 000014336 _____ (Intel Corp.) [File not signed] C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\e8e5ccab88b15ab97e5f4d0c2e1b3be3\IAStorCommon.ni.dll
2012-04-17 13:44 - 2010-12-21 02:45 - 000069632 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll
2012-04-17 13:44 - 2010-12-21 02:49 - 001892352 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-3721545487-109903091-240251889-1001\...\kmpmedia.net -> hxxp://player.kmpmedia.net
IE restricted site: HKU\S-1-5-21-3721545487-109903091-240251889-1001\...\msn.com -> hxxp://www.msn.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\Lenovo\Bluetooth Software\;C:\Program Files\Lenovo\Bluetooth Software\syswow64;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Smart Projects\IsoBuster
HKU\S-1-5-21-3721545487-109903091-240251889-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 217.75.71.141 - 217.75.71.142
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: btwdins => 2
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: DigitalWave.Update.Service => 2
MSCONFIG\Services: EvtEng => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: IAStorDataMgrSvc => 2
MSCONFIG\Services: IJPLMSVC => 2
MSCONFIG\Services: LMS => 2
MSCONFIG\Services: LSC.Services.SystemService => 3
MSCONFIG\Services: MBAMService => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: MyWiFiDHCPDNS => 3
MSCONFIG\Services: NIHardwareService => 2
MSCONFIG\Services: NitroDriverReadSpool10 => 2
MSCONFIG\Services: NitroUpdateService => 2
MSCONFIG\Services: NvContainerLocalSystem => 2
MSCONFIG\Services: NvContainerNetworkService => 3
MSCONFIG\Services: NVDisplay.ContainerLocalSystem => 2
MSCONFIG\Services: NvTelemetryContainer => 2
MSCONFIG\Services: RegSrvc => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: SystemExplorerHelpService => 3
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\Services: UNS => 2
MSCONFIG\Services: WiseBootAssistant => 3
MSCONFIG\Services: WsAppService => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^RealTimes.lnk => C:\windows\pss\RealTimes.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Peter^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^HDDlife.lnk => C:\windows\pss\HDDlife.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Peter^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Lingea Update Center.lnk => C:\windows\pss\Lingea Update Center.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Peter^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Odoslanie do aplikácie OneNote.lnk => C:\windows\pss\Odoslanie do aplikácie OneNote.lnk.Startup
MSCONFIG\startupreg: 5KPlayer => "C:\Program Files (x86)\DearMob\5KPlayer\5KPlayer.exe" -auto
MSCONFIG\startupreg: AvgUi => "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
MSCONFIG\startupreg: CanonQuickMenu => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: ConnectionCenter => "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup
MSCONFIG\startupreg: DelaypluginInstall => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
MSCONFIG\startupreg: HotKeysCmds => "C:\windows\system32\hkcmd.exe"
MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
MSCONFIG\startupreg: IgfxTray => "C:\windows\system32\igfxtray.exe"
MSCONFIG\startupreg: KeePass 2 PreLoad => "C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe" --preload
MSCONFIG\startupreg: OnekeyStudio => C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe
MSCONFIG\startupreg: Persistence => "C:\windows\system32\igfxpers.exe"
MSCONFIG\startupreg: RealDownloader => C:\program files (x86)\real\RealDownloader\downloader2.exe
MSCONFIG\startupreg: Redirector => "C:\Program Files (x86)\Citrix\ICA Client\redirector.exe" /startup
MSCONFIG\startupreg: Screenpresso => "C:\Users\Peter\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe" -startup
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Skype for Desktop => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
MSCONFIG\startupreg: UpdateP2GShortCut => "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
MSCONFIG\startupreg: UpdatePRCShortCut => "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
MSCONFIG\startupreg: WSVCUUpdateHelper.exe => C:\Program Files (x86)\Wondershare\Video Converter Ultimate\WSVCUUpdateHelper.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{AAE1E333-26D2-4EFF-AA1C-0355B6087C34}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{86544B53-9441-42E4-98E4-839C1C1796F0}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4A69A540-5251-4CC6-AB32-62EEEBCD40FF}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation - Mobile Wireless Group -> )
FirewallRules: [{AD562C25-5DA5-432E-9C25-6A45AE91FCA0}] => (Allow) C:\Program Files (x86)\Intel Corporation\Intel Wireless Display\WiDiApp.exe (Intel Corporation -> Intel Corporation)
