Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivka

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Stick
Návštěvník
Návštěvník
Příspěvky: 78
Registrován: 05 pro 2006 19:17

Preventivka

#1 Příspěvek od Stick »

Dobrý den,

prosím o kontrolu, jde o poměrně čerstvou instalaci na ntb, jen bych rád věděl jestli ho zbytečně něco nebrzdí.


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-09-2019
Ran by Jirka (administrator) on JIRKA-HP (Hewlett-Packard HP ProBook 4540s) (15-09-2019 17:27:44)
Running from C:\Users\Jirka\Desktop
Loaded Profiles: Jirka (Available Profiles: Jirka)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ArcSoft, Inc. -> ArcSoft, Inc.) C:\Windows\SysWOW64\ArcVCapRender\uArcCapture.exe
(ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
(Intel Corporation -> ) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Dynamic Code Publisher -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Dynamic Code Publisher -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Validity Sensors, Inc -> Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [319360 2012-03-14] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-03-27] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [636032 2012-03-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AMD AVT] => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{438363A8-F486-4C37-834C-4955773CB3D3}] -> msiexec /fu {438363A8-F486-4C37-834C-4955773CB3D3} /qn
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] ->

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {136C2944-F520-4B41-B28B-359E510FA5D8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [7255608 2011-09-10] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {5CAB6907-CCF1-4AB6-A8A8-8BC1510DFE57} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {5E828CDD-0DAE-4ACB-BD65-AE0F7FFE36F3} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {6058F350-DB8A-4A1A-A96F-3D7CC4C66A39} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [7255608 2011-09-10] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {64CA5477-D51A-4FC7-9DF4-B713A2894A66} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater\HPSFUpdater.exe [850488 2011-06-14] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {93A2623E-F3CB-4CB5-8319-16E9520F6179} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B2460960-66F2-4273-BBB4-C3D308CDF663} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe [729656 2011-09-10] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {C7BE6B1D-10F5-4F08-B1C5-2C0CE31FAD35} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [253600 2012-04-17] (Adobe Systems Incorporated -> Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.17.1
Tcpip\..\Interfaces\{54BB81C7-76BC-42C3-9E16-2E976C8CC0D3}: [DhcpNameServer] 172.168.0.2
Tcpip\..\Interfaces\{880D933B-8DBE-4A5B-A18C-0D8BCF1B0FC2}: [DhcpNameServer] 192.168.17.1

Internet Explorer:
==================
HKU\S-1-5-21-810802290-4177850383-1836218489-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=CMNTDF
HKU\S-1-5-21-810802290-4177850383-1836218489-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=CMNTDF
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKU\S-1-5-21-810802290-4177850383-1836218489-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-810802290-4177850383-1836218489-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-810802290-4177850383-1836218489-1002 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF

FireFox:
========
FF DefaultProfile: 6ufl7shb.default
FF ProfilePath: C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\6ufl7shb.default [2019-07-19]
FF ProfilePath: C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\p2zd4hor.default-release [2019-09-15]
FF Homepage: Mozilla\Firefox\Profiles\p2zd4hor.default-release -> hxxp://www.seznam.cz/
FF Extension: (uBlock Origin) - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\p2zd4hor.default-release\Extensions\uBlock0@raymondhill.net.xpi [2019-09-09]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\windows\system32\atiesrxx.exe [239616 2014-12-10] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 HPAuto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [682040 2011-02-17] (Hewlett-Packard Company -> Hewlett-Packard)
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [365440 2012-03-14] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-28] (Intel Corporation -> )
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165144 2012-03-28] (Intel Corporation -> Intel Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1134584 2012-03-07] (PDF Complete -> PDF Complete Inc)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [314880 2012-03-05] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R2 uArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [498352 2012-02-03] (ArcSoft, Inc. -> ArcSoft, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Accelerometer; C:\windows\System32\DRIVERS\Accelerometer.sys [43800 2012-03-16] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 amdkmdag; C:\windows\System32\DRIVERS\atikmdag.sys [16752640 2014-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\windows\System32\DRIVERS\atikmpag.sys [584192 2014-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\windows\System32\DRIVERS\amdkmpfd.sys [32896 2012-03-20] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 ARCVCAM; C:\windows\System32\DRIVERS\ArcSoftVCapture.sys [42816 2012-02-03] (ArcSoft, Inc. -> ArcSoft, Inc.)
R3 athr; C:\windows\System32\DRIVERS\athrx.sys [3678720 2012-06-20] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
R0 hpdskflt; C:\windows\System32\DRIVERS\hpdskflt.sys [30488 2012-03-16] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 HpqKbFiltr; C:\windows\System32\DRIVERS\HpqKbFiltr.sys [25912 2011-07-18] (Hewlett-Packard Company -> Hewlett-Packard Company)
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 NisDrv; C:\windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [2621128 2015-07-15] (Sonix Technology CO., LTD -> Sonix Tech. Co., Ltd.)
R3 STHDA; C:\windows\System32\DRIVERS\stwrt64.sys [536064 2012-03-05] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 WDC_SAM; C:\windows\System32\DRIVERS\wdcsam64_prewin8.sys [31920 2018-02-26] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
S3 AthBTPort; system32\DRIVERS\btath_flt.sys [X]
S3 BTATH_A2DP; system32\drivers\btath_a2dp.sys [X]
S3 btath_avdt; system32\drivers\btath_avdt.sys [X]
S3 BTATH_BUS; system32\DRIVERS\btath_bus.sys [X]
S3 BTATH_HCRP; system32\DRIVERS\btath_hcrp.sys [X]
S3 BTATH_LWFLT; system32\DRIVERS\btath_lwflt.sys [X]
S3 BTATH_RCP; system32\DRIVERS\btath_rcp.sys [X]
S3 BtFilter; system32\DRIVERS\btfilter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-15 17:27 - 2019-09-15 17:28 - 000016665 _____ C:\Users\Jirka\Desktop\FRST.txt
2019-09-15 17:27 - 2019-09-15 17:27 - 000000000 ____D C:\FRST
2019-09-15 17:26 - 2019-09-15 17:26 - 001614848 _____ (Farbar) C:\Users\Jirka\Desktop\FRST64.exe
2019-09-14 13:52 - 2019-08-29 04:56 - 003966904 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2019-09-14 13:52 - 2019-08-29 04:55 - 004061112 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2019-09-14 13:52 - 2019-08-29 04:55 - 000627424 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2019-09-14 13:52 - 2019-08-29 04:54 - 001319496 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2019-09-14 13:52 - 2019-08-29 04:53 - 005553104 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2019-09-14 13:52 - 2019-08-29 04:53 - 000709856 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2019-09-14 13:52 - 2019-08-29 04:53 - 000264120 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2019-09-14 13:52 - 2019-08-29 04:53 - 000155360 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2019-09-14 13:52 - 2019-08-29 04:53 - 000096992 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2019-09-14 13:52 - 2019-08-29 04:52 - 001114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000836608 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctf.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000555520 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000261632 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:51 - 001670784 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 001472512 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 001211392 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 001162752 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 001078784 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000733184 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000408576 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000361984 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000317440 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000236032 _____ (Microsoft Corporation) C:\windows\system32\srvsvc.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\sscore.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:27 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2019-09-14 13:52 - 2019-08-29 04:27 - 000009728 _____ (Microsoft Corporation) C:\windows\SysWOW64\sscore.dll
2019-09-14 13:52 - 2019-08-29 04:22 - 000148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2019-09-14 13:52 - 2019-08-29 04:22 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2019-09-14 13:52 - 2019-08-29 04:22 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2019-09-14 13:52 - 2019-08-29 04:22 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2019-09-14 13:52 - 2019-08-29 04:22 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2019-09-14 13:52 - 2019-08-29 04:22 - 000014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2019-09-14 13:52 - 2019-08-29 04:22 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2019-09-14 13:52 - 2019-08-29 04:22 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2019-09-14 13:52 - 2019-08-29 04:21 - 000036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2019-09-14 13:52 - 2019-08-29 04:21 - 000006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:21 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:21 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:21 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:19 - 000338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2019-09-14 13:52 - 2019-08-29 04:19 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\videoprt.sys
2019-09-14 13:52 - 2019-08-29 04:18 - 000296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2019-09-14 13:52 - 2019-08-29 04:15 - 000464384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2019-09-14 13:52 - 2019-08-29 04:15 - 000406016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2019-09-14 13:52 - 2019-08-29 04:15 - 000291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2019-09-14 13:52 - 2019-08-29 04:15 - 000169984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2019-09-14 13:52 - 2019-08-29 04:15 - 000161280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2019-09-14 13:52 - 2019-08-29 04:15 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2019-09-14 13:52 - 2019-08-29 04:14 - 000112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2019-09-14 13:52 - 2019-08-29 04:14 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdk8.sys
2019-09-14 13:52 - 2019-08-29 04:14 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelppm.sys
2019-09-14 13:52 - 2019-08-29 04:14 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\processr.sys
2019-09-14 13:52 - 2019-08-29 04:14 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdppm.sys
2019-09-14 13:52 - 2019-08-29 04:14 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\Drivers\npfs.sys
2019-09-14 13:52 - 2019-08-29 04:14 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2019-09-14 13:52 - 2019-08-27 22:50 - 000390536 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2019-09-14 13:52 - 2019-08-27 21:59 - 000341896 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2019-09-14 13:52 - 2019-08-27 07:07 - 025752064 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2019-09-14 13:52 - 2019-08-27 05:41 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2019-09-14 13:52 - 2019-08-27 05:41 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2019-09-14 13:52 - 2019-08-27 05:29 - 002909184 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2019-09-14 13:52 - 2019-08-27 05:27 - 000579072 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2019-09-14 13:52 - 2019-08-27 05:27 - 000417280 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2019-09-14 13:52 - 2019-08-27 05:27 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2019-09-14 13:52 - 2019-08-27 05:27 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2019-09-14 13:52 - 2019-08-27 05:26 - 000088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2019-09-14 13:52 - 2019-08-27 05:21 - 020290560 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2019-09-14 13:52 - 2019-08-27 05:20 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2019-09-14 13:52 - 2019-08-27 05:19 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2019-09-14 13:52 - 2019-08-27 05:17 - 005500928 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2019-09-14 13:52 - 2019-08-27 05:17 - 000615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2019-09-14 13:52 - 2019-08-27 05:16 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2019-09-14 13:52 - 2019-08-27 05:16 - 000116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2019-09-14 13:52 - 2019-08-27 05:15 - 002724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2019-09-14 13:52 - 2019-08-27 05:15 - 000814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2019-09-14 13:52 - 2019-08-27 05:15 - 000790528 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2019-09-14 13:52 - 2019-08-27 05:08 - 000969216 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2019-09-14 13:52 - 2019-08-27 05:05 - 000489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2019-09-14 13:52 - 2019-08-27 05:03 - 000496128 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2019-09-14 13:52 - 2019-08-27 05:03 - 000062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2019-09-14 13:52 - 2019-08-27 05:02 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2019-09-14 13:52 - 2019-08-27 05:02 - 000047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2019-09-14 13:52 - 2019-08-27 05:01 - 000064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2019-09-14 13:52 - 2019-08-27 04:59 - 002301952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2019-09-14 13:52 - 2019-08-27 04:59 - 000077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2019-09-14 13:52 - 2019-08-27 04:58 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2019-09-14 13:52 - 2019-08-27 04:58 - 000087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2019-09-14 13:52 - 2019-08-27 04:56 - 000047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2019-09-14 13:52 - 2019-08-27 04:56 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2019-09-14 13:52 - 2019-08-27 04:55 - 000199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2019-09-14 13:52 - 2019-08-27 04:54 - 000476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2019-09-14 13:52 - 2019-08-27 04:54 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2019-09-14 13:52 - 2019-08-27 04:53 - 000663040 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2019-09-14 13:52 - 2019-08-27 04:53 - 000620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2019-09-14 13:52 - 2019-08-27 04:53 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2019-09-14 13:52 - 2019-08-27 04:52 - 000315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2019-09-14 13:52 - 2019-08-27 04:50 - 000152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2019-09-14 13:52 - 2019-08-27 04:45 - 000416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2019-09-14 13:52 - 2019-08-27 04:42 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2019-09-14 13:52 - 2019-08-27 04:40 - 000728064 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2019-09-14 13:52 - 2019-08-27 04:40 - 000073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2019-09-14 13:52 - 2019-08-27 04:40 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-09-14 13:52 - 2019-08-27 04:39 - 000809472 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2019-09-14 13:52 - 2019-08-27 04:39 - 000091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2019-09-14 13:52 - 2019-08-27 04:37 - 002132480 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2019-09-14 13:52 - 2019-08-27 04:37 - 001359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2019-09-14 13:52 - 2019-08-27 04:37 - 000168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2019-09-14 13:52 - 2019-08-27 04:36 - 015389184 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2019-09-14 13:52 - 2019-08-27 04:36 - 000076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2019-09-14 13:52 - 2019-08-27 04:35 - 000279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2019-09-14 13:52 - 2019-08-27 04:34 - 000350208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\HdAudio.sys
2019-09-14 13:52 - 2019-08-27 04:34 - 000130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2019-09-14 13:52 - 2019-08-27 04:30 - 004112384 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2019-09-14 13:52 - 2019-08-27 04:28 - 000230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2019-09-14 13:52 - 2019-08-27 04:27 - 002058752 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2019-09-14 13:52 - 2019-08-27 04:27 - 000696320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2019-09-14 13:52 - 2019-08-27 04:26 - 004859392 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2019-09-14 13:52 - 2019-08-27 04:26 - 001155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2019-09-14 13:52 - 2019-08-27 04:23 - 013791744 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2019-09-14 13:52 - 2019-08-27 04:15 - 001568256 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2019-09-14 13:52 - 2019-08-27 04:09 - 004387840 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2019-09-14 13:52 - 2019-08-27 04:06 - 001331712 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2019-09-14 13:52 - 2019-08-27 04:04 - 000800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2019-09-14 13:52 - 2019-08-27 04:04 - 000710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2019-09-14 13:52 - 2019-08-23 00:07 - 000628480 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2019-09-14 13:52 - 2019-08-21 03:59 - 000311008 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2019-09-14 13:52 - 2019-08-21 03:56 - 000071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2019-09-14 13:52 - 2019-08-21 03:56 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2019-09-14 13:52 - 2019-08-21 03:56 - 000010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2019-09-14 13:52 - 2019-08-21 01:19 - 000034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2019-09-14 13:52 - 2019-08-20 06:24 - 000385248 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2019-09-14 13:52 - 2019-08-20 06:21 - 000101376 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2019-09-14 13:52 - 2019-08-20 06:21 - 000046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2019-09-14 13:52 - 2019-08-20 06:21 - 000041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2019-09-14 13:52 - 2019-08-20 06:21 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2019-09-14 13:52 - 2019-08-20 05:59 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ws2ifsl.sys
2019-09-14 13:52 - 2019-08-20 05:51 - 003232256 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2019-09-14 13:52 - 2019-08-20 04:47 - 001251840 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2019-09-14 13:52 - 2019-08-15 09:59 - 000878080 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2019-09-14 13:52 - 2019-08-15 09:59 - 000583680 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2019-09-14 13:52 - 2019-08-14 19:54 - 000271360 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsmf.dll
2019-09-14 13:52 - 2019-08-14 19:53 - 000253440 _____ (Microsoft) C:\windows\SysWOW64\DShowRdpFilter.dll
2019-09-14 13:52 - 2019-08-14 07:22 - 000374496 _____ (Microsoft Corporation) C:\windows\system32\clfs.sys
2019-09-14 13:52 - 2019-08-14 07:20 - 000300032 _____ (Microsoft Corporation) C:\windows\system32\tsmf.dll
2019-09-14 13:52 - 2019-08-14 07:20 - 000282112 _____ (Microsoft) C:\windows\system32\DShowRdpFilter.dll
2019-09-14 13:52 - 2019-08-14 06:52 - 000455680 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2019-09-14 13:52 - 2019-08-14 00:20 - 000162016 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2019-09-14 13:52 - 2019-08-14 00:19 - 000988384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2019-09-14 13:52 - 2019-08-14 00:19 - 000267488 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2019-09-14 13:52 - 2019-08-14 00:16 - 001009664 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2019-09-14 13:52 - 2019-08-14 00:16 - 000484864 _____ (Microsoft Corporation) C:\windows\system32\StructuredQuery.dll
2019-09-14 13:52 - 2019-08-14 00:15 - 000732160 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2019-09-14 13:52 - 2019-08-14 00:15 - 000405504 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2019-09-14 13:52 - 2019-08-14 00:15 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2019-09-14 13:52 - 2019-08-14 00:13 - 000833536 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2019-09-14 13:52 - 2019-08-14 00:13 - 000363520 _____ (Microsoft Corporation) C:\windows\SysWOW64\StructuredQuery.dll
2019-09-14 13:52 - 2019-08-14 00:13 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2019-09-14 13:52 - 2019-08-13 04:58 - 001312256 _____ (Microsoft Corporation) C:\windows\SysWOW64\msjet40.dll
2019-09-14 13:52 - 2019-08-13 04:58 - 000475648 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxbde40.dll
2019-09-14 13:52 - 2019-08-13 04:58 - 000353280 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd3x40.dll
2019-09-14 13:52 - 2019-08-13 04:58 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd2x40.dll
2019-09-14 13:52 - 2019-08-13 04:50 - 006135808 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 007082496 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 002863104 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2019-09-14 13:52 - 2019-08-13 02:56 - 001712640 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 001650176 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 000802304 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 000634368 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 000501760 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 000456192 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 000315904 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 000257024 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2019-09-12 06:30 - 2019-09-12 17:22 - 000000000 ____D C:\windows\Minidump
2019-09-11 19:12 - 2019-08-16 03:02 - 000123904 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2019-09-11 19:12 - 2019-08-16 02:56 - 000142336 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2019-09-09 20:26 - 2019-09-09 20:26 - 000000000 ____H C:\windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2019-09-08 19:22 - 2019-09-12 16:19 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RetroArch
2019-09-08 19:22 - 2019-09-08 19:22 - 000000724 _____ C:\Users\Jirka\Desktop\RetroArch.lnk
2019-09-08 19:21 - 2019-09-12 16:14 - 000000000 ____D C:\games
2019-09-08 19:01 - 2019-09-12 16:19 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-09-05 18:48 - 2019-09-05 18:48 - 000000000 ____H C:\windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2019-09-02 20:11 - 2019-09-12 16:19 - 000000000 ____D C:\Users\Jirka\AppData\Local\WinZip
2019-08-25 12:59 - 2019-08-25 12:59 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\AMD
2019-08-25 10:34 - 2019-09-12 16:19 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\Spotify
2019-08-25 10:34 - 2019-09-12 16:14 - 000000000 ____D C:\Users\Jirka\AppData\Local\Spotify
2019-08-25 10:34 - 2019-08-25 10:34 - 000001805 _____ C:\Users\Jirka\Desktop\Spotify.lnk
2019-08-25 10:34 - 2019-08-25 10:34 - 000001791 _____ C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2019-08-24 16:40 - 2019-08-24 16:40 - 000000000 ____D C:\ProgramData\Package Cache
2019-08-24 16:39 - 2019-08-24 16:39 - 000000000 ____D C:\Users\Jirka\AppData\Local\UnrealEngineLauncher
2019-08-24 16:39 - 2019-08-24 16:39 - 000000000 ____D C:\Users\Jirka\AppData\Local\UnrealEngine
2019-08-24 16:39 - 2019-08-24 16:39 - 000000000 ____D C:\Users\Jirka\AppData\Local\EpicGamesLauncher
2019-08-24 16:38 - 2019-08-24 16:41 - 000000000 ____D C:\ProgramData\Epic
2019-08-24 16:38 - 2019-08-24 16:38 - 000001242 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2019-08-24 16:38 - 2019-08-24 16:38 - 000001230 _____ C:\Users\Public\Desktop\Epic Games.lnk
2019-08-24 16:38 - 2019-08-24 16:38 - 000001230 _____ C:\ProgramData\Desktop\Epic Games.lnk
2019-08-24 16:38 - 2019-08-24 16:38 - 000000000 ____D C:\Program Files (x86)\Epic Games

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-15 17:27 - 2012-04-17 07:34 - 000003768 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2019-09-15 17:27 - 2012-04-17 07:34 - 000000830 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2019-09-15 17:26 - 2019-07-19 22:01 - 000000000 ____D C:\Users\Jirka\AppData\LocalLow\Mozilla
2019-09-15 17:25 - 2009-07-14 06:45 - 000028576 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-09-15 17:25 - 2009-07-14 06:45 - 000028576 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-09-14 15:19 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-09-14 15:14 - 2012-04-17 06:18 - 000669116 _____ C:\windows\system32\perfh005.dat
2019-09-14 15:14 - 2012-04-17 06:18 - 000141744 _____ C:\windows\system32\perfc005.dat
2019-09-14 15:14 - 2009-07-14 07:13 - 001584554 _____ C:\windows\system32\PerfStringBackup.INI
2019-09-14 15:14 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2019-09-14 13:59 - 2009-07-14 06:45 - 000267368 _____ C:\windows\system32\FNTCACHE.DAT
2019-09-14 13:56 - 2019-07-19 21:02 - 000000000 ___SD C:\windows\system32\CompatTel
2019-09-14 13:37 - 2012-04-17 07:24 - 001560204 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2019-09-12 17:23 - 2019-07-28 17:39 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\MPC-HC
2019-09-12 17:23 - 2019-07-28 17:20 - 000000000 ____D C:\Program Files (x86)\Steam
2019-09-12 16:20 - 2019-07-19 21:02 - 000000000 ____D C:\windows\system32\appraiser
2019-09-12 16:20 - 2012-08-02 12:06 - 000000000 ____D C:\Program Files\WinZip
2019-09-12 16:20 - 2009-07-14 05:20 - 000000000 ____D C:\windows\PolicyDefinitions
2019-09-12 16:19 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2019-09-12 16:17 - 2009-07-14 05:20 - 000000000 ____D C:\windows\registration
2019-09-12 06:30 - 2019-07-18 06:55 - 000000000 ____D C:\Users\Jirka
2019-09-10 17:46 - 2019-07-28 20:19 - 000000000 ____D C:\filmy
2019-09-08 19:14 - 2012-08-02 12:03 - 000000000 ____D C:\ProgramData\Skype
2019-09-01 14:21 - 2019-07-28 17:51 - 000000000 ____D C:\Users\Jirka\AppData\Local\ElevatedDiagnostics
2019-08-27 17:45 - 2019-07-18 07:14 - 000000000 ____D C:\Users\Jirka\AppData\Local\PDFC
2019-08-27 17:45 - 2012-04-17 07:33 - 000000000 ____D C:\ProgramData\PDFC
2019-08-24 17:08 - 2009-07-14 05:20 - 000000000 ____D C:\windows\rescache
2019-08-20 16:32 - 2019-07-28 20:18 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\uTorrent

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-09-14 11:36
==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-09-2019
Ran by Jirka (15-09-2019 17:29:28)
Running from C:\Users\Jirka\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2019-07-18 04:55:25)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-810802290-4177850383-1836218489-500 - Administrator - Disabled)
Guest (S-1-5-21-810802290-4177850383-1836218489-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-810802290-4177850383-1836218489-1003 - Limited - Enabled)
Jirka (S-1-5-21-810802290-4177850383-1836218489-1002 - Administrator - Enabled) => C:\Users\Jirka

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.2.202.228 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{8642397F-CF08-6B30-A477-A039BBAA511E}) (Version: 3.0.868.0 - Advanced Micro Devices, Inc.)
ArcSoft Webcam Sharing Manager (HKLM-x32\...\{190A7D93-3823-439C-91B9-ADCE3EC2A6A2}) (Version: 2.0.0.38 - ArcSoft)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.2 - Atheros)
CCleaner (HKLM\...\CCleaner) (Version: 5.60 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Energy Star Digital Logo (HKLM-x32\...\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}) (Version: 1.0.1 - Hewlett-Packard)
Epic Games Launcher (HKLM-x32\...\{5B340CD5-07E3-41AA-9117-0A0EC863E454}) (Version: 1.1.220.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Evernote v. 4.5.4 (HKLM-x32\...\{550BFF6E-7376-11E1-99EA-984BE15F174E}) (Version: 4.5.4.6487 - Evernote Corp.)
Hewlett-Packard ACLM.NET v1.1.2.0 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
HP 3D DriveGuard (HKLM\...\{5B4F3B85-83F0-4BBF-9052-7A38B6B09634}) (Version: 5.0.8.0 - Hewlett-Packard Company)
HP Connection Manager (HKLM-x32\...\{22706ADC-74A1-43A0-ABAE-47F84966B909}) (Version: 4.2.50.1 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{A351CC1B-C92C-4F37-8109-9F6D33ACF5EF}) (Version: 1.1.1.0 - Hewlett-Packard)
HP ESU for Microsoft Windows 7 (HKLM-x32\...\{6357258D-2BF9-49E7-A9EF-0C609D52C46D}) (Version: 2.0.6.1 - Hewlett-Packard Company)
HP HD Webcam Driver (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.9.8004.0_WHQL - Sonix)
HP Hotkey Support (HKLM-x32\...\{C97CC14E-4789-4FC5-BC75-79191F7CE009}) (Version: 4.5.9.1 - Hewlett-Packard Company)
HP Power Assistant (HKLM\...\{84642787-58C0-44AE-8B26-E2F544E380A1}) (Version: 2.5.0.16 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15453.4066 - Hewlett-Packard Company)
HP SoftPaq Download Manager (HKLM-x32\...\{223AE3E8-4445-410F-8EDA-13EC137E3BDB}) (Version: 3.4.3.0 - Hewlett-Packard Company)
HP Software Framework (HKLM-x32\...\{962CB079-85E6-405F-8704-1C62365AE46F}) (Version: 4.5.10.1 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{658A8756-7B1E-44FD-A434-D777DD906232}) (Version: 8.5.2.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{6F44AF95-3CDE-4513-AD3F-6D45F17BF324}) (Version: 6.1.12.1 - Hewlett-Packard Company)
HP System Default Settings (HKLM-x32\...\{C4E9E8A4-EEC4-4F9E-B140-520A8B75F430}) (Version: 2.4.1.2 - Hewlett-Packard Company)
HP Wallpaper (HKLM-x32\...\{11C9A461-DD9D-4C71-85A4-6DCE7F99CC44}) (Version: 3.0.0.1 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6392.0 - IDT)
Intel(R) Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3090 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.10.1464 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.225 - Intel Corporation)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.68.0 - JMicron Technology Corp.)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft .NET Framework 4.7.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 68.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 68.0.1 (x64 cs)) (Version: 68.0.1 - Mozilla)
Mozilla Firefox 69.0 (x64 cs) (HKU\S-1-5-21-810802290-4177850383-1836218489-1002\...\Mozilla Firefox 69.0 (x64 cs)) (Version: 69.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.1 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
opensource (HKLM-x32\...\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}) (Version: 1.0.14960.3876 - Your Company Name) Hidden
PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.0.93 - PDF Complete, Inc)
PX Profile Update (HKLM-x32\...\{89FC4558-3689-C109-772E-3A6D5B96F019}) (Version: 1.00.1. - AMD) Hidden
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 7.50.1123.2011 - Realtek)
RetroArch 1.7.8 (HKU\S-1-5-21-810802290-4177850383-1836218489-1002\...\RetroArch) (Version: 1.7.8 - libretro)
SDK (HKLM-x32\...\{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}) (Version: 2.30.042 - Portrait Displays, Inc.) Hidden
Spotify (HKU\S-1-5-21-810802290-4177850383-1836218489-1002\...\Spotify) (Version: 1.1.14.475.g566c8beb - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.25 - Synaptics Incorporated)
Validity Fingerprint Sensor Driver (HKLM\...\{93581599-ECF1-4DCD-BE36-BD969A6C8DB5}) (Version: 4.4.213.0 - Validity Sensors, Inc.)
WinZip 15.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240CF}) (Version: 15.0.10039 - WinZip Computing, S.L. )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [Atheros] -> [CC]{B8952421-0E55-400B-94A6-FA858FC0A39F} => -> No File
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-02-10] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-02-10] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2012-03-30] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-02-10] (WinZip Computing -> WinZip Computing, S.L.)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) ==============