FirewallRules: [{B8FDB77C-C513-46E5-A0F7-D6B8939E5884}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{901CA706-8074-4694-A776-05EAF4756997}] => (Allow) LPort=2869
FirewallRules: [{3D51A9A9-A84C-46FF-9CAB-0F3C6570E72F}] => (Allow) LPort=1900
FirewallRules: [{9EB24078-BB99-4044-AFBC-EA1AD7CC1201}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3C2E85CC-327A-4DD6-8132-2AE3D17D088C}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{558DD80B-5F99-41F3-BECF-FDD36663418F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AB9F625B-8F39-4597-B71D-E48CDCECD0C5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{23394904-9C92-40FF-AB11-0249D91E2549}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{1500EF81-974C-4EFB-B603-E71387366221}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{371BD90B-719B-44BE-9199-762AE2A22200}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{304A7D31-10F1-474C-A6D9-5A3125D1A20C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{65603F2E-57B8-41E9-B0D8-4C336141F998}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B14742D8-B67E-4DFA-A95A-856EBEDB9FBD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{AFED5DDF-54C9-453E-B961-E98B90CA3582}C:\users\peter\appdata\roaming\bittorrent\bittorrent.exe] => (Block) C:\users\peter\appdata\roaming\bittorrent\bittorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{341473AC-64AA-489A-B48C-5682881EA4E3}C:\users\peter\appdata\roaming\bittorrent\bittorrent.exe] => (Block) C:\users\peter\appdata\roaming\bittorrent\bittorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{0D447C60-C80A-42FC-8907-AD248182E596}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{A4FABC0D-D213-4C6F-9D7A-B5936D216E3D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{D8261BD3-A355-426E-8818-143CC4517984}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{B7383B6B-0133-4FA3-9A4F-96858C31A793}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{9EA100EF-FA7B-44D0-80D2-B9B4963D9722}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{28179D4D-7656-41EB-997C-5AC9250E2D4D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{1AB2B6D0-4897-48F8-8A83-6103711C6ED5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{65133333-C1C3-4D75-BD85-AC26137F1597}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{D304948D-6601-470D-B374-4CEECA1208D6}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{D7BA34F6-94A1-4FB2-9264-B48E0B2DAD5F}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{0D8D1F95-30D2-45A1-BD69-66FA924A6290}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{23DA7FDC-5274-463D-B566-C3C34246E912}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{32090F36-D69C-4565-A048-83BED01A5C95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9D6A1CA6-F95A-4542-8C17-BC580AC7F61C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C3E0834C-D02D-4FB1-A68C-70071B6F42CD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{901E5FB0-E368-4680-96D5-2291010CF705}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{3862771D-2EC0-4009-9A95-141063762FD5}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe () [File not signed]
FirewallRules: [{4FC4CA46-6530-4F1A-ACC8-FDE443A4C29D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe () [File not signed]
FirewallRules: [{0BDA3F2B-2E2A-4683-8D51-7C7198E0E7DD}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe () [File not signed]
FirewallRules: [{ED706C94-EEDE-475B-A7B9-3B70887D6AF7}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe () [File not signed]
FirewallRules: [{A4A69F5C-997D-46DD-99D7-9038C83FCD86}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe () [File not signed]
FirewallRules: [{4E6FF1E8-4E0C-46D2-911D-6619816DADA2}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{38F65BA2-2557-4947-91FD-22DE6E87F518}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{F9FF2E41-BF8A-43AD-A3F5-9A193FA9F055}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{9B6B78FE-92BA-4844-8D57-C0B3733B63D2}] => (Block) %SystemDrive%\KMPlayer\KMPlayer.exe (Pandora TV Co., Ltd. -> PandoraTV)
FirewallRules: [{147B158B-BD33-4BB4-9AF6-CCF677DAAE60}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5CB17B71-231E-4C48-89FC-37C293B2BE79}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B114F950-5654-4C6E-906D-F75A409311C7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C3DF786A-C54E-491C-A3FD-A9FF2C45FDCD}] => (Allow) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{2192A9EE-B195-4FEE-8BD3-AEBB39A8A1F9}] => (Allow) C:\Program Files (x86)\Opera\58.0.3135.79\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{EBF624A4-F856-4922-B41D-26E391F783A4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{DADEEEED-AC7E-4E18-8D53-2AE027F97DD4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

09-03-2019 10:28:16 Windows Update
12-03-2019 18:41:36 Windows Update
13-03-2019 00:58:17 Windows Update
13-03-2019 17:05:41 Windows Update
14-03-2019 23:19:38 Created by Wise Care 365

==================== Faulty Device Manager Devices =============

Name: Broadcom Bluetooth 2.1 USB
Description: Broadcom Bluetooth 2.1 USB
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Broadcom
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/15/2019 12:14:55 AM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search sa zastavuje, pretože sa vyskytol problém s indexovaním, The catalog is corrupt.

Details:
Metaúdaje indexu obsahu sa nedajú prečítať. (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/15/2019 12:14:55 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: The index cannot be initialized.

Details:
Metaúdaje indexu obsahu sa nedajú prečítať. (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/15/2019 12:14:55 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: The application cannot be initialized.

Context: Windows Application

Details:
Metaúdaje indexu obsahu sa nedajú prečítať. (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/15/2019 12:14:55 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
Metaúdaje indexu obsahu sa nedajú prečítať. (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/15/2019 12:14:55 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
Element sa nepodarilo nájsť. (HRESULT : 0x80070490) (0x80070490)

Error: (03/15/2019 12:14:39 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
Metaúdaje indexu obsahu sa nedajú prečítať. (HRESULT : 0xc0041801) (0xc0041801)

Error: (03/15/2019 12:14:39 AM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Služba Windows Search nemôže načítať informácie ukladacieho priestoru vlastností.

Context: Windows Application, SystemIndex Catalog

Details:
The content index server cannot update or access information because of a database error. Stop and restart the search service. If the problem persists, reset and recrawl the content index. In some cases it may be necessary to delete and recreate the content index. (HRESULT : 0x8004117f) (0x8004117f)

Error: (03/15/2019 12:14:39 AM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Vyhľadávacia služba zistila v indexe {id=1100} súbory s poškodenými údajmi. Služba sa pokúsi o automatické opravenie tohto problému opätovným vytvorením indexu.

Details:
Metaúdaje indexu obsahu sa nedajú prečítať. (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (03/15/2019 10:06:12 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 47. The internal error state is 800.

Error: (03/15/2019 10:03:10 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 47. The internal error state is 800.

Error: (03/15/2019 09:59:47 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 47. The internal error state is 800.

Error: (03/15/2019 09:54:54 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 47. The internal error state is 800.

Error: (03/15/2019 09:52:53 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 47. The internal error state is 800.

Error: (03/15/2019 09:49:37 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 47. The internal error state is 800.

Error: (03/15/2019 09:47:32 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 47. The internal error state is 800.

Error: (03/15/2019 09:44:38 PM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 47. The internal error state is 800.