2009-01-20 23:51 - 2009-01-20 23:51 - 000007168 _____ ( ) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atixclib.dll
2011-12-26 22:20 - 2011-12-26 22:20 - 000016384 ____R () [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2012-03-30 08:07 - 2012-03-30 08:07 - 000369152 _____ () [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2012-04-17 07:27 - 2012-02-02 03:25 - 000059904 _____ () [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2012-02-10 23:26 - 2012-02-10 23:26 - 001083392 _____ () [File not signed] C:\Program Files\Hewlett-Packard\HP Power Assistant\System.Data.SQLite.dll
2019-07-29 19:49 - 2019-07-29 19:49 - 000172032 _____ () [File not signed] C:\windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\023b2e749844720d94fa9a591cebbd78\IsdiInterop.ni.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Actions.CCAA.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.DPPE.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.EEU.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.GD.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Hotkeys.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.REG.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Source.Kit.Server.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.WinMessages.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000034816 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000006144 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\APM.Foundation.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ATICCCom.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000021504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.Implementation.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.Runtime.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.shared.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000039936 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Dashboard.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Runtime.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Shared.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Audio.Graphics.Dashboard.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000018944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CPUOverDrive.Fuel.Shared.dll
2012-03-30 08:07 - 2012-03-30 08:07 - 000035840 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossFireX.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CustomFormats.Graphics.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000053248 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000049152 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000441344 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000036864 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000057344 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MultiVPU2.Graphics.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Shared.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000052736 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000036352 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 002510848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000110592 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000081920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Shared.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000159744 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Dashboard.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Runtime.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.shared.dll
2012-03-30 08:07 - 2012-03-30 08:07 - 000020992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.UpdateNotification.Graphics.Dashboard.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000015872 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.UpdateNotification.Graphics.Runtime.dll
2012-03-30 08:07 - 2012-03-30 08:07 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.UpdateNotification.Graphics.Shared.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Fuel.Dashboard.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000019968 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Fuel.Runtime.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000010752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Fuel.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000172032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 001007616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.Shared.Private.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Dashboard.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Runtime.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Shared.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Platform.Dashboard.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000011264 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Platform.Runtime.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Platform.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000060928 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.ProfileManager2.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 001394176 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.Private.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Extension.EEU.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.Private.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000413696 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Systemtray.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000303104 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Client.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000019968 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.CoreAudioAPI.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000029184 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Private.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.XManifest.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Fuel.Foundation.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000047104 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.Private.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000025088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Private.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.Foundation.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000097280 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.Implementation.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\NEWAEM.Foundation.dll
2012-01-06 03:18 - 2012-01-06 03:18 - 000147456 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ADL.Foundation.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000065536 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\APM.Server.dll
2012-03-30 08:07 - 2012-03-30 08:07 - 000222208 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerXpress.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000048128 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerXpress.Graphics.Runtime.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000026112 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerXpress.Graphics.Shared.dll
2012-03-30 08:07 - 2012-03-30 08:07 - 002723840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Combined.Graphics.Aspects1.Dashboard.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000036864 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.Private.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000380928 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000061440 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.dll
2009-04-22 21:13 - 2009-04-22 21:13 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0702.dll
2009-06-17 14:27 - 2009-06-17 14:27 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll
2007-10-29 23:56 - 2007-10-29 23:56 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0710.dll
2009-06-17 19:24 - 2009-06-17 19:24 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll
2008-04-04 01:29 - 2008-04-04 01:29 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll
2009-01-21 00:36 - 2009-01-21 00:36 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0901.dll
2010-10-07 22:07 - 2010-10-07 22:07 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I1010.dll
2010-11-05 23:18 - 2010-11-05 23:18 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I1011.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000331776 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Localization.Foundation.Implementation.cs_Localization.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000315392 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Localization.Foundation.Implementation.default_Localization.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000477184 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Localization.Foundation.Private.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000168960 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Implementation.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000008704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Private.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000028160 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.Dashboard.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000311296 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000192512 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll
2010-03-04 10:27 - 2010-03-04 10:27 - 000016384 _____ (ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Foundation.dll
2009-04-22 21:13 - 2009-04-22 21:13 - 000045056 _____ (ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0601.dll
2012-03-14 23:44 - 2012-03-14 23:44 - 000006656 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\cs\HandlersStrings.resources.dll
2019-07-29 19:49 - 2019-07-29 19:49 - 000014336 _____ (Intel Corp.) [File not signed] C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\6dfb43a93bf06432c5ba0b7a8973197c\IAStorCommon.ni.dll
2012-04-17 07:27 - 2012-02-02 03:26 - 000007168 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\cs-CZ\IAStorDataMgr.resources.dll
2012-04-17 07:27 - 2012-02-02 03:17 - 000278016 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\ISDI.dll
2012-08-02 11:38 - 2012-03-27 11:12 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2019-07-29 19:48 - 2019-07-29 19:48 - 000228864 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\3addc459b592a3e877c7cef64f7692b4\IAStorDataMgr.ni.dll
2019-07-29 19:48 - 2019-07-29 19:48 - 000488960 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\c399f4c04590f1e91caf42a4cdedd686\IAStorUtil.ni.dll
2019-07-20 09:11 - 2019-07-20 09:11 - 000225280 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static
HKU\S-1-5-21-810802290-4177850383-1836218489-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.17.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupreg: AthBtTray => "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
MSCONFIG\startupreg: AtherosBtStack => "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
MSCONFIG\startupreg: DTRun => c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
MSCONFIG\startupreg: EpicGamesLauncher => "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
MSCONFIG\startupreg: File Sanitizer => C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
MSCONFIG\startupreg: HPConnectionManager => c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
MSCONFIG\startupreg: HPPowerAssistant => C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden
MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: MfeEpePcMonitor => "C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
MSCONFIG\startupreg: PDF Complete => C:\Program Files (x86)\PDF Complete\pdfsty.exe
MSCONFIG\startupreg: Spotify => C:\Users\Jirka\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray64.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C936FCB3-BD35-48F3-BDAC-4CA0598E83F8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{DD05F8EA-800C-48D0-9EC2-E01CFB07852C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{51D700F2-2235-4B90-881C-D56138243702}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EACEE3A6-7AC4-4B37-AAEE-1CF8C6953991}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{4F28A5BC-5BC8-41B0-BC1E-F7360449BF23}C:\users\jirka\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\jirka\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{E018735D-EF55-48E5-B679-D4DB4196C38A}C:\users\jirka\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\jirka\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{856AA5D4-3510-4FFC-9139-23784C8EC547}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{866977DF-85C0-4110-AA37-72F403AF3DB9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{9E1057A2-D65C-4112-8014-6A55274B8F6E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe (Square Enix) [File not signed]
FirewallRules: [{D2228E3D-72E1-4FBA-95A5-A02B2A801A16}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe (Square Enix) [File not signed]
FirewallRules: [TCP Query User{C5563355-AFA4-4F39-B585-A29BBAFFD4AB}C:\users\jirka\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jirka\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{918276D2-8364-4616-A9BA-CCF5BE017BA6}C:\users\jirka\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jirka\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)

==================== Restore Points =========================

11-09-2019 19:22:45 Windows Update
12-09-2019 06:34:25 Windows Update
13-09-2019 18:08:12 Windows Update
13-09-2019 18:41:24 Windows Update
14-09-2019 13:31:11 Windows Update
14-09-2019 13:53:07 Windows Update
14-09-2019 15:17:01 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/14/2019 03:19:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/14/2019 03:09:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/14/2019 01:59:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/14/2019 01:41:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/13/2019 06:46:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/13/2019 06:20:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/12/2019 05:17:58 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/12/2019 06:31:13 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


System errors:
=============
Error: (09/15/2019 03:28:37 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (09/14/2019 03:08:03 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (09/14/2019 01:40:12 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {995C996E-D918-4A8C-A302-45719A6F4EA7} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/14/2019 12:47:49 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (09/14/2019 11:04:43 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (09/13/2019 05:25:51 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (09/12/2019 05:20:40 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (09/12/2019 05:15:51 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {995C996E-D918-4A8C-A302-45719A6F4EA7} se v daném časovém limitu neregistroval u služby DCOM.


==================== Memory info ===========================

BIOS: Hewlett-Packard 68IRR Ver. F.01 04/19/2012
Motherboard: Hewlett-Packard 17F6
Processor: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz
Percentage of memory in use: 51%
Total physical RAM: 8073.72 MB
Available physical RAM: 3940.32 MB
Total Virtual: 16145.59 MB
Available Virtual: 11520.61 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:675.95 GB) (Free:594.45 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.97 GB) FAT32
Drive g: (HP_RECOVERY) (Fixed) (Total:20.39 GB) (Free:3.11 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{7a250af8-dc83-11e1-8605-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.25 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 25955A44)
Partition 1: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=675.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=20.4 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=2 GB) - (Type=0C)

==================== End of Addition.txt ============================

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivka

#2 Příspěvek od Conder »

Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
  • Nechaj zaskrtnute vsetky nalezy
  • Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Stick
Návštěvník
Návštěvník
Příspěvky: 78
Registrován: 05 pro 2006 19:17

Re: Preventivka

#3 Příspěvek od Stick »

# -------------------------------
# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build: 09-04-2019
# Database: 2019-09-13.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 09-15-2019
# Duration: 00:00:11
# OS: Windows 7 Home Premium
# Cleaned: 10
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.HPCleanFLC File C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk
Deleted Preinstalled.HPHealthCheck Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP HEALTH CHECK
Deleted Preinstalled.HPHealthCheck Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{6F340107-F9AA-47C6-B54C-C3A19F11553F}
Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP CUSTOMER FEEDBACK
Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\ProgramData\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\Jirka\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{6F44AF95-3CDE-4513-AD3F-6D45F17BF324}
Deleted Preinstalled.HPTouchSmartMyDisplay Folder C:\Program Files (x86)\Common Files\PORTRAIT DISPLAYS\DRIVERS
Deleted Preinstalled.HPTouchSmartMyDisplay Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{0DEA342C-15CB-4F52-97B6-06A9C4B9C06F}


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [12117 octets] - [15/09/2019 20:43:31]
AdwCleaner[S00].txt - [2566 octets] - [15/09/2019 20:43:50]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivka

#4 Příspěvek od Conder »

:arrow: Poprosim o obidva nove logy z FRST.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Stick
Návštěvník
Návštěvník
Příspěvky: 78
Registrován: 05 pro 2006 19:17

Re: Preventivka

#5 Příspěvek od Stick »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-09-2019
Ran by Jirka (administrator) on JIRKA-HP (Hewlett-Packard HP ProBook 4540s) (16-09-2019 21:11:05)
Running from C:\Users\Jirka\Desktop
Loaded Profiles: Jirka (Available Profiles: Jirka)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ArcSoft, Inc. -> ArcSoft, Inc.) C:\Windows\SysWOW64\ArcVCapRender\uArcCapture.exe
(ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
(Intel Corporation -> ) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Validity Sensors, Inc -> Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [319360 2012-03-14] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-03-27] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [636032 2012-03-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AMD AVT] => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{438363A8-F486-4C37-834C-4955773CB3D3}] -> msiexec /fu {438363A8-F486-4C37-834C-4955773CB3D3} /qn
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] ->

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {136C2944-F520-4B41-B28B-359E510FA5D8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {380AF6DB-E61B-4849-B00A-1D08C4F85D42} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [410784 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {5CAB6907-CCF1-4AB6-A8A8-8BC1510DFE57} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6058F350-DB8A-4A1A-A96F-3D7CC4C66A39} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {64CA5477-D51A-4FC7-9DF4-B713A2894A66} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater\HPSFUpdater.exe
Task: {93A2623E-F3CB-4CB5-8319-16E9520F6179} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B2460960-66F2-4273-BBB4-C3D308CDF663} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe
Task: {C7BE6B1D-10F5-4F08-B1C5-2C0CE31FAD35} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [253600 2012-04-17] (Adobe Systems Incorporated -> Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.17.1
Tcpip\..\Interfaces\{54BB81C7-76BC-42C3-9E16-2E976C8CC0D3}: [DhcpNameServer] 172.168.0.2
Tcpip\..\Interfaces\{880D933B-8DBE-4A5B-A18C-0D8BCF1B0FC2}: [DhcpNameServer] 192.168.17.1

Internet Explorer:
==================
HKU\S-1-5-21-810802290-4177850383-1836218489-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=CMNTDF
HKU\S-1-5-21-810802290-4177850383-1836218489-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=CMNTDF
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF
SearchScopes: HKU\S-1-5-21-810802290-4177850383-1836218489-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-810802290-4177850383-1836218489-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-810802290-4177850383-1836218489-1002 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=CMNTDF

FireFox:
========
FF DefaultProfile: 6ufl7shb.default
FF ProfilePath: C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\6ufl7shb.default [2019-07-19]
FF ProfilePath: C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\p2zd4hor.default-release [2019-09-16]
FF Homepage: Mozilla\Firefox\Profiles\p2zd4hor.default-release -> hxxp://www.seznam.cz/
FF Extension: (uBlock Origin) - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\p2zd4hor.default-release\Extensions\uBlock0@raymondhill.net.xpi [2019-09-09]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\windows\system32\atiesrxx.exe [239616 2014-12-10] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 HPAuto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [682040 2011-02-17] (Hewlett-Packard Company -> Hewlett-Packard)
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [365440 2012-03-14] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-03-28] (Intel Corporation -> )
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165144 2012-03-28] (Intel Corporation -> Intel Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
S3 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1134584 2012-03-07] (PDF Complete -> PDF Complete Inc)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [314880 2012-03-05] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R2 uArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [498352 2012-02-03] (ArcSoft, Inc. -> ArcSoft, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
S2 HP Support Assistant Service; "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe" [X]
S4 PdiService; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Accelerometer; C:\windows\System32\DRIVERS\Accelerometer.sys [43800 2012-03-16] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 amdkmdag; C:\windows\System32\DRIVERS\atikmdag.sys [16752640 2014-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\windows\System32\DRIVERS\atikmpag.sys [584192 2014-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\windows\System32\DRIVERS\amdkmpfd.sys [32896 2012-03-20] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 ARCVCAM; C:\windows\System32\DRIVERS\ArcSoftVCapture.sys [42816 2012-02-03] (ArcSoft, Inc. -> ArcSoft, Inc.)
R3 athr; C:\windows\System32\DRIVERS\athrx.sys [3678720 2012-06-20] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
R0 hpdskflt; C:\windows\System32\DRIVERS\hpdskflt.sys [30488 2012-03-16] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 HpqKbFiltr; C:\windows\System32\DRIVERS\HpqKbFiltr.sys [25912 2011-07-18] (Hewlett-Packard Company -> Hewlett-Packard Company)
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 NisDrv; C:\windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation -> Microsoft Corporation)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [2621128 2015-07-15] (Sonix Technology CO., LTD -> Sonix Tech. Co., Ltd.)
R3 STHDA; C:\windows\System32\DRIVERS\stwrt64.sys [536064 2012-03-05] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 WDC_SAM; C:\windows\System32\DRIVERS\wdcsam64_prewin8.sys [31920 2018-02-26] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
S3 AthBTPort; system32\DRIVERS\btath_flt.sys [X]
S3 BTATH_A2DP; system32\drivers\btath_a2dp.sys [X]
S3 btath_avdt; system32\drivers\btath_avdt.sys [X]
S3 BTATH_BUS; system32\DRIVERS\btath_bus.sys [X]
S3 BTATH_HCRP; system32\DRIVERS\btath_hcrp.sys [X]
S3 BTATH_LWFLT; system32\DRIVERS\btath_lwflt.sys [X]
S3 BTATH_RCP; system32\DRIVERS\btath_rcp.sys [X]
S3 BtFilter; system32\DRIVERS\btfilter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-15 20:43 - 2019-09-15 20:45 - 000000000 ____D C:\AdwCleaner
2019-09-15 20:42 - 2019-09-15 20:43 - 007622344 _____ (Malwarebytes) C:\Users\Jirka\Desktop\adwcleaner_7.4.1.exe
2019-09-15 17:29 - 2019-09-15 17:30 - 000048899 _____ C:\Users\Jirka\Desktop\Addition.txt
2019-09-15 17:27 - 2019-09-16 21:12 - 000016529 _____ C:\Users\Jirka\Desktop\FRST.txt
2019-09-15 17:27 - 2019-09-16 21:11 - 000000000 ____D C:\FRST
2019-09-15 17:26 - 2019-09-15 17:26 - 001614848 _____ (Farbar) C:\Users\Jirka\Desktop\FRST64.exe
2019-09-14 13:52 - 2019-08-29 04:56 - 003966904 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2019-09-14 13:52 - 2019-08-29 04:55 - 004061112 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2019-09-14 13:52 - 2019-08-29 04:55 - 000627424 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2019-09-14 13:52 - 2019-08-29 04:54 - 001319496 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2019-09-14 13:52 - 2019-08-29 04:53 - 005553104 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2019-09-14 13:52 - 2019-08-29 04:53 - 000709856 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2019-09-14 13:52 - 2019-08-29 04:53 - 000264120 _____ (Microsoft Corporation) C:\windows\system32\hal.dll
2019-09-14 13:52 - 2019-08-29 04:53 - 000155360 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2019-09-14 13:52 - 2019-08-29 04:53 - 000096992 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2019-09-14 13:52 - 2019-08-29 04:52 - 001114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000836608 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctf.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000690688 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000666112 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000644096 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000555520 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000342528 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000261632 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000254464 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000223232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000141312 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpchttp.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000082944 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000070144 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000007168 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:52 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:51 - 001670784 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 001472512 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 001211392 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 001162752 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 001078784 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000880640 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000733184 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000463872 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000408576 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000361984 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000345600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000317440 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000312320 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000236032 _____ (Microsoft Corporation) C:\windows\system32\srvsvc.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000215552 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000210432 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000190464 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000135680 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000123904 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000094208 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000059904 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000044032 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000043520 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000034816 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000028672 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000013312 _____ (Microsoft Corporation) C:\windows\system32\sscore.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000007168 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:50 - 000003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:27 - 000050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2019-09-14 13:52 - 2019-08-29 04:27 - 000009728 _____ (Microsoft Corporation) C:\windows\SysWOW64\sscore.dll
2019-09-14 13:52 - 2019-08-29 04:22 - 000148480 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2019-09-14 13:52 - 2019-08-29 04:22 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2019-09-14 13:52 - 2019-08-29 04:22 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2019-09-14 13:52 - 2019-08-29 04:22 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2019-09-14 13:52 - 2019-08-29 04:22 - 000017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2019-09-14 13:52 - 2019-08-29 04:22 - 000014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2019-09-14 13:52 - 2019-08-29 04:22 - 000007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2019-09-14 13:52 - 2019-08-29 04:22 - 000002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2019-09-14 13:52 - 2019-08-29 04:21 - 000036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2019-09-14 13:52 - 2019-08-29 04:21 - 000006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:21 - 000004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:21 - 000003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:21 - 000003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-09-14 13:52 - 2019-08-29 04:19 - 000338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2019-09-14 13:52 - 2019-08-29 04:19 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\videoprt.sys
2019-09-14 13:52 - 2019-08-29 04:18 - 000296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2019-09-14 13:52 - 2019-08-29 04:15 - 000464384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2019-09-14 13:52 - 2019-08-29 04:15 - 000406016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2019-09-14 13:52 - 2019-08-29 04:15 - 000291328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2019-09-14 13:52 - 2019-08-29 04:15 - 000169984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2019-09-14 13:52 - 2019-08-29 04:15 - 000161280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2019-09-14 13:52 - 2019-08-29 04:15 - 000129536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2019-09-14 13:52 - 2019-08-29 04:14 - 000112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2019-09-14 13:52 - 2019-08-29 04:14 - 000064512 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdk8.sys
2019-09-14 13:52 - 2019-08-29 04:14 - 000062464 _____ (Microsoft Corporation) C:\windows\system32\Drivers\intelppm.sys
2019-09-14 13:52 - 2019-08-29 04:14 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\processr.sys
2019-09-14 13:52 - 2019-08-29 04:14 - 000060928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\amdppm.sys
2019-09-14 13:52 - 2019-08-29 04:14 - 000044544 _____ (Microsoft Corporation) C:\windows\system32\Drivers\npfs.sys
2019-09-14 13:52 - 2019-08-29 04:14 - 000030720 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2019-09-14 13:52 - 2019-08-27 22:50 - 000390536 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2019-09-14 13:52 - 2019-08-27 21:59 - 000341896 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2019-09-14 13:52 - 2019-08-27 07:07 - 025752064 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2019-09-14 13:52 - 2019-08-27 05:41 - 002724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2019-09-14 13:52 - 2019-08-27 05:41 - 000004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2019-09-14 13:52 - 2019-08-27 05:29 - 002909184 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2019-09-14 13:52 - 2019-08-27 05:27 - 000579072 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2019-09-14 13:52 - 2019-08-27 05:27 - 000417280 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2019-09-14 13:52 - 2019-08-27 05:27 - 000066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2019-09-14 13:52 - 2019-08-27 05:27 - 000048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2019-09-14 13:52 - 2019-08-27 05:26 - 000088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2019-09-14 13:52 - 2019-08-27 05:21 - 020290560 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2019-09-14 13:52 - 2019-08-27 05:20 - 000054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2019-09-14 13:52 - 2019-08-27 05:19 - 000034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2019-09-14 13:52 - 2019-08-27 05:17 - 005500928 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2019-09-14 13:52 - 2019-08-27 05:17 - 000615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2019-09-14 13:52 - 2019-08-27 05:16 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2019-09-14 13:52 - 2019-08-27 05:16 - 000116224 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2019-09-14 13:52 - 2019-08-27 05:15 - 002724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2019-09-14 13:52 - 2019-08-27 05:15 - 000814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2019-09-14 13:52 - 2019-08-27 05:15 - 000790528 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2019-09-14 13:52 - 2019-08-27 05:08 - 000969216 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2019-09-14 13:52 - 2019-08-27 05:05 - 000489984 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2019-09-14 13:52 - 2019-08-27 05:03 - 000496128 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2019-09-14 13:52 - 2019-08-27 05:03 - 000062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2019-09-14 13:52 - 2019-08-27 05:02 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2019-09-14 13:52 - 2019-08-27 05:02 - 000047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2019-09-14 13:52 - 2019-08-27 05:01 - 000064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2019-09-14 13:52 - 2019-08-27 04:59 - 002301952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2019-09-14 13:52 - 2019-08-27 04:59 - 000077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2019-09-14 13:52 - 2019-08-27 04:58 - 000107520 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2019-09-14 13:52 - 2019-08-27 04:58 - 000087552 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2019-09-14 13:52 - 2019-08-27 04:56 - 000047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2019-09-14 13:52 - 2019-08-27 04:56 - 000030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2019-09-14 13:52 - 2019-08-27 04:55 - 000199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2019-09-14 13:52 - 2019-08-27 04:54 - 000476160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2019-09-14 13:52 - 2019-08-27 04:54 - 000092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2019-09-14 13:52 - 2019-08-27 04:53 - 000663040 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2019-09-14 13:52 - 2019-08-27 04:53 - 000620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2019-09-14 13:52 - 2019-08-27 04:53 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2019-09-14 13:52 - 2019-08-27 04:52 - 000315392 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2019-09-14 13:52 - 2019-08-27 04:50 - 000152064 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2019-09-14 13:52 - 2019-08-27 04:45 - 000416256 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2019-09-14 13:52 - 2019-08-27 04:42 - 000262144 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2019-09-14 13:52 - 2019-08-27 04:40 - 000728064 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2019-09-14 13:52 - 2019-08-27 04:40 - 000073216 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2019-09-14 13:52 - 2019-08-27 04:40 - 000060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-09-14 13:52 - 2019-08-27 04:39 - 000809472 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2019-09-14 13:52 - 2019-08-27 04:39 - 000091136 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2019-09-14 13:52 - 2019-08-27 04:37 - 002132480 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2019-09-14 13:52 - 2019-08-27 04:37 - 001359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2019-09-14 13:52 - 2019-08-27 04:37 - 000168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2019-09-14 13:52 - 2019-08-27 04:36 - 015389184 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2019-09-14 13:52 - 2019-08-27 04:36 - 000076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2019-09-14 13:52 - 2019-08-27 04:35 - 000279040 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2019-09-14 13:52 - 2019-08-27 04:34 - 000350208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\HdAudio.sys
2019-09-14 13:52 - 2019-08-27 04:34 - 000130048 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2019-09-14 13:52 - 2019-08-27 04:30 - 004112384 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2019-09-14 13:52 - 2019-08-27 04:28 - 000230400 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2019-09-14 13:52 - 2019-08-27 04:27 - 002058752 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2019-09-14 13:52 - 2019-08-27 04:27 - 000696320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2019-09-14 13:52 - 2019-08-27 04:26 - 004859392 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2019-09-14 13:52 - 2019-08-27 04:26 - 001155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2019-09-14 13:52 - 2019-08-27 04:23 - 013791744 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2019-09-14 13:52 - 2019-08-27 04:15 - 001568256 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2019-09-14 13:52 - 2019-08-27 04:09 - 004387840 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2019-09-14 13:52 - 2019-08-27 04:06 - 001331712 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2019-09-14 13:52 - 2019-08-27 04:04 - 000800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2019-09-14 13:52 - 2019-08-27 04:04 - 000710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2019-09-14 13:52 - 2019-08-23 00:07 - 000628480 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2019-09-14 13:52 - 2019-08-21 03:59 - 000311008 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2019-09-14 13:52 - 2019-08-21 03:56 - 000071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2019-09-14 13:52 - 2019-08-21 03:56 - 000025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2019-09-14 13:52 - 2019-08-21 03:56 - 000010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2019-09-14 13:52 - 2019-08-21 01:19 - 000034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2019-09-14 13:52 - 2019-08-20 06:24 - 000385248 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2019-09-14 13:52 - 2019-08-20 06:21 - 000101376 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2019-09-14 13:52 - 2019-08-20 06:21 - 000046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2019-09-14 13:52 - 2019-08-20 06:21 - 000041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2019-09-14 13:52 - 2019-08-20 06:21 - 000014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2019-09-14 13:52 - 2019-08-20 05:59 - 000022016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ws2ifsl.sys
2019-09-14 13:52 - 2019-08-20 05:51 - 003232256 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2019-09-14 13:52 - 2019-08-20 04:47 - 001251840 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2019-09-14 13:52 - 2019-08-15 09:59 - 000878080 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2019-09-14 13:52 - 2019-08-15 09:59 - 000583680 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2019-09-14 13:52 - 2019-08-14 19:54 - 000271360 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsmf.dll
2019-09-14 13:52 - 2019-08-14 19:53 - 000253440 _____ (Microsoft) C:\windows\SysWOW64\DShowRdpFilter.dll
2019-09-14 13:52 - 2019-08-14 07:22 - 000374496 _____ (Microsoft Corporation) C:\windows\system32\clfs.sys
2019-09-14 13:52 - 2019-08-14 07:20 - 000300032 _____ (Microsoft Corporation) C:\windows\system32\tsmf.dll
2019-09-14 13:52 - 2019-08-14 07:20 - 000282112 _____ (Microsoft) C:\windows\system32\DShowRdpFilter.dll
2019-09-14 13:52 - 2019-08-14 06:52 - 000455680 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2019-09-14 13:52 - 2019-08-14 00:20 - 000162016 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2019-09-14 13:52 - 2019-08-14 00:19 - 000988384 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2019-09-14 13:52 - 2019-08-14 00:19 - 000267488 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2019-09-14 13:52 - 2019-08-14 00:16 - 001009664 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2019-09-14 13:52 - 2019-08-14 00:16 - 000484864 _____ (Microsoft Corporation) C:\windows\system32\StructuredQuery.dll
2019-09-14 13:52 - 2019-08-14 00:15 - 000732160 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2019-09-14 13:52 - 2019-08-14 00:15 - 000405504 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2019-09-14 13:52 - 2019-08-14 00:15 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2019-09-14 13:52 - 2019-08-14 00:13 - 000833536 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2019-09-14 13:52 - 2019-08-14 00:13 - 000363520 _____ (Microsoft Corporation) C:\windows\SysWOW64\StructuredQuery.dll
2019-09-14 13:52 - 2019-08-14 00:13 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2019-09-14 13:52 - 2019-08-13 04:58 - 001312256 _____ (Microsoft Corporation) C:\windows\SysWOW64\msjet40.dll
2019-09-14 13:52 - 2019-08-13 04:58 - 000475648 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxbde40.dll
2019-09-14 13:52 - 2019-08-13 04:58 - 000353280 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd3x40.dll
2019-09-14 13:52 - 2019-08-13 04:58 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd2x40.dll
2019-09-14 13:52 - 2019-08-13 04:50 - 006135808 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 007082496 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 002863104 _____ (Microsoft Corporation) C:\windows\system32\aitstatic.exe
2019-09-14 13:52 - 2019-08-13 02:56 - 001712640 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 001650176 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 000802304 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 000634368 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 000501760 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 000456192 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 000315904 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2019-09-14 13:52 - 2019-08-13 02:56 - 000257024 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2019-09-12 06:30 - 2019-09-12 17:22 - 000000000 ____D C:\windows\Minidump
2019-09-11 19:12 - 2019-08-16 03:02 - 000123904 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2019-09-11 19:12 - 2019-08-16 02:56 - 000142336 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2019-09-09 20:26 - 2019-09-09 20:26 - 000000000 ____H C:\windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2019-09-08 19:22 - 2019-09-12 16:19 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RetroArch
2019-09-08 19:22 - 2019-09-08 19:22 - 000000724 _____ C:\Users\Jirka\Desktop\RetroArch.lnk
2019-09-08 19:21 - 2019-09-12 16:14 - 000000000 ____D C:\games
2019-09-08 19:01 - 2019-09-12 16:19 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-09-05 18:48 - 2019-09-05 18:48 - 000000000 ____H C:\windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2019-09-02 20:11 - 2019-09-12 16:19 - 000000000 ____D C:\Users\Jirka\AppData\Local\WinZip
2019-08-25 12:59 - 2019-08-25 12:59 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\AMD
2019-08-25 10:34 - 2019-09-12 16:19 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\Spotify
2019-08-25 10:34 - 2019-09-12 16:14 - 000000000 ____D C:\Users\Jirka\AppData\Local\Spotify
2019-08-25 10:34 - 2019-08-25 10:34 - 000001805 _____ C:\Users\Jirka\Desktop\Spotify.lnk
2019-08-25 10:34 - 2019-08-25 10:34 - 000001791 _____ C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2019-08-24 16:40 - 2019-08-24 16:40 - 000000000 ____D C:\ProgramData\Package Cache
2019-08-24 16:39 - 2019-08-24 16:39 - 000000000 ____D C:\Users\Jirka\AppData\Local\UnrealEngineLauncher
2019-08-24 16:39 - 2019-08-24 16:39 - 000000000 ____D C:\Users\Jirka\AppData\Local\UnrealEngine
2019-08-24 16:39 - 2019-08-24 16:39 - 000000000 ____D C:\Users\Jirka\AppData\Local\EpicGamesLauncher
2019-08-24 16:38 - 2019-08-24 16:41 - 000000000 ____D C:\ProgramData\Epic
2019-08-24 16:38 - 2019-08-24 16:38 - 000001242 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2019-08-24 16:38 - 2019-08-24 16:38 - 000001230 _____ C:\Users\Public\Desktop\Epic Games.lnk
2019-08-24 16:38 - 2019-08-24 16:38 - 000001230 _____ C:\ProgramData\Desktop\Epic Games.lnk
2019-08-24 16:38 - 2019-08-24 16:38 - 000000000 ____D C:\Program Files (x86)\Epic Games

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-16 21:10 - 2019-07-19 22:01 - 000000000 ____D C:\Users\Jirka\AppData\LocalLow\Mozilla
2019-09-16 21:03 - 2012-04-17 07:24 - 001560204 _____ C:\windows\SysWOW64\PerfStringBackup.INI
2019-09-16 21:03 - 2012-04-17 06:18 - 000669116 _____ C:\windows\system32\perfh005.dat
2019-09-16 21:03 - 2012-04-17 06:18 - 000141744 _____ C:\windows\system32\perfc005.dat
2019-09-16 21:03 - 2009-07-14 07:13 - 001560204 _____ C:\windows\system32\PerfStringBackup.INI
2019-09-16 21:03 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2019-09-16 20:55 - 2009-07-14 06:45 - 000028576 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-09-16 20:55 - 2009-07-14 06:45 - 000028576 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-09-15 21:27 - 2012-04-17 07:34 - 000003768 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2019-09-15 21:27 - 2012-04-17 07:34 - 000000830 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2019-09-15 20:46 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-09-15 20:45 - 2019-07-19 17:03 - 000000000 ____D C:\Users\Jirka\AppData\Local\Hewlett-Packard
2019-09-15 20:45 - 2012-04-17 07:15 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2019-09-15 20:42 - 2019-07-28 20:19 - 000000000 ____D C:\filmy
2019-09-15 18:31 - 2019-07-28 17:39 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\MPC-HC
2019-09-15 18:15 - 2019-07-28 20:18 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\uTorrent
2019-09-14 13:59 - 2009-07-14 06:45 - 000267368 _____ C:\windows\system32\FNTCACHE.DAT
2019-09-14 13:56 - 2019-07-19 21:02 - 000000000 ___SD C:\windows\system32\CompatTel
2019-09-12 17:23 - 2019-07-28 17:20 - 000000000 ____D C:\Program Files (x86)\Steam
2019-09-12 16:20 - 2019-07-19 21:02 - 000000000 ____D C:\windows\system32\appraiser
2019-09-12 16:20 - 2012-08-02 12:06 - 000000000 ____D C:\Program Files\WinZip
2019-09-12 16:20 - 2009-07-14 05:20 - 000000000 ____D C:\windows\PolicyDefinitions
2019-09-12 16:19 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2019-09-12 16:17 - 2009-07-14 05:20 - 000000000 ____D C:\windows\registration
2019-09-12 06:30 - 2019-07-18 06:55 - 000000000 ____D C:\Users\Jirka
2019-09-08 19:14 - 2012-08-02 12:03 - 000000000 ____D C:\ProgramData\Skype
2019-09-01 14:21 - 2019-07-28 17:51 - 000000000 ____D C:\Users\Jirka\AppData\Local\ElevatedDiagnostics
2019-08-27 17:45 - 2019-07-18 07:14 - 000000000 ____D C:\Users\Jirka\AppData\Local\PDFC
2019-08-27 17:45 - 2012-04-17 07:33 - 000000000 ____D C:\ProgramData\PDFC
2019-08-24 17:08 - 2009-07-14 05:20 - 000000000 ____D C:\windows\rescache

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-09-14 11:36
==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-09-2019
Ran by Jirka (16-09-2019 21:12:47)
Running from C:\Users\Jirka\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2019-07-18 04:55:25)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-810802290-4177850383-1836218489-500 - Administrator - Disabled)
Guest (S-1-5-21-810802290-4177850383-1836218489-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-810802290-4177850383-1836218489-1003 - Limited - Enabled)
Jirka (S-1-5-21-810802290-4177850383-1836218489-1002 - Administrator - Enabled) => C:\Users\Jirka

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.2.202.228 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{8642397F-CF08-6B30-A477-A039BBAA511E}) (Version: 3.0.868.0 - Advanced Micro Devices, Inc.)
ArcSoft Webcam Sharing Manager (HKLM-x32\...\{190A7D93-3823-439C-91B9-ADCE3EC2A6A2}) (Version: 2.0.0.38 - ArcSoft)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.2 - Atheros)
CCleaner (HKLM\...\CCleaner) (Version: 5.60 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Energy Star Digital Logo (HKLM-x32\...\{BD1A34C9-4764-4F79-AE1F-112F8C89D3D4}) (Version: 1.0.1 - Hewlett-Packard)
Epic Games Launcher (HKLM-x32\...\{5B340CD5-07E3-41AA-9117-0A0EC863E454}) (Version: 1.1.220.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Evernote v. 4.5.4 (HKLM-x32\...\{550BFF6E-7376-11E1-99EA-984BE15F174E}) (Version: 4.5.4.6487 - Evernote Corp.)
HP 3D DriveGuard (HKLM\...\{5B4F3B85-83F0-4BBF-9052-7A38B6B09634}) (Version: 5.0.8.0 - Hewlett-Packard Company)
HP Connection Manager (HKLM-x32\...\{22706ADC-74A1-43A0-ABAE-47F84966B909}) (Version: 4.2.50.1 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{A351CC1B-C92C-4F37-8109-9F6D33ACF5EF}) (Version: 1.1.1.0 - Hewlett-Packard)
HP ESU for Microsoft Windows 7 (HKLM-x32\...\{6357258D-2BF9-49E7-A9EF-0C609D52C46D}) (Version: 2.0.6.1 - Hewlett-Packard Company)
HP HD Webcam Driver (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.9.8004.0_WHQL - Sonix)
HP Hotkey Support (HKLM-x32\...\{C97CC14E-4789-4FC5-BC75-79191F7CE009}) (Version: 4.5.9.1 - Hewlett-Packard Company)
HP Power Assistant (HKLM\...\{84642787-58C0-44AE-8B26-E2F544E380A1}) (Version: 2.5.0.16 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15453.4066 - Hewlett-Packard Company)
HP SoftPaq Download Manager (HKLM-x32\...\{223AE3E8-4445-410F-8EDA-13EC137E3BDB}) (Version: 3.4.3.0 - Hewlett-Packard Company)
HP Software Framework (HKLM-x32\...\{962CB079-85E6-405F-8704-1C62365AE46F}) (Version: 4.5.10.1 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{658A8756-7B1E-44FD-A434-D777DD906232}) (Version: 8.5.2.1 - Hewlett-Packard Company)
HP System Default Settings (HKLM-x32\...\{C4E9E8A4-EEC4-4F9E-B140-520A8B75F430}) (Version: 2.4.1.2 - Hewlett-Packard Company)
HP Wallpaper (HKLM-x32\...\{11C9A461-DD9D-4C71-85A4-6DCE7F99CC44}) (Version: 3.0.0.1 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6392.0 - IDT)
Intel(R) Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3090 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.10.1464 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.225 - Intel Corporation)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.68.0 - JMicron Technology Corp.)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 68.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 68.0.1 (x64 cs)) (Version: 68.0.1 - Mozilla)
Mozilla Firefox 69.0 (x64 cs) (HKU\S-1-5-21-810802290-4177850383-1836218489-1002\...\Mozilla Firefox 69.0 (x64 cs)) (Version: 69.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.1 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
opensource (HKLM-x32\...\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}) (Version: 1.0.14960.3876 - Your Company Name) Hidden
PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.0.93 - PDF Complete, Inc)
PX Profile Update (HKLM-x32\...\{89FC4558-3689-C109-772E-3A6D5B96F019}) (Version: 1.00.1. - AMD) Hidden
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 7.50.1123.2011 - Realtek)
RetroArch 1.7.8 (HKU\S-1-5-21-810802290-4177850383-1836218489-1002\...\RetroArch) (Version: 1.7.8 - libretro)
Spotify (HKU\S-1-5-21-810802290-4177850383-1836218489-1002\...\Spotify) (Version: 1.1.14.475.g566c8beb - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.25 - Synaptics Incorporated)
Validity Fingerprint Sensor Driver (HKLM\...\{93581599-ECF1-4DCD-BE36-BD969A6C8DB5}) (Version: 4.4.213.0 - Validity Sensors, Inc.)
WinZip 15.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240CF}) (Version: 15.0.10039 - WinZip Computing, S.L. )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [Atheros] -> [CC]{B8952421-0E55-400B-94A6-FA858FC0A39F} => -> No File
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-02-10] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-02-10] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2012-03-30] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2012-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-02-10] (WinZip Computing -> WinZip Computing, S.L.)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) ==============

2009-01-20 23:51 - 2009-01-20 23:51 - 000007168 _____ ( ) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atixclib.dll
2011-12-26 22:20 - 2011-12-26 22:20 - 000016384 ____R () [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2012-03-30 08:07 - 2012-03-30 08:07 - 000369152 _____ () [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2012-04-17 07:27 - 2012-02-02 03:25 - 000059904 _____ () [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2012-02-10 23:26 - 2012-02-10 23:26 - 001083392 _____ () [File not signed] C:\Program Files\Hewlett-Packard\HP Power Assistant\System.Data.SQLite.dll
2019-07-29 19:49 - 2019-07-29 19:49 - 000172032 _____ () [File not signed] C:\windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\023b2e749844720d94fa9a591cebbd78\IsdiInterop.ni.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Actions.CCAA.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.DPPE.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.EEU.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.GD.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Hotkeys.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.REG.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Source.Kit.Server.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.WinMessages.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000034816 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000006144 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\APM.Foundation.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ATICCCom.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000021504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.Implementation.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.Runtime.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.shared.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000039936 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Dashboard.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Runtime.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Shared.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Audio.Graphics.Dashboard.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000018944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CPUOverDrive.Fuel.Shared.dll
2012-03-30 08:07 - 2012-03-30 08:07 - 000035840 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossFireX.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CustomFormats.Graphics.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000053248 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000049152 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000441344 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000036864 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000057344 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MultiVPU2.Graphics.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Shared.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000052736 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000036352 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 002510848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000110592 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000081920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Shared.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000159744 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Dashboard.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Runtime.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.shared.dll
2012-03-30 08:07 - 2012-03-30 08:07 - 000020992 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.UpdateNotification.Graphics.Dashboard.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000015872 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.UpdateNotification.Graphics.Runtime.dll
2012-03-30 08:07 - 2012-03-30 08:07 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.UpdateNotification.Graphics.Shared.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Fuel.Dashboard.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000019968 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Fuel.Runtime.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000010752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Fuel.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000172032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 001007616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.Shared.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.Shared.Private.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Dashboard.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Runtime.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Shared.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Platform.Dashboard.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000011264 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Platform.Runtime.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Platform.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000007680 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000060928 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.ProfileManager2.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 001394176 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.Private.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000282624 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Eeu.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Extension.EEU.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000037888 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.Private.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000413696 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Systemtray.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000303104 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Client.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000019968 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.CoreAudioAPI.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000029184 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Private.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.XManifest.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Fuel.Foundation.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000026112 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000047104 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.Private.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000025088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Private.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.Foundation.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000097280 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.Implementation.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\NEWAEM.Foundation.dll
2012-01-06 03:18 - 2012-01-06 03:18 - 000147456 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ADL.Foundation.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000065536 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\APM.Server.dll
2012-03-30 08:07 - 2012-03-30 08:07 - 000222208 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerXpress.Graphics.Dashboard.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000048128 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerXpress.Graphics.Runtime.dll
2012-03-30 08:05 - 2012-03-30 08:05 - 000026112 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.PowerXpress.Graphics.Shared.dll
2012-03-30 08:07 - 2012-03-30 08:07 - 002723840 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Combined.Graphics.Aspects1.Dashboard.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000036864 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.Private.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000380928 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000061440 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.dll
2009-04-22 21:13 - 2009-04-22 21:13 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0702.dll
2009-06-17 14:27 - 2009-06-17 14:27 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll
2007-10-29 23:56 - 2007-10-29 23:56 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0710.dll
2009-06-17 19:24 - 2009-06-17 19:24 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll
2008-04-04 01:29 - 2008-04-04 01:29 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll
2009-01-21 00:36 - 2009-01-21 00:36 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0901.dll
2010-10-07 22:07 - 2010-10-07 22:07 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I1010.dll
2010-11-05 23:18 - 2010-11-05 23:18 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I1011.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000331776 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Localization.Foundation.Implementation.cs_Localization.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000315392 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Localization.Foundation.Implementation.default_Localization.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000477184 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Localization.Foundation.Private.dll
2012-03-30 08:06 - 2012-03-30 08:06 - 000168960 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Implementation.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000008704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Private.dll
2012-03-30 08:08 - 2012-03-30 08:08 - 000028160 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.Dashboard.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000311296 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll
2012-03-30 08:04 - 2012-03-30 08:04 - 000192512 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll
2010-03-04 10:27 - 2010-03-04 10:27 - 000016384 _____ (ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Foundation.dll
2009-04-22 21:13 - 2009-04-22 21:13 - 000045056 _____ (ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0601.dll
2012-03-14 23:44 - 2012-03-14 23:44 - 000006656 _____ (Hewlett-Packard Company) [File not signed] C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\cs\HandlersStrings.resources.dll
2019-07-29 19:49 - 2019-07-29 19:49 - 000014336 _____ (Intel Corp.) [File not signed] C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\6dfb43a93bf06432c5ba0b7a8973197c\IAStorCommon.ni.dll
2012-04-17 07:27 - 2012-02-02 03:26 - 000007168 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\cs-CZ\IAStorDataMgr.resources.dll
2012-04-17 07:27 - 2012-02-02 03:17 - 000278016 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\ISDI.dll
2012-08-02 11:38 - 2012-03-27 11:12 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2019-07-29 19:48 - 2019-07-29 19:48 - 000228864 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\3addc459b592a3e877c7cef64f7692b4\IAStorDataMgr.ni.dll
2019-07-29 19:48 - 2019-07-29 19:48 - 000488960 _____ (Intel Corporation) [File not signed] C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\c399f4c04590f1e91caf42a4cdedd686\IAStorUtil.ni.dll
2019-07-20 09:11 - 2019-07-20 09:11 - 000225280 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static
HKU\S-1-5-21-810802290-4177850383-1836218489-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.17.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupreg: AthBtTray => "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
MSCONFIG\startupreg: AtherosBtStack => "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
MSCONFIG\startupreg: DTRun => c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
MSCONFIG\startupreg: EpicGamesLauncher => "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
MSCONFIG\startupreg: File Sanitizer => C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
MSCONFIG\startupreg: HPConnectionManager => c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
MSCONFIG\startupreg: HPPowerAssistant => C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden
MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: MfeEpePcMonitor => "C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
MSCONFIG\startupreg: PDF Complete => C:\Program Files (x86)\PDF Complete\pdfsty.exe
MSCONFIG\startupreg: Spotify => C:\Users\Jirka\AppData\Roaming\Spotify\Spotify.exe --autostart --minimized
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray64.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C936FCB3-BD35-48F3-BDAC-4CA0598E83F8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{DD05F8EA-800C-48D0-9EC2-E01CFB07852C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{51D700F2-2235-4B90-881C-D56138243702}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EACEE3A6-7AC4-4B37-AAEE-1CF8C6953991}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{4F28A5BC-5BC8-41B0-BC1E-F7360449BF23}C:\users\jirka\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\jirka\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{E018735D-EF55-48E5-B679-D4DB4196C38A}C:\users\jirka\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\jirka\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{856AA5D4-3510-4FFC-9139-23784C8EC547}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{866977DF-85C0-4110-AA37-72F403AF3DB9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{9E1057A2-D65C-4112-8014-6A55274B8F6E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe (Square Enix) [File not signed]
FirewallRules: [{D2228E3D-72E1-4FBA-95A5-A02B2A801A16}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe (Square Enix) [File not signed]
FirewallRules: [TCP Query User{C5563355-AFA4-4F39-B585-A29BBAFFD4AB}C:\users\jirka\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jirka\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{918276D2-8364-4616-A9BA-CCF5BE017BA6}C:\users\jirka\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jirka\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)

==================== Restore Points =========================

12-09-2019 06:34:25 Windows Update
13-09-2019 18:08:12 Windows Update
13-09-2019 18:41:24 Windows Update
14-09-2019 13:31:11 Windows Update
14-09-2019 13:53:07 Windows Update
14-09-2019 15:17:01 Windows Update
15-09-2019 18:00:11 Windows Update
15-09-2019 20:45:12 AdwCleaner_BeforeCleaning_15/09/2019_20:45:12
16-09-2019 21:01:24 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/15/2019 08:47:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/14/2019 03:19:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/14/2019 03:09:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/14/2019 01:59:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/14/2019 01:41:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/13/2019 06:46:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/13/2019 06:20:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (09/12/2019 05:17:58 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


System errors:
=============
Error: (09/16/2019 08:49:19 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (09/15/2019 08:49:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba HP Support Assistant Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (09/15/2019 08:45:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HP Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/15/2019 08:45:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Audio Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/15/2019 08:45:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AMD External Events Utility byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/15/2019 08:45:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Validity VCS Fingerprint Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/15/2019 08:45:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba hpHotkeyMonitor byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/15/2019 08:45:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Intel(R) Capability Licensing Service Interface byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.


==================== Memory info ===========================

BIOS: Hewlett-Packard 68IRR Ver. F.01 04/19/2012
Motherboard: Hewlett-Packard 17F6
Processor: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz
Percentage of memory in use: 44%
Total physical RAM: 8073.72 MB
Available physical RAM: 4479.01 MB
Total Virtual: 16145.59 MB
Available Virtual: 12315.73 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:675.95 GB) (Free:595.1 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.97 GB) FAT32
Drive g: (HP_RECOVERY) (Fixed) (Total:20.39 GB) (Free:3.11 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{7a250af8-dc83-11e1-8605-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.25 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 25955A44)
Partition 1: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=675.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=20.4 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=2 GB) - (Type=0C)

==================== End of Addition.txt ============================

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivka

#6 Příspěvek od Conder »

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
    CloseProcesses:
    CreateRestorePoint:
    
    PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
    HKLM-x32\...\Run: [] => [X]
    FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
    FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
    S2 HP Support Assistant Service; "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe" [X]
    S4 PdiService; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [X]
    S3 AthBTPort; system32\DRIVERS\btath_flt.sys [X]
    S3 BTATH_A2DP; system32\drivers\btath_a2dp.sys [X]
    S3 btath_avdt; system32\drivers\btath_avdt.sys [X]
    S3 BTATH_BUS; system32\DRIVERS\btath_bus.sys [X]
    S3 BTATH_HCRP; system32\DRIVERS\btath_hcrp.sys [X]
    S3 BTATH_LWFLT; system32\DRIVERS\btath_lwflt.sys [X]
    S3 BTATH_RCP; system32\DRIVERS\btath_rcp.sys [X]
    S3 BtFilter; system32\DRIVERS\btfilter.sys [X]
    ContextMenuHandlers1: [Atheros] -> [CC]{B8952421-0E55-400B-94A6-FA858FC0A39F} =>  -> No File
    
    Hosts:
    EmptyTemp:
    End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Stick
Návštěvník
Návštěvník
Příspěvky: 78
Registrován: 05 pro 2006 19:17

Re: Preventivka

#7 Příspěvek od Stick »

Fix result of Farbar Recovery Scan Tool (x64) Version: 18-09-2019
Ran by Jirka (18-09-2019 18:20:45) Run:1
Running from C:\Users\Jirka\Desktop
Loaded Profiles: Jirka (Available Profiles: Jirka)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
HKLM-x32\...\Run: [] => [X]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
S2 HP Support Assistant Service; "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe" [X]
S4 PdiService; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [X]
S3 AthBTPort; system32\DRIVERS\btath_flt.sys [X]
S3 BTATH_A2DP; system32\drivers\btath_a2dp.sys [X]
S3 btath_avdt; system32\drivers\btath_avdt.sys [X]
S3 BTATH_BUS; system32\DRIVERS\btath_bus.sys [X]
S3 BTATH_HCRP; system32\DRIVERS\btath_hcrp.sys [X]
S3 BTATH_LWFLT; system32\DRIVERS\btath_lwflt.sys [X]
S3 BTATH_RCP; system32\DRIVERS\btath_rcp.sys [X]
S3 BtFilter; system32\DRIVERS\btfilter.sys [X]
ContextMenuHandlers1: [Atheros] -> [CC]{B8952421-0E55-400B-94A6-FA858FC0A39F} => -> No File

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========



Count : 10
Average :
Sum : 10961123
Maximum :
Minimum :
Property : Length


========= End of Powershell: =========

"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\System\CurrentControlSet\Services\HP Support Assistant Service => removed successfully
HP Support Assistant Service => service removed successfully
HKLM\System\CurrentControlSet\Services\PdiService => removed successfully
PdiService => service removed successfully
HKLM\System\CurrentControlSet\Services\AthBTPort => removed successfully
AthBTPort => service removed successfully
HKLM\System\CurrentControlSet\Services\BTATH_A2DP => removed successfully
BTATH_A2DP => service removed successfully
HKLM\System\CurrentControlSet\Services\btath_avdt => removed successfully
btath_avdt => service removed successfully
HKLM\System\CurrentControlSet\Services\BTATH_BUS => removed successfully
BTATH_BUS => service removed successfully
HKLM\System\CurrentControlSet\Services\BTATH_HCRP => removed successfully
BTATH_HCRP => service removed successfully
HKLM\System\CurrentControlSet\Services\BTATH_LWFLT => removed successfully
BTATH_LWFLT => service removed successfully
HKLM\System\CurrentControlSet\Services\BTATH_RCP => removed successfully
BTATH_RCP => service removed successfully
HKLM\System\CurrentControlSet\Services\BtFilter => removed successfully
BtFilter => service removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Atheros => removed successfully
HKLM\Software\Classes\CLSID\[CC]{B8952421-0E55-400B-94A6-FA858FC0A39F} => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 4363877 B
Java, Flash, Steam htmlcache => 63664796 B
Windows/system/drivers => 76948860 B
Edge => 0 B
Chrome => 0 B
Firefox => 463391214 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 0 B
ProgramData => 0 B
systemprofile => 58558406 B
systemprofile32 => 96585 B
LocalService => 0 B
NetworkService => 9974 B
Jirka => 1798956 B

RecycleBin => 0 B
EmptyTemp: => 645.9 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:21:42 ====

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivka

#8 Příspěvek od Conder »

:arrow: Ako to vyzera s PC? Su nejake problemy? Inak logy vyzeraju OK.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Stick
Návštěvník
Návštěvník
Příspěvky: 78
Registrován: 05 pro 2006 19:17

Re: Preventivka

#9 Příspěvek od Stick »

PC v pohodě, díky moc :)

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivka

#10 Příspěvek od Conder »

:arrow: Tak este upraceme po pouzitych nastrojoch:
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Odpovědět