Windows Defender:
===================================
Date: 2019-02-23 17:13:15.955
Description:
Windows Defender scan has been stopped before completion.
Scan ID:{E39296D1-7685-4176-9319-A789417949B0}
Scan Type:AntiSpyware
Scan Parameters:Quick Scan

Date: 2019-01-11 09:53:11.158
Description:
Windows Defender scan has been stopped before completion.
Scan ID:{D778D9AA-1C60-4D12-89C9-B688821F6F51}
Scan Type:AntiSpyware
Scan Parameters:Quick Scan

Date: 2018-05-13 03:15:30.201
Description:
Windows Defender scan has been stopped before completion.
Scan ID:{45CE94CB-7841-44F0-A08F-7561EAD62714}
Scan Type:AntiSpyware
Scan Parameters:Quick Scan

Date: 2018-05-02 22:14:44.465
Description:
Windows Defender scan has been stopped before completion.
Scan ID:{465BCEEE-1213-4E1F-9E29-867AEDD90F38}
Scan Type:AntiSpyware
Scan Parameters:Quick Scan

Date: 2016-10-09 02:29:59.925
Description:
Windows Defender scan has been stopped before completion.
Scan ID:{6E12F611-30B3-4527-96FA-29233614C9D0}
Scan Type:AntiSpyware
Scan Parameters:Quick Scan

Date: 2018-05-02 21:48:06.258
Description:
Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.
Signatures Attempted:Current
Error Code:0x80070002
Error description:Systém nemôže nájsť zadaný súbor.
Signature version:0.0.0.0
Engine version:0.0.0.0

Date: 2018-05-02 21:48:06.258
Description:
Windows Defender has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version:
Update Source:Signature Update Folder
Signature Type:AntiSpyware
Update Type:Delta
Current Engine Version:
Previous Engine Version:
Error code:0x80070002
Error description:Systém nemôže nájsť zadaný súbor.

Date: 2016-07-16 18:31:52.487
Description:
Windows Defender has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.
Signatures Attempted:Current
Error Code:0x80070002
Error description:Systém nemôže nájsť zadaný súbor.
Signature version:0.0.0.0
Engine version:0.0.0.0

CodeIntegrity:
===================================

Date: 2019-02-15 22:49:42.934
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-02-15 22:49:42.259
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-01-28 21:42:28.070
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-01-28 21:42:27.550
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-01-28 21:42:26.820
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-01-28 21:42:26.210
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-01-27 13:07:00.742
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

Date: 2019-01-27 13:07:00.092
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-2670QM CPU @ 2.20GHz
Percentage of memory in use: 44%
Total physical RAM: 8135.86 MB
Available physical RAM: 4492.45 MB
Total Virtual: 16269.86 MB
Available Virtual: 12814.4 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:654.69 GB) (Free:214.46 GB) NTFS
Drive d: () (Fixed) (Total:29.81 GB) (Free:29.22 GB) NTFS
Drive e: () (Fixed) (Total:29 GB) (Free:27.32 GB) NTFS

\\?\Volume{96c280c8-1892-11e6-970d-806e6f6e6963}\ () (Fixed) (Total:0.2 GB) (Free:0.16 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 29.8 GB) (Disk ID: 498520C6)
Partition 1: (Not Active) - (Size=29.8 GB) - (Type=0F Extended)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 5F72E389)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=654.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=29 GB) - (Type=0F Extended)
Partition 4: (Not Active) - (Size=14.8 GB) - (Type=12)

==================== End of Addition.txt ============================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventivna kontrola

#7 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
Task: {015E8DD4-886B-4915-88EB-21D33B009E61} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {3B9D7759-E718-4792-9E56-31AB96800EAA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {5ECDE617-8FE0-4B00-B893-B0BF3371F60A} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {912E739A-B2DC-4594-B65C-77D459A818E4} - System32\Tasks\{02477ABC-BABE-4E9D-B2B8-EAE642B2F30E} => C:\windows\system32\pcalua.exe -a "C:\Users\Peter\SW\Aimersoft.DVD.Studio\Aimersoft DVD Studio Pack\Aimersoft DVD Studio Pack.exe" -d "C:\Users\Peter\SW\Aimersoft.DVD.Studio\Aimersoft DVD Studio Pack"
Task: {AC3B561F-790F-4726-9EF6-BAABBE786A3D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 - No File
C:\.native-instruments.suht.tmp

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Kikino
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 54
Registrován: 08 črc 2008 22:23

Re: Preventivna kontrola

#8 Příspěvek od Kikino »

Fix result of Farbar Recovery Scan Tool (x64) Version: 13.03.2019 01
Ran by Peter (16-03-2019 15:30:54) Run:1
Running from C:\Users\Peter\Desktop
Loaded Profiles: Peter (Available Profiles: Peter)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
Task: {015E8DD4-886B-4915-88EB-21D33B009E61} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {3B9D7759-E718-4792-9E56-31AB96800EAA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {5ECDE617-8FE0-4B00-B893-B0BF3371F60A} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {912E739A-B2DC-4594-B65C-77D459A818E4} - System32\Tasks\{02477ABC-BABE-4E9D-B2B8-EAE642B2F30E} => C:\windows\system32\pcalua.exe -a "C:\Users\Peter\SW\Aimersoft.DVD.Studio\Aimersoft DVD Studio Pack\Aimersoft DVD Studio Pack.exe" -d "C:\Users\Peter\SW\Aimersoft.DVD.Studio\Aimersoft DVD Studio Pack"
Task: {AC3B561F-790F-4726-9EF6-BAABBE786A3D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 - No File
C:\.native-instruments.suht.tmp

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{015E8DD4-886B-4915-88EB-21D33B009E61} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{015E8DD4-886B-4915-88EB-21D33B009E61} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\WindowsBackup\ConfigNotification => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3B9D7759-E718-4792-9E56-31AB96800EAA}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3B9D7759-E718-4792-9E56-31AB96800EAA}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5ECDE617-8FE0-4B00-B893-B0BF3371F60A} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5ECDE617-8FE0-4B00-B893-B0BF3371F60A} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Activation Technologies\ValidationTask => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{912E739A-B2DC-4594-B65C-77D459A818E4} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{912E739A-B2DC-4594-B65C-77D459A818E4} => removed successfully
C:\windows\System32\Tasks\{02477ABC-BABE-4E9D-B2B8-EAE642B2F30E} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{02477ABC-BABE-4E9D-B2B8-EAE642B2F30E} => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AC3B561F-790F-4726-9EF6-BAABBE786A3D}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AC3B561F-790F-4726-9EF6-BAABBE786A3D}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AC4E5ACF-89F7-4220-BA21-81EE183975E2} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AC4E5ACF-89F7-4220-BA21-81EE183975E2} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Application Experience\AitAgent => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CEE64558-E1A7-4D9D-80A7-2001912BE5B5} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CEE64558-E1A7-4D9D-80A7-2001912BE5B5} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\MemoryDiagnostic\CorruptionDetector => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FA2BC0A6-8D4B-458A-85C8-2B8C72487513} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FA2BC0A6-8D4B-458A-85C8-2B8C72487513} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector => removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKLM\Software\Classes\PROTOCOLS\Handler\WSWSVCUchrome => removed successfully
C:\.native-instruments.suht.tmp => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 12582912 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 24336325 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 763037 B
Edge => 0 B
Chrome => 834244 B
Firefox => 2275284493 B
Opera => 25120986 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
systemprofile32 => 128 B
LocalService => 0 B
NetworkService => 4000 B
UpdatusUser => 0 B
Peter => 8680296 B

RecycleBin => 145128 B
EmptyTemp: => 2.2 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 15:36:46 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventivna kontrola

#9 Příspěvek od Rudy »

Smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Kikino
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 54
Registrován: 08 črc 2008 22:23

Re: Preventivna kontrola

#10 Příspěvek od Kikino »

Vdaka za vas cas a pomoc :thumbsup:
Poslem aj nejake evricko :)

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Preventivna kontrola

#11 Příspěvek od Rudy »

Za podporu děkujeme a vy nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět